306 matches found
[ASA-202106-24] polkit: privilege escalation
Arch Linux Security Advisory ASA-202106-24 ========================================== Severity: Medium Date : 2021-06-09 CVE-ID : CVE-2021-3560 Package : polkit Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-2028 Summary ======= The package polkit before version...
Arch Linux安全漏洞
Arch Linux is an application system from Arch Open Source. A lightweight and flexible Linux® distribution that tries to keep it simple. Arch Linux suffers from a security vulnerability that allows partial display of files not accessed by the user...
[ASA-202106-12] redis: arbitrary code execution
Arch Linux Security Advisory ASA-202106-12 ========================================== Severity: High Date : 2021-06-01 CVE-ID : CVE-2021-32625 Package : redis Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-2022 Summary ======= The package redis before versi...
[ASA-202106-16] pam-u2f: authentication bypass
Arch Linux Security Advisory ASA-202106-16 ========================================== Severity: Medium Date : 2021-06-01 CVE-ID : CVE-2021-31924 Package : pam-u2f Type : authentication bypass Remote : No Link : https://security.archlinux.org/AVG-2001 Summary ======= The package pam-u2f before...
Arch Linux输入验证错误漏洞
Arch Linux is an application system from Arch Open Source. A lightweight and flexible Linux® distribution that tries to keep it simple. Arch Linux suffers from an input validation error vulnerability that can be exploited by an attacker to pass specially designed data to an application, trigger a...
[ASA-202105-19] matrix-synapse: denial of service
Arch Linux Security Advisory ASA-202105-19 ========================================== Severity: Medium Date : 2021-05-25 CVE-ID : CVE-2021-29471 Package : matrix-synapse Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1943 Summary ======= The package matrix-synapse...
[ASA-202105-10] squid: denial of service
Arch Linux Security Advisory ASA-202105-10 ========================================== Severity: High Date : 2021-05-19 CVE-ID : CVE-2021-28651 CVE-2021-28652 CVE-2021-28662 Package : squid Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1949 Summary ======= The...
[ASA-202105-5] firefox: arbitrary code execution
Arch Linux Security Advisory ASA-202105-5 ========================================= Severity: High Date : 2021-05-19 CVE-ID : CVE-2021-29952 Package : firefox Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1917 Summary ======= The package firefox before...
[ASA-202105-2] python-flask-security-too: cross-site request forgery
Arch Linux Security Advisory ASA-202105-2 ========================================= Severity: High Date : 2021-05-19 CVE-ID : CVE-2021-21241 Package : python-flask-security-too Type : cross-site request forgery Remote : Yes Link : https://security.archlinux.org/AVG-1434 Summary ======= The packag...
[ASA-202105-15] python-babel: arbitrary code execution
Arch Linux Security Advisory ASA-202105-15 ========================================== Severity: Medium Date : 2021-05-19 CVE-ID : CVE-2021-20095 Package : python-babel Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1894 Summary ======= The package python-bab...
Arch Linux 缓冲区错误漏洞
Arch Linux is an application system from Arch Open Source. A lightweight and flexible Linux® distribution that tries to keep it simple. A buffer error vulnerability exists in Arch Linux. The vulnerability originates when a networked system or product performs an operation in memory without proper...
Arch Linux 缓冲区错误漏洞
Arch Linux is an application system from Arch Open Source. A lightweight and flexible Linux® distribution that tries to keep it simple. There are security vulnerabilities in Arch Linux...
Arch Linux 缓冲区错误漏洞
DjVuLibre is an open source implementation of the DjVu computer file format, which includes a DjVu file viewer, browser plug-in, DjVu file decoder/encoder and other utilities.DjVuLibre suffers from a denial-of-service vulnerability that could be exploited by an attacker to cause an application to...
[ASA-202104-4] thunderbird: multiple issues
Arch Linux Security Advisory ASA-202104-4 ========================================= Severity: High Date : 2021-04-29 CVE-ID : CVE-2021-23961 CVE-2021-23994 CVE-2021-23995 CVE-2021-23998 CVE-2021-23999 CVE-2021-24002 CVE-2021-29946 CVE-2021-29948 Package : thunderbird Type : multiple issues Remote...
[ASA-202103-11] mkinitcpio-busybox: denial of service
Arch Linux Security Advisory ASA-202103-11 ========================================== Severity: Low Date : 2021-03-25 CVE-ID : CVE-2021-28831 Package : mkinitcpio-busybox Type : denial of service Remote : No Link : https://security.archlinux.org/AVG-1708 Summary ======= The package...
[ASA-202103-26] godot: arbitrary code execution
Arch Linux Security Advisory ASA-202103-26 ========================================== Severity: Medium Date : 2021-03-25 CVE-ID : CVE-2021-26825 CVE-2021-26826 Package : godot Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1544 Summary ======= The package...
[ASA-202103-17] dotnet-sdk: multiple issues
Arch Linux Security Advisory ASA-202103-17 ========================================== Severity: High Date : 2021-03-25 CVE-ID : CVE-2021-1721 CVE-2021-1723 CVE-2021-24112 Package : dotnet-sdk Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1449 Summary ======= The...
Arch Linux libtpms 安全特征问题漏洞
Arch Linux libtpms is a US Arch Linux open source application. A library that provides software emulation of Trusted Platform Modules TPM 1.2 and TPM 2.0. Arch Linux libtpms 0.8.2 suffers from a security signature issue vulnerability that stems from not returning the last initialization vector, b...
[ASA-202103-7] ffmpeg: arbitrary code execution
Arch Linux Security Advisory ASA-202103-7 ========================================= Severity: Medium Date : 2021-03-13 CVE-ID : CVE-2020-35964 Package : ffmpeg Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1649 Summary ======= The package ffmpeg before...
[ASA-202102-42] openssl: multiple issues
Arch Linux Security Advisory ASA-202102-42 ========================================== Severity: Medium Date : 2021-02-27 CVE-ID : CVE-2021-23840 CVE-2021-23841 Package : openssl Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1581 Summary ======= The package openssl...