3188 matches found
PYSEC-2022-43096
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-dates package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43089
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43130
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...
PT-2022-37359 · Pypi +2 · D8S-Timer +2
Name of the Vulnerable Software and Affected Versions: d8s-timer version not specified d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party in the d8s-timer for python distributed on PyPI. Another affected package is democritus-dates. Recommendation...
CVE-2022-43304
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...
CVE-2022-43304
Summary: CVE-2022-43304 describes a code-execution backdoor in the PyPI package d8s-timer for Python, introduced by a third party. The backdoor is associated with the democritus-uuids package, and the affected software/version cited is d8s-timer with version 0.1.0 (and related d8s-htm code path)....
PT-2022-26838 · D8S-Htm +1 · D8S-Htm +2
Name of the Vulnerable Software and Affected Versions: d8s-htm version 0.1.0 d8s-timer versions affected versions not specified Description: A potential code-execution backdoor was inserted by a third party into the d8s-timer for python, distributed on PyPI. Additionally, the democritus-uuids...
CVE-2022-43304
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0...
PT-2022-37393 · Pypi · D8S-Htm +2
Name of the Vulnerable Software and Affected Versions: d8s-timer version not specified d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party in the d8s-timer package distributed on PyPI. Another package, democritus-uuids, also contains a potential co...
Democritus Project 代码问题漏洞
Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. A code execution vulnerability exists in Democritus Project d8s-timer, which stems from its inclusion of a potential code execution backdoor inserted by a third party. An...
Democritus Project 代码问题漏洞
Democritus Project is a collection of simple, effective, modular, well-tested and well-documented features from Democritus. Democritus Project d8s-timer has a security vulnerability that stems from its inclusion of a potential code execution backdoor inserted by a third party. An attacker could...
PT-2022-37353 · Pypi · D8S-Htm +2
Name of the Vulnerable Software and Affected Versions: d8s-timer version not specified d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party in the d8s-timer package distributed on PyPI. Additionally, the democritus-dates package also contains a...
PT-2022-37352 · Pypi +1 · Democritus-Uuids +2
Name of the Vulnerable Software and Affected Versions: d8s-timer version not specified d8s-htm version 0.1.0 Description: A potential code-execution backdoor was inserted by a third party into the d8s-timer for python distributed on PyPI. Another affected package is democritus-uuids...
PT-2022-26840 · Pypi · D8S-Htm +2
Name of the Vulnerable Software and Affected Versions: d8s-timer version 0.1.0 d8s-htm version 0.1.0 Description: The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties...
CVE-2022-43306
The CVE-2022-43306 entry concerns the PyPI package d8s-timer for Python, with the affected version 0.1.0. Multiple connected documents state that a third-party inserted a potential code-execution backdoor, specifically via the democritus-dates package, leading to a total impact in the software ch...
CVE-2022-43306
The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-dates package. The affected version of d8s-htm is 0.1.0...
AlmaLinux 9 : kernel-rt (ALSA-2022:7319)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7319 advisory. - The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACESEIZE code path allows attackers to bypass intended restrictions on setting the...
kernel: posix-cpu-timers: Cleanup CPU timers before freeing them during exec
In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: Cleanup CPU timers before freeing them during exec Commit 55e8c8eb2c7b "posix-cpu-timers: Store a reference to a pid not a task" started looking up tasks by PID when deleting a CPU timer. When a non-leader threa...
Important: Red Hat Security Advisory: kpatch-patch security update
An update for kpatch-patch is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
kernel: posix cpu timer use-after-free may lead to local privilege escalation
A use-after-free flaw was found in the Linux kernel’s POSIX CPU timers functionality in the way a user creates and then deletes the timer in the non-leader thread of the program. This flaw allows a local user to crash or potentially escalate their privileges on the system...