Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as the code for the HFS and HFS Plus HFS+ file systems failed to properly handle corrupted data structures. This could, potentially, lead to a local denial of service...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as the code for the HFS and HFS Plus HFS+ file systems failed to properly handle corrupted data structures. This could, potentially, lead to a local denial of service...

CVE-2020-9543

OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...

Code injection

OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...

CVE-2020-9543

OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 1.8 used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections. Vulnerability Details CVEID: CVE-2019-2989...

CVE-2020-9543

OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...

UBUNTU-CVE-2020-9543

OpenStack Manila =8.0.0 =9.0.0 9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks...

exploit-database

This is an official repository of The Exploit Database, a project sponsored by Offensive Security. The repository contains exploits, shellcodes, and papers for various vulnerabilities in different software and systems. The exploits are categorized by operating system, software, and vulnerability...

[SECURITY] Fedora 30 Update: e2fsprogs-1.44.6-2.fc30

The e2fsprogs package contains a number of utilities for creating, checking, modifying, and correcting any inconsistencies in second, third and fourth extended ext2/ext3/ext4 file systems. E2fsprogs contains e2fsck used to repair file system inconsistencies after an unclean shutdown, mke2fs used ...

Unsafe Identifiers

opencast-common is using unsafe identifier. The package allows the use of arbitrary identifiers for media packages and file systems, causing the identifier mismatch as an identifier may unintentionally be changed. When the identifiers are used for file system operations, an attacker can make use ...

The vulnerability of the e2fsprogs utility for working with ext2, ext3, and ext4 file systems lies in the ability to write beyond the cluster boundaries, allowing an attacker to execute arbitrary code.

The vulnerability of the e2fsprogs utility for working with ext2, ext3, and ext4 file systems is related to writing beyond the cluster boundaries. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 1.8 used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections. Vulnerability Details CVEID: CVE-2019-11775...

Juniper JSA10975

According to the self reported version of Junos OS on the remote device it is affected by a path traversal vulnerability with the Next-Generation Routing Engine. A local authenticated attacker can exploit this, to read sensitive file systems. Note that Nessus has not tested for this issue but has...

E2fsprogs Buffer Overflow Vulnerability

E2fsprogs is a set of utility programs for maintaining ext2, ext3 and ext4 file systems. A buffer overflow vulnerability exists in E2fsprogs versions 1.43.3 through 1.45.3, which can be exploited to execute code via a corrupted partition...

e2fsprogs -- maliciously corrupted file systems can trigger buffer overruns in the quota code used by e2fsck

Ted Y. Ts'o reports: A maliciously corrupted file systems can trigger buffer overruns in the quota code used by e2fsck...

Security Bulletin:IBM SDK, Java Technology Edition Quarterly CPU - Apr 2016 - Includes Oracle Apr 2016 affect IBM Content Collector for File Systems

Summary There is vulnerability in IBM® Runtime Environment Java™ Version 6 and Java™ Version 7 that is used by Content Collector for File Systems. This issue was disclosed as part of the IBM Java SDK updates in April 2016. Vulnerability Details CVEID: CVE-2016-0264 DESCRIPTION: A buffer overflow...

Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Jan 2017 - Includes Oracle Jan 2017 CPU affect IBM Content Collector for File Systems

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Java™ Version 6 and Java™ Version 7 that is used by IBM Content Collector for File Systems. Vulnerability Details CVEID: CVE-2017-3289 DESCRIPTION: An unspecified vulnerability in Oracle Java SE and Java SE Embedded...

[SECURITY] Fedora 29 Update: sleuthkit-4.6.7-1.fc29

The Sleuth Kit TSK is a collection of UNIX-based command line tools that allow you to investigate a computer. The current focus of the tools is the file and volume systems and TSK supports FAT, Ext2/3, NTFS, UFS, and ISO 9660 file systems...

[SECURITY] Fedora 30 Update: sleuthkit-4.6.7-1.fc30

The Sleuth Kit TSK is a collection of UNIX-based command line tools that allow you to investigate a computer. The current focus of the tools is the file and volume systems and TSK supports FAT, Ext2/3, NTFS, UFS, and ISO 9660 file systems...