9 matches found
[SECURITY] Fedora 44 Update: rust-oo7-cli-0.4.3-5.fc44
System keyring access from the terminal...
[SECURITY] Fedora 43 Update: rust-oo7-cli-0.4.3-5.fc43
System keyring access from the terminal...
[SECURITY] Fedora 42 Update: rust-oo7-cli-0.3.3-5.fc42
System keyring access from the terminal...
[SECURITY] Fedora 43 Update: rust-oo7-cli-0.4.3-4.fc43
System keyring access from the terminal...
[SECURITY] Fedora 41 Update: rust-oo7-cli-0.3.3-4.fc41
System keyring access from the terminal...
Signature Verification Bypass
Linux kernel is vulnerable to signature validation bypass attacks. This is because the root can gain direct access to an internal keyring, such as '.dnsresolver' in RHEL-7 or '.builtintrustedkeys' upstream, by joining it as its session keyring.Root user could bypass module signature verification ...
CVE-2017-17807
The KEYS subsystem in the Linux kernel before 4.14.6 omitted an access-control check when adding a key to the current task's "default request-key keyring" via the requestkey system call, allowing a local user to use a sequence of crafted system calls to add keys to a keyring with only Search...
DEBIAN-CVE-2012-6581
Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...
UBUNTU-CVE-2012-6581
Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to bypass intended restrictions on reading keys in the product's keyring, and trigger outbound e-mail messages signed by an arbitrary stored secret key, by leveraging a UI e-mail...