Lucene search
K

9382 matches found

Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.40 views

Amazon Linux 2 : keepalived (ALAS-2019-1323)

keepalived 2.0.8 didn't check for pathnames with symlinks when writing data to a temporary file upon a call to PrintData or PrintStats. This allowed local users to overwrite arbitrary files if fs.protectedsymlinks is set to 0, as demonstrated by a symlink from /tmp/keepalived.data or...

4.7CVSS5.8AI score0.00501EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.38 views

Amazon Linux 2 : advancecomp (ALAS-2019-1319)

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function beuint32read located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service Segmentation fault or possibly have unspecified...

7.8CVSS5.8AI score0.01247EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.49 views

Amazon Linux 2 : golang (ALAS-2019-1335)

It was discovered that net/http through net/textproto in golang does not correctly interpret HTTP requests where an HTTP header contains spaces before the colon. This could be abused by an attacker to smuggle HTTP requests when a proxy or a firewall is placed behind a server implemented in Go or ...

7.5CVSS7AI score0.05157EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.55 views

Amazon Linux 2 : curl (ALAS-2019-1340)

Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3.CVE-2019-5481 Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.CVE-2019-5482 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Lin...

9.8CVSS6.5AI score0.17939EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.24 views

Amazon Linux 2 : blktrace (ALAS-2019-1320)

blktrace aka Block IO Tracing 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the devmapread function in btt/devmap.c because the device and devno arrays are too small, as demonstrated by an invalid free when using the btt program with a crafted file.CVE-2018-10689 C...

5.5CVSS6.4AI score0.02001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.24 views

Amazon Linux 2 : keycloak-httpd-client-install (ALAS-2019-1324)

It was discovered that keycloak-httpd-client-install uses a predictable log file name in /tmp. A local attacker could create a symbolic link to a sensitive location, possibly causing data corruption or denial of service.CVE-2017-15111 In keycloak-http-client-install prior to version 0.8, the admi...

7.8CVSS6.2AI score0.00394EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.42 views

Amazon Linux 2 : perl-Archive-Tar (ALAS-2019-1330)

It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives. An attacker, able to provide a specially crafted archive for processing, could use this flaw to write or overwrite arbitrary files in the context of the Perl interpreter.CVE-2018-12015...

7.5CVSS6.5AI score0.08207EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.33 views

Amazon Linux 2 : http-parser (ALAS-2019-1322)

Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with large HTTP headers: By using a combination of many requests with maximum sized headers almost 80 KB per connection, and carefully timed completion of the headers, it is possible to cause the HTTP...

7.5CVSS7.1AI score0.10207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.57 views

Amazon Linux 2 : procps-ng (ALAS-2019-1333)

If the HOME environment variable is unset or empty, top will read its configuration file from the current working directory without any security check. If a user runs top with HOME unset in an attacker-controlled directory, the attacker could achieve privilege escalation by exploiting one of...

7.3CVSS7.5AI score0.013EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.49 views

Amazon Linux 2 : elfutils (ALAS-2019-1337)

An out-of-bounds read was discovered in elfutils in the way it reads DWARF address ranges information. Function dwarfgetaranges in dwarfgetaranges.c does not properly check whether it reads beyond the limits of the ELF section. An attacker could use this flaw to cause a denial of service via a...

9.8CVSS6.6AI score0.03691EPSS
Exploits9References11
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.34 views

Amazon Linux 2 : libtiff (ALAS-2019-1327)

Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service application crash via a crafted GIF file.CVE-2016-3186 An integer overflow has been discovered in libtiff in TIFFSetupStrips:tifwrite.c, which could lead to a heap-bas...

8.8CVSS7AI score0.25183EPSS
Exploits10References11
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.28 views

Amazon Linux 2 : exempi (ALAS-2019-1321)

An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file.CVE-2017-18233 An issue was discovered in Exempi before 2.4.3. It...

7.8CVSS6.3AI score0.01707EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.38 views

Amazon Linux 2 : SDL2 (ALAS-2019-1318)

An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9. There is an out-of-bounds read in the function SDLInvalidateMap at video/SDLpixels.c.CVE-2019-12222 A heap-based buffer overflow was discovered in SDL in the SDLBlitCopy function, that was called while copying an existing...

8.1CVSS6.9AI score0.03299EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.88 views

Amazon Linux 2 : poppler (ALAS-2019-1332)

In Poppler 0.68.0, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.CVE-2018-16646 An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as...

9.8CVSS6.7AI score0.03518EPSS
Exploits9References13
Amazon
Amazon
added 2019/10/21 6:1 p.m.39 views

Medium: golang

Issue Overview: It was discovered that net/http through net/textproto in golang does not correctly interpret HTTP requests where an HTTP header contains spaces before the colon. This could be abused by an attacker to smuggle HTTP requests when a proxy or a firewall is placed behind a server...

7.5CVSS7.7AI score0.05157EPSS
Exploits0
Amazon
Amazon
added 2019/10/21 12:0 a.m.21 views

Low: keycloak-httpd-client-install

Issue Overview: It was discovered that keycloak-httpd-client-install uses a predictable log file name in /tmp. A local attacker could create a symbolic link to a sensitive location, possibly causing data corruption or denial of service.CVE-2017-15111 In keycloak-http-client-install prior to versi...

7.8CVSS6.8AI score0.00394EPSS
Exploits0
Amazon
Amazon
added 2019/10/21 12:0 a.m.32 views

Medium: libarchive

Issue Overview: libarchive 3.3.2 suffers from an out-of-bounds read within lhareaddatanone in archivereadsupportformatlha.c when extracting a specially crafted lha archive, related to lhacrc16.CVE-2017-14503 libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards release v3.1.0...

8.8CVSS7.4AI score0.04575EPSS
Exploits1
Amazon
Amazon
added 2019/10/21 12:0 a.m.40 views

Medium: perl-Archive-Tar

Issue Overview: It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives. An attacker, able to provide a specially crafted archive for processing, could use this flaw to write or overwrite arbitrary files in the context of the Perl...

7.5CVSS8AI score0.08207EPSS
Exploits1
Amazon
Amazon
added 2019/10/21 12:0 a.m.24 views

Low: advancecomp

Issue Overview: An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function beuint32read located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service Segmentation fault or possibly ha...

7.8CVSS5.2AI score0.01247EPSS
Exploits2
Amazon
Amazon
added 2019/10/21 12:0 a.m.35 views

Medium: mercurial

Issue Overview: An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function beuint32read located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service Segmentation fault or possibly ha...

7.8CVSS5.2AI score0.01247EPSS
Exploits2
Rows per page
Query Builder