Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003056)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003056 advisory. The NFSv4 server in the Linux kernel before 4.11.3 does not properly validate the layout type when processing the NFSv4 pNFS GETDEVICEINFO or LAYOUTGET operand in a...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003073)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003073 advisory. In changeportsettings in drivers/usb/serial/ioti.c in the Linux kernel before 4.11.3, local users could cause a denial of service by division-by-zero in the serial...

plugin: Lack of authentication mechanism in Git Plugin webhook

A missing permission check in Jenkins Git Plugin 4.11.3 and earlier allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause them to check out an attacker-specified commit...

Lack of authentication mechanism in Jenkins Git Plugin webhook

Git Plugin provides a webhook endpoint at /git/notifyCommit that can be used to notify Jenkins of changes to an SCM repository. For its most basic functionality, this endpoint receives a repository URL, and Jenkins will schedule polling for all jobs configured with the specified repository. In Gi...

Jenkins Git Plugin 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

PT-2022-5837 · Jenkins · Jenkins Git Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Git Plugin versions 4.11.3 and earlier Description: The webhook endpoint in Jenkins Git Plugin provides unauthenticated attackers with information about the existence of jobs configured to use an attacker-specified Git repository. Thi...

PT-2022-4716 · Jenkins · Jenkins Git Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Git Plugin versions 4.11.3 and earlier Description: A missing permission check in the Jenkins Git Plugin allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause th...

Advisory ROSA-SA-2021-1963

Software: rpm 4.11.3 OS: Cobalt 7.9 CVE-ID: CVE-2017-7501 CVE-Crit: HIGH CVE-DESC: It was discovered that rpm versions prior to 4.13.0.2 use temporary files with predictable names when installing RPM. An attacker with the ability to write to the directory where the files will be installed could...

Samba Multiple Vulnerabilities (CVE-2019-14861, CVE-2019-14870)

Samba is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2019-14870

All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U MS-SFU Kerberos delegation model includes a feature allowing for a subset of clients to be opted out of constrained delegation in any way, either S4U2Self or regular Kerberos...

[SECURITY] Fedora 25 Update: kernel-4.11.3-200.fc25

The kernel meta package...

Fedora 25 : kernel (2017-6f06be3fe9)

Rebase to 4.11.3 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

webERP 4.11.3 (SalesInquiry.php, SortBy param) - SQL Injection Vulnerability

No description provided by source. ============================================================== Title ...| SQL Injection in webERP Version .| 4.11.3 Date ....| 28.02.2014 Found ...| HauntIT Blog Home ....| http://www.weberp.org ==============================================================...

webERP 4.11.3 - SalesInquiry.php?SortBy SQL Injection

webERP 4.11.3 - SalesInquiry.php?SortBy SQL Injection ============================================================== Title ...| SQL Injection in webERP Version .| 4.11.3 Date ....| 28.02.2014 Found ...| HauntIT Blog Home ....| http://www.weberp.org...

webERP 4.11.3 SQL Injection

============================================================== Title ...| SQL Injection in webERP Version .| 4.11.3 Date ....| 28.02.2014 Found ...| HauntIT Blog Home ....| http://www.weberp.org ==============================================================...

webERP 4.11.3 - 'SalesInquiry.php?SortBy' SQL Injection

============================================================== Title ...| SQL Injection in webERP Version .| 4.11.3 Date ....| 28.02.2014 Found ...| HauntIT Blog Home ....| http://www.weberp.org ==============================================================...

Multiple XSS vulnerabilities in extension phpMyAdmin (phpmyadmin)

It has been discovered that the extension phpMyAdmin phpmyadmin is vulnerable to Cross-Site Scripting. Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 4.11.3 and below Vulnerability Type: Multiple Cross-Site Scripti...