PT-2021-3856 · Unknown +6 · Kubernetes Containerd +5

Name of the Vulnerable Software and Affected Versions: containerd versions prior to 1.4.8 and 1.5.4 Description: The issue is related to a bug in containerd that allows pulling and extracting a specially-crafted container image to result in Unix file permission changes for existing files in the...

CVE-2021-33572

A Denial-of-Service DoS vulnerability was discovered in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in...

Denial of service

A Denial-of-Service DoS vulnerability was discovered in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in...

CVE-2021-33572 Denial-of-Service (DoS) Vulnerability

A Denial-of-Service DoS vulnerability was discovered in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in...

CVE-2021-33572

CVE-2021-33572 is a DoS vulnerability in the FSAVD component of F-Secure Linux Security. The FSAVD process can crash when scanning larger packages or fuzzed files, with a remote attacker able to trigger the issue and cause DoS of the Anti-Virus engine. The provided sources do not specify affected...

[ASA-202106-42] go: multiple issues

Arch Linux Security Advisory ASA-202106-42 ========================================== Severity: Medium Date : 2021-06-15 CVE-ID : CVE-2021-33195 CVE-2021-33196 CVE-2021-33197 CVE-2021-33198 Package : go Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2006 Summary...

[ASA-202106-38] aspnet-runtime-3.1: denial of service

Arch Linux Security Advisory ASA-202106-38 ========================================== Severity: Medium Date : 2021-06-15 CVE-ID : CVE-2021-31957 Package : aspnet-runtime-3.1 Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-2047 Summary ======= The package...

Security update for exim (critical)

openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2021:0753-1 Rating: critical References: 1079832 1136587 1142207 1154183 1160726 1171490 1171877 1173693 1185631 Cross-References: CVE-2017-1000369 CVE-2017-16943 CVE-2017-16944 CVE-2018-6789 CVE-2019-10149...

KubeArmor - Container-aware Runtime Security Enforcement System

Introduction to KubeArmor KubeArmor is a container-aware runtime security enforcement system that restricts the behavior such as process execution, file access, networking operation, and resource utilization of containers at the system level. KubeArmor operates with Linux security modules LSMs,...

GLSA-202104-09 : Mozilla Thunderbird: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202104-09 Mozilla Thunderbird: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CV...

SUSE: Security Advisory (SUSE-SU-2019:2221-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:2954-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RLSA-2021:1064 Moderate: virt:rhel and virt-devel:rhel security update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:Rocky Linux module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting wi...

Arbitrary Code Execution

linux is vulnerable to arbitrary code execution. The vulnerabilitye exists as the kernel PV block backend expects the kernel thread handler to reset ring-xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggles between the states connect and...

Security fix for the ALT Linux 10 package thunderbird version 78.8.0-alt1

Feb. 25, 2021 Andrey Cherepanov 78.8.0-alt1 - New version 78.8.0. - Security fixes: + CVE-2021-23969 Content Security Policy violation report could have contained the destination of a redirect + CVE-2021-23968 Content Security Policy violation report could have contained the destination of a...

CVE-2021-21153

Stack buffer overflow in GPU Process in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

[ASA-202102-9] ansible: information disclosure

Arch Linux Security Advisory ASA-202102-9 ========================================= Severity: Medium Date : 2021-02-06 CVE-ID : CVE-2021-20178 CVE-2021-20180 CVE-2021-20191 Package : ansible Type : information disclosure Remote : No Link : https://security.archlinux.org/AVG-1437 Summary ======= T...

DSA-4843-1 linux - security update

Bulletin has no description...

GLSA-202101-28 : ncurses: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202101-28 ncurses: Multiple vulnerabilities Multiple vulnerabilities have been discovered in ncurses. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for detail...

GLSA-202012-20 : Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202012-20 Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Thunderbird. Please review the CVE identifiers referenced below for details...