203 matches found
SUSE: Security Advisory (SUSE-SU-2024:0796-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:0797-2 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0797-1 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0796-1 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0796-2 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0795-2 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0795-1 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0794-2 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
SUSE-SU-2024:0794-1 Security update for sudo
This update for sudo fixes the following issues: - CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks bsc1219026...
CLSA-2024-1708428112 sudo: Fix of CVE-2023-42465
CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...
CLSA-2024-1708427919 sudo: Fix of CVE-2023-42465
CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...
sudo: Fix of CVE-2023-42465
CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...
CLSA-2024-1708426650 sudo: Fix of CVE-2023-42465
CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...
CLSA-2024-1708426423 sudo: Fix of CVE-2023-42465
CVE-2023-42465: make sudo less vulnerable to ROWHAMMER attacks...
The vulnerability of the mm-answer-authpassword() function in the OpenSSH cryptographic protection mechanism allows a hacker to execute the Rowhammer attack and bypass the authentication process.
The vulnerability of the mm-answer-authpassword function in the OpenSSH cryptographic protection mechanism is related to deficiencies in the authentication process. This vulnerability arises when an operation exceeds the buffer boundaries in memory, resulting in bit manipulation errors. Exploitin...
Improper Isolation or Compartmentalization
Overview Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization with the memory involved in the mmanswerauthpassword function. A co-located attacker with low privileges can escalate privileges by inducing bit flips through ROWHAMMER attacks on stack variabl...
Sudo Security Breach
Sudo is a program for use on Unix-like systems that allows users to execute commands in a secure manner with special privileges. A security vulnerability exists in versions of Sudo prior to 1.9.15, which stems from vulnerability to a ROWHAMMER attack that can bypass SUDO authentication...
[slackware-security] sudo
New sudo packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/sudo-1.9.15-i586-1slack15.0.txz: Upgraded. The sudoers plugin has been modified to make it more resilient to ROWHAMME...
F5 Networks BIG-IP : Rowhammer hardware vulnerability (K60570139)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K60570139 advisory. - Modern DRAM chips DDR4 and LPDDR4 after 2015 are affected by a vulnerability in deployment of internal mitigations...
K60570139: Rowhammer hardware vulnerability CVE-2020-10255
Security Advisory Description Modern DRAM chips DDR4 and LPDDR4 after 2015 are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh TRR, aka the TRRespass issue. To exploit this vulnerability, the attacker needs to create certain...