86 matches found
EUVD-2019-3133
Malware in sbrugna...
EUVD-2016-1315
Malware in sbrugna...
EUVD-2016-3853
Malware in sbrugna...
EUVD-2019-3134
Malware in sbrugna...
EUVD-2016-8398
Malware in sbrugna...
EUVD-2013-6228
Malware in sbrugna...
EUVD-2016-3642
Malware in sbrugna...
EUVD-2016-3855
Malware in sbrugna...
EUVD-2016-9838
Malware in sbrugna...
EUVD-2005-4881
Malware in sbrugna...
EUVD-2019-2124
Malware in sbrugna...
EUVD-2017-14331
Malware in sbrugna...
webkitgtk: Improper access management to CLONE_NEWUSER and the TIOCSTI ioctl
A flaw was found in webkitgtk in versions prior to 2.28.3 and in WPE WebKit in versions prior to 2.28.3. The bubblewrap sandbox failed to properly block access to CLONENEWUSER and the TIOCSTI ioctl. CLONENEWUSER could potentially be used to confuse xdg- desktop-portal, which allows access outside...
Azure Linux 3.0 Security Update: coreutils (CVE-2016-2781)
The version of coreutils installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2016-2781 advisory. - chroot in GNU coreutils, when used with --userspec, allows local users to escape to the parent session via...
RHEL 7 : util-linux (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - util-linux: runuser tty hijack via TIOCSTI ioctl CVE-2016-2779 - Blkid in util-linux before 2.26rc-1 allo...
RHEL 6 : polkit (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - polkit: Improper handling of user with uid INTMAX leading to authentication bypass CVE-2018-19788 - pkexe...
SUSE CVE-2019-11460
An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the bubblewrap sandbox used to confine thumbnailers by using the TIOCSTI ioctl to push characters into the input buffer of the thumbnailer's...
openSUSE 15 Security Update : gnome-desktop (SUSE-SU-2022:3837-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:3837-1 advisory. - An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the...
EulerOS Virtualization 3.0.2.2 : util-linux (EulerOS-SA-2021-2173)
According to the version of the util-linux packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characte...
EulerOS Virtualization for ARM 64 3.0.2.0 : util-linux (EulerOS-SA-2021-2070)
According to the version of the util-linux packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - It was found that runuser was vulnerable to TIOCSTI ioctl attacks, allowing the executed program to push characters t...