16 matches found
SUSE CVE-2020-29050
SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...
openSUSE 15 Security Update : sphinx (openSUSE-SU-2022:0054-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0054-1 advisory. - SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client ca...
openSUSE: Security Advisory for sphinx (openSUSE-SU-2022:0054-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2022:0054-1 Security update for sphinx
This update for sphinx fixes the following issues: - CVE-2020-29050: SphinxSearch in Sphinx Technologies Sphinx allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc...
Security update for sphinx (moderate)
openSUSE Security Update: Security update for sphinx Announcement ID: openSUSE-SU-2022:0054-1 Rating: moderate References: 1157590 1195227 Cross-References: CVE-2020-29050 CVSS scores: CVE-2020-29050 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 15.3 An...
openSUSE: Security Advisory for sphinx (openSUSE-SU-2022:0046-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2022:0046-1 Security update for sphinx
sphinx was updated to fix the following issues: - CVE-2020-29050: SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file i...
Debian DLA-2882-1 : sphinxsearch - LTS security update
The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2882 advisory. - SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL...
[SECURITY] [DLA 2882-1] sphinxsearch security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2882-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz January 17, 2022 https://wiki.debian.org/LTS -...
CVE-2020-29050
SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...
CVE-2020-29050
SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...
CVE-2020-29050
SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...
CVE-2020-29050
SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...
CVE-2020-29050
CVE-2020-29050 affects SphinxSearch in Sphinx Technologies Sphinx up to version 3.1.1, enabling directory traversal via the mysql client for CALL SNIPPETS and load_file with full pathnames (unrelated to CMUSphinx). The issue, often discussed with CVE-2019-14511, has been addressed in multiple Lin...
Debian DSA-5036-1 : sphinxsearch - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dsa-5036 advisory. - SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL...
[SECURITY] [DSA 5036-1] sphinxsearch security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5036-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso January 06, 2022 https://www.debian.org/security/faq -...