79 matches found
CVE-2022-37706
enlightenmentsys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function mishandles pathnames that begin with a /dev/.. substring...
CVE-2022-37706
CVE-2022-37706 is a local privilege-escalation in Enlightenment where enlightenment_sys is setuid root and mishandles pathnames starting with /dev/.., allowing a local user to gain root privileges. Affected: Enlightenment before 0.25.4 (enlightenment_sys binary). Root cause: insecure handling of ...
CVE-2022-37706
enlightenmentsys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function mishandles pathnames that begin with a /dev/.. substring...
Fedora 36 : efl / enlightenment (2022-0cc77b384a)
The remote Fedora 36 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2022-0cc77b384a advisory. Update efl to 1.26.3, enlightenment to 0.25.4. Fixes CVE-2022-37706 Tenable has extracted the preceding description block directly from the Fedora...
Fedora 35 : efl / enlightenment (2022-bafb72fdc0)
The remote Fedora 35 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2022-bafb72fdc0 advisory. Update efl to 1.26.3, enlightenment to 0.25.4. Fixes CVE-2022-37706 Tenable has extracted the preceding description block directly from the Fedora...
openSUSE 15 Security Update : enlightenment (openSUSE-SU-2022:10153-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10153-1 advisory. - enlightenmentsys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function...
Security update for enlightenment (important)
openSUSE Security Update: Security update for enlightenment Announcement ID: openSUSE-SU-2022:10153-1 Rating: important References: 1203631 Cross-References: CVE-2022-37706 Affected Products: openSUSE Backports SLE-15-SP4 An update that fixes one vulnerability is now available. Description: This...
Mageia: Security Advisory (MGASA-2022-0360)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2022-0360 Updated enlightenment packages fix security vulnerability
Updated enlightenment package to fix the security vulnerability, CVE-2022-37706 that would allow an user to gain root privileges...
Updated enlightenment packages fix security vulnerability
Updated enlightenment package to fix the security vulnerability, CVE-2022-37706 that would allow an user to gain root privileges...
Ubuntu 22.04.1 X64 Desktop Enlightenment 0.25.3-1 Privilege Escalation Exploit
This Metasploit module exploits a command injection within Enlightenment's enlightenmentsys binary. This is done by calling the mount command and feeding it paths which meet all of the system requirements, but execute a specific path as well due to a semi-colon being used. This module was tested ...
Ubuntu 22.04.1 X64 Desktop Enlightenment 0.25.3-1 Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ubuntu Enlightenment Mount Priv Esc', 'Description' = %q This module exploits a command injection within Enlightenment's enlightenmentsys binary...
Fedora: Security Advisory for enlightenment (FEDORA-2022-0cc77b384a)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 36 Update: enlightenment-0.25.4-1.fc36
Enlightenment window manager is a lean, fast, modular and very extensible win dow manager for X11 and Linux. It is classed as a "desktop shell" providing the things you need to operate your desktop or laptop, but is not a whole ' application suite. This covered launching applications, managing...
[SECURITY] Fedora 35 Update: enlightenment-0.25.4-1.fc35
Enlightenment window manager is a lean, fast, modular and very extensible win dow manager for X11 and Linux. It is classed as a "desktop shell" providing the things you need to operate your desktop or laptop, but is not a whole ' application suite. This covered launching applications, managing...
[SECURITY] Fedora 37 Update: enlightenment-0.25.4-1.fc37
Enlightenment window manager is a lean, fast, modular and very extensible win dow manager for X11 and Linux. It is classed as a "desktop shell" providing the things you need to operate your desktop or laptop, but is not a whole ' application suite. This covered launching applications, managing...
The vulnerability of the Enlightenment sysfile implementation of the Enlightenment window manager allows a perpetrator to escalate their privileges.
The vulnerability of the Enlightenment sysytem file for the Enlightenment window manager is related to incorrect code generation. Exploiting this vulnerability can allow an attacker to increase their privileges...
Fedora: Security Advisory for enlightenment (FEDORA-2022-bafb72fdc0)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for enlightenment (FEDORA-2022-7090749bf4)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Debian: Security Advisory (DSA-5233-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...