Lucene search
+L

200 matches found

Oracle linux
Oracle linux
added 2023/06/13 12:0 a.m.36 views

grub2 security update

2.06-46.0.4.el91.3 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix CVE-2022-3775 Orabug: 34871953 - Enable signing for aarch64 EFI - Fix signing certificate names - Enable back btrfs grub module for EFI pre-built image Orabug: 34360986 - Replaced bugzilla.oracle.com references Orabug:...

8.6CVSS6.9AI score0.00872EPSS
Exploits0
OSV
OSV
added 2023/06/02 5:15 p.m.2 views

DEBIAN-CVE-2023-0430

Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug. This vulnerability affects Thunderbird 102.7.1...

6.5CVSS6.5AI score0.00372EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/20 12:0 a.m.4 views

PT-2023-9259

Name of the Vulnerable Software and Affected Versions Gogs versions 0.13.0 and earlier Description The issue is related to argument injection during the tagging of a new release. This could allow a remote attacker to disclose protected information. Unprivileged user accounts with at least one SSH...

8.2CVSS6.1AI score0.00689EPSS
Exploits1References27
SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.2 views

SUSE CVE-2020-15113

In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients with restricted access permissions 700 by using the os.MkdirAll. This functio...

7.1CVSS8.2AI score0.00227EPSS
Exploits0References3
Metasploit
Metasploit
added 2022/11/08 7:49 p.m.3914 views

SSL/TLS Version Detection

Check if a server supports a given version of SSL/TLS and cipher suites. The certificate is stored in loot, and any known vulnerabilities against that SSL version and cipher suite combination are checked. These checks include POODLE, deprecated protocols, expired/not valid certs, low key strength...

5.4AI score
Exploits0
Oracle linux
Oracle linux
added 2022/07/11 12:0 a.m.63 views

olcne security update

olcne 1.4.6-2 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over - Update gen-certs-helper script to skip printing olcnetransferscript execution - Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname...

10CVSS7.8AI score0.02701EPSS
Exploits1
Oracle linux
Oracle linux
added 2022/06/30 12:0 a.m.74 views

Unbreakable Enterprise kernel security update

5.15.0-0.30.19 - net/mlx4: Increase numsrq in lowmemprofile Dave Kleikamp Orabug: 34052160 5.15.0-0.30.18 - Revert ocfs2: mount shared volume without ha stack Junxiao Bi Orabug: 33701900 - KVM: x86/speculation: Disable Fill buffer clear within guests Pawan Gupta Orabug: 34202258 CVE-2022-21123...

7.8CVSS7.8AI score0.06451EPSS
Exploits17
OSV
OSV
added 2022/06/20 2:11 p.m.10 views

SUSE-SU-2022:2144-1 Security update for SUSE Manager Server 4.2

This update fixes the following issues: inter-server-sync: - version 0.2.2 Parameter --channel-with-children didn't export data bsc1199089 Clean rhnchannelcloned table to rebuild hierarchy bsc1197400 - Version 0.2.1 Correct sequence in use for table rhnpackagekeybsc1197400 Make Docker image expor...

9.8CVSS7.6AI score0.04581EPSS
Exploits3References25
Oracle linux
Oracle linux
added 2022/06/07 12:0 a.m.36 views

shim security update

15.6-1.0.3 - Update shimx64.efi and shimia32.efi signed by Microsoft JIRA: OLDIS-16370 15.6-1.0.2 - Update to shim-unsigned v15.6.rc2 JIRA: OLDIS-16370 15.6-1.0.1 - Update to shim-unsigned v15.6.rc1 JIRA: OLDIS-16370 15.5-1.0.3 - Update vendor certs JIRA: OLDIS-16370 - Update oraclegrub2-sig-key...

2.3AI score0.00332EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/05/24 4:50 p.m.21 views

Helm Improper Certificate Validation

helm Before 2.7.2 is affected by: CWE-295: Improper Certificate Validation. The impact is: Unauthorized clients could connect to the server because self-signed client certs were aloowed. The component is: helm many files updated, see...

9.8CVSS6.9AI score0.01358EPSS
Exploits0References6Affected Software1
Oracle linux
Oracle linux
added 2021/10/14 12:0 a.m.72 views

Unbreakable Enterprise kernel security update

5.4.17-2136.300.7 - KVM: SVM: Fix mismerge in svmupdatepiirte Liam Merwick Orabug: 33446526 - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page Liam Merwick Orabug: 33450675 5.4.17-2136.300.6 - Revert scsi: core: Cap scsihost cmdperlun at canqueue Jack Vogel Orabug:...

7.8CVSS7.6AI score0.0596EPSS
Exploits17
Oracle linux
Oracle linux
added 2021/09/23 12:0 a.m.105 views

mysql:8.0 security, bug fix, and enhancement update

mysql 8.0.26-1 - Update to MySQL 8.0.26 8.0.25-1 - Update to MySQL 8.0.25 8.0.24-1 - Update to MySQL 8.0.24 - Upstreamed patch: mysql-main-cast.patch 8.0.23-1 - Update to MySQL 8.0.23 - Created mysql-fix-includes-robin-hood.patch - Created mysql-main-cast.patch 8.0.22-1 - Update to MySQL 8.0.22 -...

8CVSS1.1AI score0.41478EPSS
Exploits3
ATTACKERKB
ATTACKERKB
added 2021/09/07 12:15 p.m.3 views

CVE-2021-37219

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2...

8.8CVSS6.7AI score0.01149EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/09/07 12:0 a.m.6 views

HashiCorp Consul 信任管理问题漏洞

Hashicorp HashiCorp Consul is a suite of distributed, highly available data center-aware solutions from HashiCorp Hashicorp USA. The product is used to connect and provision applications across a dynamically distributed infrastructure. A security vulnerability exists in the HashiCorp Consul and...

8.8CVSS6.7AI score0.01149EPSS
Exploits0References5
OSV
OSV
added 2021/06/29 1:42 p.m.47 views

RLSA-2021:2570 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan CVE-2021-33034 kernel: security bypass in certs/blacklist.c and certs/systemkeyring.c CVE-2020-26541 For more details...

7.8CVSS7.6AI score0.00819EPSS
Exploits2References3
OSV
OSV
added 2021/06/29 1:42 p.m.48 views

ALSA-2021:2570 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan CVE-2021-33034 kernel: security bypass in certs/blacklist.c and certs/systemkeyring.c CVE-2020-26541 For more details...

7.8CVSS7.6AI score0.00819EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2014:0342-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2014:0331-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2014:0331-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2014:0808-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Rows per page
Query Builder