2017 matches found
USN-5569-1 unbound vulnerabilities
Xiang Li discovered that Unbound incorrectly handled delegation caching. A remote attacker could use this issue to keep rogue domain names resolvable long after they have been revoked...
SUSE: Security Advisory (SUSE-SU-2022:2716-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2716-1 Security update for mokutil
This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. bsc1198458 New options added see manpage: - mokutil --sbat List all entries in SBAT. - mokutil --set-sbat-policy latest | previous | delete To set the SBAT acceptance policy. - mokutil...
PT-2022-37516 · Mokutil · Mokutil
Name of the Vulnerable Software and Affected Versions: mokutil affected versions not specified Description: The issue concerns the addition of SBAT revocation support to mokutil. New options have been added to the mokutil command, including mokutil --sbat to list all entries in SBAT, mokutil...
GSD-2022-1004951 hashed password of the user who created or revoked the link disclosure in Slack version between April 17, 2017 and July 17, 2022
In Slack between April 17, 2017 and July 17, 2022 if a shared invite link was created or revoked the hashed password of the user who created or revoked the link would have been disclosed in the invitation link, allowing an attacked viewing the invitation link to see the hashed password also salte...
SUSE: Security Advisory (SUSE-SU-2022:2638-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2636-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2637-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for mokutil (SUSE-SU-2022:2638-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for mokutil (SUSE-SU-2022:2633-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:2633-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2638-1 Security update for mokutil
This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. bsc1198458 New options added see manpage: - mokutil --sbat List all entries in SBAT. - mokutil --set-sbat-policy latest | previous | delete To set the SBAT acceptance policy. - mokutil...
SUSE-SU-2022:2637-1 Security update for mokutil
This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. bsc1198458 New options added see manpage: - mokutil --sbat List all entries in SBAT. - mokutil --set-sbat-policy latest | previous | delete To set the SBAT acceptance policy. - mokutil...
SUSE-SU-2022:2636-1 Security update for mokutil
This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. bsc1198458 New options added see manpage: - mokutil --sbat List all entries in SBAT. - mokutil --set-sbat-policy latest | previous | delete To set the SBAT acceptance policy. - mokutil...
SUSE-SU-2022:2635-1 Security update for mokutil
This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. bsc1198458 New options added see manpage: - mokutil --sbat List all entries in SBAT. - mokutil --set-sbat-policy latest | previous | delete To set the SBAT acceptance policy. - mokutil...
SUSE-SU-2022:2633-1 Security update for mokutil
This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. bsc1198458 New options added see manpage: - mokutil --set-sbat-policy latest | previous | delete to set the SBAT acceptance policy. - mokutil --list-sbat-revocations To list the current SBAT revocations...
PT-2022-37508 · Mokutil · Mokutil
Name of the Vulnerable Software and Affected Versions: mokutil affected versions not specified Description: The issue concerns the addition of SBAT revocation support to mokutil. New options have been added to the mokutil command, including mokutil --sbat to list all entries in SBAT, mokutil...
Design/Logic Flaw
NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the "ghost domain names" attack. The vulnerability works by targeting an Unbound instance. Unbound is queried for a subdomain of a rogue domain name. The rogue nameserver returns delegation information for the...
CVE-2022-30698
NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the "ghost domain names" attack. The vulnerability works by targeting an Unbound instance. Unbound is queried for a subdomain of a rogue domain name. The rogue nameserver returns delegation information for the...
Gitlab -- multiple vulnerabilities
Gitlab reports: Revoke access to confidential notes todos Pipeline subscriptions trigger new pipelines with the wrong author Ability to gain access to private project through an email invite by using other user's email address as an unverified secondary email Import via git protocol allows to...