Unity Linux 20.1070e Security Update: keepalived (UTSA-2026-016728)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016728 advisory. In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This...

Astra Linux - уязвимость в keepalived

In Keepalived versions up to 2.2.4, the D-Bus mechanism does not sufficiently restrict the destination of messages, allowing any user to inspect and manipulate any property. This leads to bypasses of access controls in some situations, where a unrelated D-Bus system service has a settable writabl...

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 146.0.7680.178 contained a security vulnerability. This vulnerability stemmed from insufficient execution of the WebUSB policy, which could allow access to potentially sensitive information...

DEBIAN-CVE-2026-26104

A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does not perform a policy check. As a result, sensitiv...

EUVD-2018-8114

Malware in sbrugna...

TencentOS Server 3: keepalived (TSSA-2022:0236)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0236 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2018-16265

The bt/btcore system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series...

Alibaba Cloud Linux 3 : 0203: keepalived (ALINUX3-SA-2022:0203)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0203 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-44225: In Keepalived through 2.2.4, the...

RHEL 6 : keepalived (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - keepalived: Heap-based buffer overflow when parsing HTTP status codes allows for denial of service or...

NewStart CGSL MAIN 6.06 : keepalived Vulnerability (NS-SA-2023-0097)

The remote NewStart CGSL host, running version MAIN 6.06, has keepalived packages installed that are affected by a vulnerability: - In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This...

Amazon Linux 2 : keepalived (ALAS-2023-2168)

The version of keepalived installed on the remote host is prior to 1.3.5-16. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2168 advisory. A flaw was found in keepalived, where an improper authentication vulnerability allows an unprivileged user to change properties...

Debian dla-3388 : keepalived - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3388 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3388-1 [email protected] https://www.debian.org/lts/security/...

SUSE CVE-2021-44225

In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system service has a settable writable property...

NewStart CGSL MAIN 6.02 : keepalived Vulnerability (NS-SA-2022-0105)

The remote NewStart CGSL host, running version MAIN 6.02, has keepalived packages installed that are affected by a vulnerability: - In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This...

SUSE SLES15 Security Update : keepalived (SUSE-SU-2022:3232-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3232-1 advisory. - In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and...

SUSE-SU-2022:3235-1 Security update for keepalived

This update for keepalived fixes the following issues: - CVE-2021-44225: Fix a potential privilege escalation due to insufficient control in the D-Bus policy bsc1193115...

SUSE-SU-2022:3234-1 Security update for keepalived

This update for keepalived fixes the following issues: - CVE-2021-44225: Fix a potential privilege escalation due to insufficient control in the D-Bus policy bsc1193115...

SUSE SLES15 Security Update : keepalived (SUSE-SU-2022:2923-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:2923-1 advisory. - In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and...

openSUSE: Security Advisory for keepalived (SUSE-SU-2022:2923-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE-SU-2022:2923-1 Security update for keepalived

This update for keepalived fixes the following issues: - CVE-2021-44225: Fix a potential privilege escalation due to insufficient control in the D-Bus policy bsc1193115...