38 matches found
EulerOS 2.0 SP5 : mod_wsgi (EulerOS-SA-2019-2711)
According to the version of the modwsgi package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which migh...
EulerOS 2.0 SP2 : mod_wsgi (EulerOS-SA-2019-2367)
According to the version of the modwsgi package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which migh...
[SECURITY] Fedora 29 Update: aria2-1.34.0-4.fc29
aria2 is a download utility with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink version 3.0. Currently it has following features: - HTTP/HTTPS GET support - HTTP Proxy support - HTTP BASIC authentication support - HTTP Proxy...
[SECURITY] Fedora 28 Update: aria2-1.34.0-4.fc28
aria2 is a download utility with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink version 3.0. Currently it has following features: - HTTP/HTTPS GET support - HTTP Proxy support - HTTP BASIC authentication support - HTTP Proxy...
[SECURITY] Fedora 30 Update: aria2-1.34.0-4.fc30
aria2 is a download utility with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink version 3.0. Currently it has following features: - HTTP/HTTPS GET support - HTTP Proxy support - HTTP BASIC authentication support - HTTP Proxy...
arp-validator - Security Tool To Detect ARP Poisoning Attacks
Security Tool to detect arp poisoning attacks. Features Uses a faster approach in detection of arp poisoning attacks compared to passive approaches Detects not only presence of ARP Poisoning but also valid IP-MAC mapping when LAN hosts are using non-customized network stack Stores validated host...
CVE-2014-8583
modwsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors...
Updated apache-mod_wsgi package fixes security vulnerability
apache-modwsgi before 4.2.4 contained an off-by-one error in applying a limit to the number of supplementary groups allowed for a daemon process group. The result could be that if more groups than the operating system allowed were specified to the option supplementary-groups, then memory corrupti...
[SECURITY] Fedora 18 Update: perl-Proc-Daemon-0.14-9.fc18
This is version 0.14 of Proc::Daemon This module contains the routine Init which can be called by a Perl program to initialize itself as a daemon. A daemon is a process that runs in the background with no controlling terminal. Generally servers like FTP and HTTP servers run as daemon processes...
[SECURITY] Fedora 19 Update: perl-Proc-Daemon-0.14-9.fc19
This is version 0.14 of Proc::Daemon This module contains the routine Init which can be called by a Perl program to initialize itself as a daemon. A daemon is a process that runs in the background with no controlling terminal. Generally servers like FTP and HTTP servers run as daemon processes...
[SECURITY] Fedora 11 Update: aria2-1.9.3-1.fc11
aria2 is a download utility with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink version 3.0. Currently it has following features: - HTTP/HTTPS GET support - HTTP Proxy support - HTTP BASIC authentication support - HTTP Proxy...
[SECURITY] Fedora 13 Update: aria2-1.9.3-1.fc13
aria2 is a download utility with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink version 3.0. Currently it has following features: - HTTP/HTTPS GET support - HTTP Proxy support - HTTP BASIC authentication support - HTTP Proxy...
[SECURITY] Fedora 10 Update: aria2-1.3.1-2.fc10
aria2 is a download utility with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/FTP/BitTorrent. It also supports Metalink version 3.0. Currently it has following features: - HTTP/HTTPS GET support - HTTP Proxy support - HTTP BASIC authentication support - HTTP Proxy...
git -- denial of service vulnerability
SecurityFocus reports: Git is prone to a denial-of-service vulnerability because it fails to properly handle some client requests. Attackers can exploit this issue to cause a daemon process to enter an infinite loop. Repeated exploits may consume excessive system resources, resulting in a denial ...
Gentoo Security Advisory GLSA 200410-08 (ncompress)
The remote host is missing updates announced in advisory GLSA 200410-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
On the Windows System to achieve the DDOS attack-vulnerability warning-the black bar safety net
First said we used to attack the client and server method of configuration, using the moment the most famous of REDHAT LINUX for testing, the present attack test I'm using FEDORA CORE3, the software is the most famousDDOSattack tool TFN2K LINUX Edition, is to attack the WINDOWS Server system is...
Mandrake Linux Security Advisory : rsync (MDKSA-2002:024)
Ethan Benson discovered a bug in rsync where the supplementary groups that the rsync daemon runs as such as root would not be removed from the server process after changing to the specified unprivileged uid and gid. This seems only serious if rsync is called using 'rsync --daemon' from the comman...
CVE-2001-0040
APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file...