322 matches found
subscription-manager bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Appneta Tcpreplay 安全漏洞
Appneta Tcpreplay is a suite of open source utilities for editing and replaying network traffic on UNIX-based operating systems from Appneta, Inc. A security vulnerability exists in Appneta Tcpreplay version 4.4.1, which stems from a memory leak in the fixipv6checksums function that affects data...
Oracle Solaris Denial of Service Vulnerability (CNVD-2022-31682)
Oracle Solaris is a UNIX operating system from Oracle. A security vulnerability exists in Oracle Systems' Oracle Solaris product component: kernel that could allow a low-privileged attacker to compromise Oracle Solaris by logging on to the infrastructure that executes Oracle Solaris.The...
Oracle Solaris has an unspecified vulnerability (CNVD-2022-31849)
Oracle Solaris is a UNIX operating system from Oracle Systems, Inc. A security vulnerability in Oracle Solaris allows a highly privileged attacker to compromise Oracle Solaris by logging into the infrastructure where Oracle Solaris is executed. A successful attack requires human interaction from...
Important: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
CVE-2022-25484
tcpprep v4.4.1 has a reachable assertion assertl2len 0 in packet2tree at tree.c in tcpprep v4.4.1...
IBM AIX 输入验证错误漏洞
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. IBM AIX has an input validation error vulnerability, which stems from a problem with CAA/Kernel and can be exploited by an attacker to trigger a denial of service...
IBM AIX Information Disclosure Vulnerability (CNVD-2021-91419)
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. IBM AIX has an information disclosure vulnerability that stems from a problem with IBM AIX's handling of user privileges, which can be exploited by a non-privileged local attacker to gain...
IBM AIX Privilege Permission and Access Control Issue Vulnerability (CNVD-2021-71526)
IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture by the U.S. company IBM. There is a privilege permission and access control issue vulnerability in several IBM applications. The vulnerability stems from the lack of effective privilege permission an...
IBM AIX Denial of Service Vulnerability (CNVD-2021-88194)
IBM AIX is an open standards-based UNIX operating system developed by IBM for the IBM Power architecture. A denial of service vulnerability exists in IBM AIX version 7.1, 7.2, and VIOS version 3.1. A local attacker could exploit this vulnerability to cause a denial of service...
GHSA-HC92-9H3M-C39J vulnerabilities
Vulnerabilities for packages: buck2...
CVE-2019-4588
IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks...
CVE-2012-1156
Moodle before 2.2.2 has users' private files included in course backups Versions 2.2 to 2.2.1+, 2.1 to 2.1.4+, 2.0 to 2.0.7+ are affected...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
vdsm: privilege escalation to root via systemd_run
A vulnerability was discovered in vdsm, version 4.19 through 4.30.3 and 4.30.5 through 4.30.8. The systemdrun function exposed to the vdsm system user could be abused to execute arbitrary commands as root...
IBM DB2 Buffer Error Vulnerability
IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A buffer overflow vulnerability exists in db2pdcfg in IBM Db2, which stems from the program's failure ...
CVE-2019-11005
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of coders/svg.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a quoted font family value...
Tcpreplay Design Error Vulnerability (CNVD-2019-34847)
Tcpreplay is a set of open source utilities for editing and replaying network traffic for UNIX based operating systems. Tcpreplay suffers from a design error vulnerability. An attacker could exploit this vulnerability to cause a denial of service or other attack...
Microsoft Windows 10: Create symbolic links
This user right determines if users can create a symbolic link from the device they are logged on to. A symbolic link is a file-system object that points to another file-system object. The object that is pointed to is called the target. Symbolic links are transparent to users. The links appear as...
Oracle Sun Solaris has an unspecified vulnerability (CNVD-2018-09049)
Oracle Sun Solaris is a Unix operating system originally developed by Sun Microsystems. An unspecified vulnerability exists in the Python modules component of Oracle Sun Solaris. An attacker could exploit this vulnerability to compromise confidentiality and integrity...