Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: zstd (UTSA-2026-017635)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017635 advisory. Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permission...

5.5CVSS5.8AI score0.00431EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2021-10952

Malware in sbrugna...

4.7CVSS5AI score0.00346EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-24032

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default...

5.5CVSS5.9AI score0.00431EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:45 a.m.3 views

SUSE CVE-2021-24032

Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to...

6.2CVSS7.8AI score0.00346EPSS
Exploits0References116
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.21 views

Ubuntu 16.04 ESM : Zstandard vulnerabilities (USN-5720-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5720-1 advisory. It was discovered that Zstandard was not properly managing file permissions when generating output files. A local attacker could possibly use this issue ...

5.5CVSS6.1AI score0.00431EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2021-0322)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00431EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/09/24 12:0 a.m.32 views

EulerOS 2.0 SP8 : zstd (EulerOS-SA-2021-2490)

According to the versions of the zstd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In the Zstandard command-line utility prior to v1.4.1, output files were created with default permissions. Correct file permissions matching the...

5.5CVSS6AI score0.00431EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/07/13 12:0 a.m.32 views

EulerOS Virtualization 2.9.1 : zstd (EulerOS-SA-2021-2177)

According to the versions of the zstd package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created...

5.5CVSS6AI score0.00431EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for zstd (EulerOS-SA-2021-2177)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.4AI score0.00431EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for zstd (EulerOS-SA-2021-2201)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.4AI score0.00431EPSS
Exploits1References2
Mageia
Mageia
added 2021/07/09 12:27 a.m.40 views

Updated zstd packages fix a security vulnerability

In the Zstandard command-line utility prior to v1.4.1, output files were created with default permissions. Correct file permissions matching the input would only be set at completion time. Output files could therefore be readable or writable to unintended parties CVE-2021-24031...

5.5CVSS1.3AI score0.00431EPSS
Exploits1References2
Mageia
Mageia
added 2021/07/09 12:27 a.m.35 views

Updated zstd packages fix a security vulnerability

Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to...

4.7CVSS2.6AI score0.00346EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2021:0948-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.4AI score0.00431EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.18 views

openSUSE: Security Advisory for zstd (openSUSE-SU-2021:0481-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.6AI score0.00431EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/29 12:0 a.m.35 views

openSUSE Security Update : zstd (openSUSE-2021-481)

This update for zstd fixes the following issues : - CVE-2021-24031: Added read permissions to files while being compressed or uncompressed bsc1183371. - CVE-2021-24032: Fixed a race condition which could have allowed an attacker to access world-readable destination file bsc1183370. This update wa...

5.5CVSS5.9AI score0.00431EPSS
Exploits1References4
OSV
OSV
added 2021/03/27 7:4 p.m.5 views

OPENSUSE-SU-2021:0481-1 Security update for zstd

This update for zstd fixes the following issues: - CVE-2021-24031: Added read permissions to files while being compressed or uncompressed bsc1183371. - CVE-2021-24032: Fixed a race condition which could have allowed an attacker to access world-readable destination file bsc1183370. This update was...

5.5CVSS5.2AI score0.00431EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2021/03/26 12:0 a.m.32 views

SUSE SLED15 / SLES15 Security Update : zstd (SUSE-SU-2021:0948-1)

This update for zstd fixes the following issues : CVE-2021-24031: Added read permissions to files while being compressed or uncompressed bsc1183371. CVE-2021-24032: Fixed a race condition which could have allowed an attacker to access world-readable destination file bsc1183370. Note that Tenable...

5.5CVSS6AI score0.00431EPSS
Exploits1References7
Prion
Prion
added 2021/03/04 9:15 p.m.17 views

Design/Logic Flaw

Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to...

1.9CVSS5.1AI score0.00431EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/03/04 8:15 p.m.220 views

CVE-2021-24031

CVE-2021-24031 is discussed in the connected IBM security bulletin as part of a broader set of vulnerabilities. The Zstandard command-line utility prior to v1.4.1 creates output files with default permissions and only sets the correct permissions at completion time, potentially making outputs rea...

5.5CVSS5.1AI score0.00431EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2021/02/21 12:0 a.m.22 views

Debian: Security Advisory (DLA-2573-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.4AI score0.00431EPSS
Exploits1References4
Rows per page
Query Builder