21 matches found
EUVD-1999-0686
Malware in sbrugna...
CVE-1999-0704
Buffer overflow in Berkeley automounter daemon amd logging facility provided in the Linux am-utils package and others...
SUSE SLED12 / SLES12 Security Update : systemd (SUSE-SU-2017:2031-1)
This update for systemd provides several fixes and enhancements. Security issues fixed : - CVE-2017-9217: NULL pointer dereferencing that could lead to resolved aborting. bsc1040614 - CVE-2017-9445: Possible out-of-bounds write triggered by a specially crafted TCP payload from a DNS server...
SUSE SLED12 / SLES12 Security Update : systemd, dracut (SUSE-SU-2017:1898-1)
This update for systemd and dracut fixes the following issues: Security issues fixed : - CVE-2017-9445: Possible out-of-bounds write triggered by a specially crafted TCP payload from a DNS server. bsc1045290 Non-security issues fixed in systemd : - Automounter issue in combination with NFS volume...
SUSE-SU-2017:1898-1 Security update for systemd, dracut
This update for systemd and dracut fixes the following issues: Security issues fixed: - CVE-2017-9445: Possible out-of-bounds write triggered by a specially crafted TCP payload from a DNS server. bsc1045290 Non-security issues fixed in systemd: - Automounter issue in combination with NFS volumes...
Scientific Linux Security Update : autofs on SL7.x x86_64 (20151119)
It was found that program-based automounter maps that used interpreted languages such as Python used standard environment variables to locate and load modules of those languages. A local attacker could potentially use this flaw to escalate their privileges on the system. CVE-2014-8169 Note: This...
Amazon Linux AMI : autofs (ALAS-2015-626)
It was found that program-based automounter maps that used interpreted languages such as Python would use standard environment variables to locate and load modules of those languages. A local attacker could potentially use this flaw to escalate their privileges on the system. C Tenable Network...
Medium: autofs
Issue Overview: It was found that program-based automounter maps that used interpreted languages such as Python would use standard environment variables to locate and load modules of those languages. A local attacker could potentially use this flaw to escalate their privileges on the system...
Moderate: Red Hat Security Advisory: autofs security, bug fix and enhancement update
Updated autofs packages that fix one security issue, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
Scientific Linux Security Update : autofs on SL6.x i386/x86_64 (20150722)
It was found that program-based automounter maps that used interpreted languages such as Python would use standard environment variables to locate and load modules of those languages. A local attacker could potentially use this flaw to escalate their privileges on the system. CVE-2014-8169 Note:...
CentOS 6 : autofs (CESA-2015:1344)
Updated autofs packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
USN-2579-1: autofs vulnerability
It was discovered that autofs incorrectly filtered environment variables when using program maps. When program maps were configured, a local user could use this issue to escalate privileges. This update changes the default behaviour by adding a prefix to environment variables. Sites using program...
GParted 0.14.1 - OS Command Execution
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: OS Command Execution product: GParted - Gnome Partition Editor vulnerable version: =0.15.0, =0.14.1 with fix for CVE-2014-7208 applied CVE number: CVE-2014-7208 impact:...
GParted 0.14.1 - OS Command Execution Vulnerability
Exploit for linux platform in category local exploits title: OS Command Execution product: GParted - Gnome Partition Editor vulnerable version: =0.15.0, =0.14.1 with fix for CVE-2014-7208 applied CVE number: CVE-2014-7208 impact: medium homepage: http://gparted.org/ found: 2014-07 by: W. Ettlinge...
[SECURITY] Fedora 13 Update: am-utils-6.1.5-16.fc13
Am-utils includes an updated version of Amd, the popular BSD automounter. An automounter is a program which maintains a cache of mounted filesystems. Filesystems are mounted when they are first referenced by the user and unmounted after a certain period of inactivity. Amd supports a variety of...
[SECURITY] Fedora 10 Update: afuse-0.2-4.fc10
Afuse is an automounting file system implemented in user-space using FUSE. Afuse currently implements the most basic functionality that can be expected by an automounter; that is it manages a directory of virtual directories. If one of these virtual directories is accessed and is not already...
[SECURITY] Fedora 9 Update: am-utils-6.1.5-8.1.fc9
Am-utils includes an updated version of Amd, the popular BSD automounter. An automounter is a program which maintains a cache of mounted filesystems. Filesystems are mounted when they are first referenced by the user and unmounted after a certain period of inactivity. Amd supports a variety of...
Important: kernel security update
2.6.9-55.0.12.0.1 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix for nfs open call taking longer issue Chuck Lever orabug 5580407 bz 219412 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach...
CVE-1999-0704
Buffer overflow in Berkeley automounter daemon amd logging facility provided in the Linux am-utils package and others...
CVE-1999-0704
The CVE refers to a buffer overflow in the Berkeley automounter daemon (amd) logging facility included with the Linux am-utils package and related software. Affected component: amd’s logging facility; underlying issue: buffer overflow. Potential impact per sources: complete confidentiality, integ...