SUSE: Security Advisory (SUSE-SU-2020:2474-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:0617-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0676-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0931-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0684-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0029-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 Security Update : spamassassin (SUSE-SU-2021:1163-1)

This update for spamassassin fixes the following issues : CVE-2019-12420: memory leak via crafted messages bsc1159133 CVE-2020-1946: security update bsc1184221 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...

Huawei EulerOS: Security Advisory for pcp (EulerOS-SA-2021-1341)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

A New Linux Malware Targeting High-Performance Computing Clusters

High-performance computing clusters belonging to university networks as well as servers associated with government agencies, endpoint security vendors, and internet service providers have been targeted by a newly discovered backdoor that gives attackers the ability to execute arbitrary commands o...

A New Linux Malware Targeting High-Performance Computing Clusters

High-performance computing clusters belonging to university networks as well as servers associated with government agencies, endpoint security vendors, and internet service providers have been targeted by a newly discovered backdoor that gives attackers the ability to execute arbitrary commands o...

EulerOS 2.0 SP5 : pcp (EulerOS-SA-2020-2557)

According to the versions of the pcp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE...

SUSE SLED15 / SLES15 Security Update : python (SUSE-SU-2020:3597-1)

This update for python fixes the following issues : Fixed a directory traversal in downloadhttpurl bsc1176262 CVE-2019-20916 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and...

SUSE SLED15 / SLES15 Security Update : libproxy (SUSE-SU-2020:2901-1)

This update for libproxy fixes the following issues : CVE-2020-25219: Rewrote url::recvline to be nonrecursive bsc1176410. CVE-2020-26154: Fixed a buffer overflow when PAC is enabled bsc1177143. Note that Tenable Network Security has extracted the preceding description block directly from the SUS...

Amazon Linux 2 : pcp (ALAS-2020-1561)

The version of pcp installed on the remote host is prior to 4.3.2-12. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1561 advisory. A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance...

Denial of service

A Uncontrolled Resource Consumption vulnerability in rmt of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise Module for Server Applications 15, SUSE Linu...

Privilege escalation

A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Developmen...

CVE-2019-3695 pcp: Local privilege escalation from user pcp to root

A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Developmen...

CVE-2019-3696 pcp: Local privilege escalation from user pcp to root through migrate_tempdirs

A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise...

Red Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG-2 Linux kernel denial of service vulnerability

Red Hat Enterprise Linux 6 and 7 and Red Hat Enterprise MRG-2 are products of Red Hat, Inc. and Red Hat Enterprise Linux 6 and 7 are operating systems and Red Hat Enterprise MRG-2 is an IT infrastructure platform for integrated high performance computing HPC. Red Hat Enterprise Linux 6 and 7 are...

IBM Platform LSF and IBM Spectrum LSF Local Elevation of Privilege Vulnerability

IBM Platform LSF and IBM Spectrum LSF are both a set of workload management platforms for distributed HPC environments from IBM USA. A local elevation of privilege vulnerability exists in IBM Platform LSF and IBM Spectrum LSF. A local attacker could use this vulnerability to elevate privileges an...