16 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-31704
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: use checkaddoverflow to prevent u16 DACL size overflow setposixaclentriesdacl and setntacldacl accumulate ACE sizes in u16 variables. When a file has man...
EUVD-2012-4233
Malware in sbrugna...
EUVD-2024-53106
Malicious code in bioql PyPI...
CVE-2024-56317
Matter (aka connectedhomeip/Project CHIP) prior to 1.4.0.0 has a denial-of-service vulnerability in the WriteAcl function: it deletes all ACL entries and only recreates them if input validation succeeds; on decoding validation failure, no ACLs are restored. This is supported by multiple sources, ...
CVE-2024-56317
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...
CVE-2024-56317
In Matter aka connectedhomeip or Project CHIP through 1.4.0.0, the WriteAcl function deletes all existing ACL entries first, and then attempts to recreate them based on user input. If input validation fails during decoding, the process stops, and no entries are restored by...
PT-2023-35586 · Git +1 · Opensc
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type identified as Invalid-free. The crash state involves several function calls, including sc file clear acl entries, sc...
SUSE CVE-2012-4289
epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a large number of ACL entries...
Security Bulletin: ACLs not backed up on VxFS-HP-UX filesystems by IBM Spectrum Protect Backup-Archive Client (CVE-2019-4236)
Summary ACL entries associated with a file or directory on a VxFS HP-UX filesystem may not be backed up by the IBM Spectrum Protect formerly Tivoli Storage Manager Backup-Archive Client. Vulnerability Details CVEID: CVE-2019-4236 DESCRIPTION: A Spectrum Protect client backup or archive operation...
CVE-2019-4236
A IBM Spectrum Protect 7.l client backup or archive operation running for an HP-UX VxFS object is silently skipping Access Control List ACL entries from backup or archive if there are more than twelve ACL entries associated with the object in total. As a result, it could allow a local attacker to...
UBUNTU-CVE-2018-1318
Adding method ACLs in remap.config can cause a segfault when the user makes a carefully crafted request. This affects versions Apache Traffic Server ATS 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrad...
openSUSE Security Update : dovecot12 (openSUSE-SU-2010:0923-1)
dovecot granted admin rights to all owner mailboxes CVE-2010-3706. When using multiple ACL entries for mailboxes the most specific one was not always applied CVE-2010-3707. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
CVE-2012-4289
epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a large number of ACL entries...
DEBIAN-CVE-2012-4289
epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a large number of ACL entries...
CVE-2012-4289
epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service loop and CPU consumption via a large number of ACL entries...
CVE-2004-0432
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions...