Lucene search
K

4337 matches found

FreeBSD
FreeBSD
added 2007/08/29 12:0 a.m.27 views

gallery2 -- multiple vulnerabilities

Gallery project reports: Gallery 2.2.3 addresses the following security vulnerabilities: Unauthorized renaming of items possible with WebDAV reported by Merrick Manalastas Unauthorized modification and retrieval of item properties possible with WebDAV Unauthorized locking and replacing of items...

6.4CVSS6.4AI score0.01695EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/06/27 12:0 a.m.40 views

CentOS 4 : kernel (CESA-2007:0488)

Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the...

7.5CVSS5.4AI score0.03473EPSS
Exploits0References12
Cent OS
Cent OS
added 2007/06/26 11:50 p.m.98 views

kernel security update

CentOS Errata and Security Advisory CESA-2007:0488 Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Lin...

7.5CVSS5.6AI score0.03473EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2007/06/25 5:50 p.m.61 views

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the...

7.5CVSS5.6AI score0.03473EPSS
Exploits0References13
securityvulns
securityvulns
added 2007/06/05 12:0 a.m.37 views

Re: [Full-disclosure] screen 4.0.3 local Authentication Bypass

-----Original Message----- Subject: Re: Full-disclosure screen 4.0.3 local Authentication Bypass Verified on OpenBSD I'm not seeing a 'Getpass error' message on 4.1-STABLE current, but there does seem to be a problem with locking and reattaching: $ screen space $ echo "This is the locked screen"...

6.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2007/01/30 2:22 p.m.4 views

kernel Race condition in mincore can cause "ps -ef" to hang

The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock...

4.6CVSS5.8AI score0.00982EPSS
Exploits0References4
NVD
NVD
added 2006/12/20 2:28 a.m.22 views

CVE-2006-4814

The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock...

4.6CVSS6.2AI score0.00982EPSS
Exploits0References31
Ubuntu
Ubuntu
added 2006/12/14 12:46 a.m.76 views

USN-395-1: Linux kernel vulnerabilities

Mark Dowd discovered that the netfilter iptables module did not correcly handle fragmented packets. By sending specially crafted packets, a remote attacker could exploit this to bypass firewall rules. This has only be fixed for Ubuntu 6.10; the corresponding fix for Ubuntu 5.10 and 6.06 will foll...

7.5CVSS6AI score0.04601EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2006/08/09 12:0 a.m.5 views

Important: Red Hat Bug Fix Advisory: bind bug fix update

Updated bind packages that fix several bugs are now available. BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. The bind package provides a DNS server named, which resolves host names to IP addresses, and tools for control and verification of the DN...

5CVSS5.8AI score0.08684EPSS
Exploits1References6
NVD
NVD
added 2006/07/28 10:4 p.m.16 views

CVE-2006-3675

Password Safe 2.11, 2.16 and 3.0BETA1 does not respect the configuration settings for locking the password database when certain dialogue windows are open, which might allow attackers with physical access to obtain the database contents...

2.1CVSS6.4AI score0.00454EPSS
Exploits1References6
CVE
CVE
added 2006/07/28 10:0 p.m.50 views

CVE-2006-3675

CVE-2006-3675 affects Password Safe versions 2.11, 2.16 and 3.0BETA1. The vulnerability arises because the software does not enforce the configured lock-on-workstation-lock or idle-time events when specific dialog windows are open, potentially allowing a local attacker with access to the workstat...

2.1CVSS6.4AI score0.00454EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2006/07/28 10:0 p.m.19 views

CVE-2006-3675

Password Safe 2.11, 2.16 and 3.0BETA1 does not respect the configuration settings for locking the password database when certain dialogue windows are open, which might allow attackers with physical access to obtain the database contents...

6.4AI score0.00454EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2006/07/28 12:0 a.m.26 views

CentOS 3 : kdebase (CESA-2006:0576)

Updated kdebase packages that resolve a security issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The kdebase packages provide the core applications for KDE, the K Desktop Environment. A flaw was found in KDE where the...

4.6CVSS5.3AI score0.00402EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/07/25 12:0 a.m.33 views

SYMSA-2006-008:Password Safe - Lock Password Database Configuration Not Enforced

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Vulnerability Research http://www.symantec.com/research Security Advisory Advisory ID: SYMSA-2006-008 Advisory Title: Password Safe - Lock Password Database Configuration Not Enforced Author: J.R. Wikes Release Date: 07-24-2006 Application:...

2.1CVSS6.1AI score0.00454EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2005/08/04 12:0 a.m.22 views

RHEL 2.1 : dump (RHSA-2005:583)

Updated dump packages that address two security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having low security impact by the Red Hat Security Response Team. Dump examines files in a file system, determines which ones need to be backed up, and copies...

5.5CVSS5.2AI score0.00332EPSS
Exploits0References4
NVD
NVD
added 2005/07/05 4:0 a.m.20 views

CVE-2005-2019

ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor SMP or Uni Processor UP systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while performing table lookups, which can cause the cache results to be corrupted during multiple concurrent...

5CVSS6.5AI score0.01232EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/07/01 12:0 a.m.38 views

NetBSD Security Advisory 2005-001: Crypto leaks across HyperThreaded CPUs (i386, P4, HTT+SMP only)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NetBSD Security Advisory 2005-001 ================================= Topic: Crypto leaks across HyperThreaded CPUs i386, P4, HTT+SMP only Version: NetBSD-current: affected, i386 on P4 with HTT and SMP kernels NetBSD 2.0: affected, i386 on P4 with HTT a...

0.1AI score
Exploits0
Cvelist
Cvelist
added 2005/06/30 4:0 a.m.22 views

CVE-2005-2019

ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor SMP or Uni Processor UP systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while performing table lookups, which can cause the cache results to be corrupted during multiple concurrent...

6.5AI score0.01232EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/06/30 12:0 a.m.28 views

FreeBSD ipfw packet filter race conditions

Because of insuddicient locking it's possible to corrupt cached lookup table on machines with threading PREEMPTIVE multitasking...

2.3AI score
Exploits0References1Affected Software1
FreeBSD
FreeBSD
added 2005/06/29 12:0 a.m.40 views

kernel -- ipfw packet matching errors with address tables

Problem Description The ipfw tables lookup code caches the result of the last query. The kernel may process multiple packets concurrently, performing several concurrent table lookups. Due to an insufficient locking, a cached result can become corrupted that could cause some addresses to be...

5CVSS5.9AI score0.01232EPSS
Exploits0
Rows per page
Query Builder