EulerOS 2.0 SP11 : systemd (EulerOS-SA-2025-2216)

According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binar...

SUSE: Security Advisory (SUSE-SU-2023:0201-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:0201-1 Security update for systemd

This update for systemd fixes the following issues: - CVE-2022-4415: Fixed an issue where users could access coredumps with changed uid, gid or capabilities bsc1205000. Non-security fixes: - Enabled the pstore service jscPED-2663. - Fixed an issue accessing TPM when secure boot is enabled...

binutils security update

2.30-108.0.2 - Forward-port the following update: 2.30-93.0.4 - Backport fix for fencepost bug in CTF pptrtab usage causing coredumps - Backport test result fixes for new GCC-based CTF generation Orabug: 33344570 - Reviewed-by: David Faust - Reviewed-by: Jose E. Marchesi 2.30-108.0.1 - Forward-po...

SUSE: Security Advisory (SUSE-SU-2019:2006-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:2480-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. It is possible due to uninitialized kernel data leak in userspace coredumps...

SUSE-SU-2019:2480-1 Security update for gpg2

This update for gpg2 fixes the following issues: Security issue fixed: - CVE-2019-13050: Fixed denial-of-service attacks via big keys. bsc1141093 Non-security issue fixed: - Allow coredumps in X11 desktop sessions bsc1124847...

openSUSE Security Update : gpg2 (openSUSE-2019-1917)

This update for gpg2 fixes the following issues : Security issue fixed : - CVE-2019-13050: Fixed a denial of service attacks via big keys bsc1141093. Non-security issue fixed : - Allow coredumps in X11 desktop sessions bsc1124847 This update was imported from the SUSE:SLE-15:Update update project...

SUSE SLED15 / SLES15 Security Update : gpg2 (SUSE-SU-2019:2006-1)

This update for gpg2 fixes the following issues : Security issue fixed : CVE-2019-13050: Fixed a denial of service attacks via big keys bsc1141093. Non-security issue fixed: Allow coredumps in X11 desktop sessions bsc1124847 Note that Tenable Network Security has extracted the preceding descripti...

SUSE-SU-2019:2006-1 Security update for gpg2

This update for gpg2 fixes the following issues: Security issue fixed: - CVE-2019-13050: Fixed a denial of service attacks via big keys bsc1141093. Non-security issue fixed: - Allow coredumps in X11 desktop sessions bsc1124847...

FreeBSD : Apache httpd -- multiple vulnerabilities (8b1a50ab-8a8e-11e8-add2-b499baebfeaf)

The Apache project reports : - DoS for HTTP/2 connections by crafted requests CVE-2018-1333. By specially crafting HTTP/2 requests, workers would be allocated 60 seconds longer than necessary, leading to worker exhaustion and a denial of service. low - modmd, DoS via Coredumps on specially crafte...

Linux (Ubuntu) - Other Users coredumps Can Be Read via setgid Directory and killpriv Bypass

/ Note: I am both sending this bug report to [email protected] and filing it in the Ubuntu bugtracker because I can't tell whether this counts as a kernel bug or as a Ubuntu bug. You may wish to talk to each other to determine the best place to fix this. I noticed halfdog's old writeup at...

Apache Httpd < 2.4.34 : mod_md, DoS via Coredumps on specially crafted requests

By specially crafting HTTP requests, the modmd challenge handler would dereference a NULL pointer and cause the child process to segfault. This could be used to DoS the server...

HP-UX Security Patch : PHSS_23840

OV NNM6.1 ovalarmsrv process coredumps %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid51469; scriptversion"1.5"; scriptsetattributeattribute:"pluginmodificationdate",...

Linux Kernel 2.6.17.4 sys_prctl() Local Root

/ Linux = 2.6.13 prctl kernel exploit C Julien TINNES If you read the Changelog from 2.6.13 you've probably seen: PATCH setuid core dump This patch mainly adds suidsafe to suiddumpable sysctl but also a new per process, user setable argument to PRSETDUMPABLE. This flaw allows us to create a root...

FreeBSD-SA-99:04.core

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-99:04 Security Advisory FreeBSD, Inc. Topic: Coredumps and symbolic links Category: core Module: kernel Announced: 1999-09-15 Affects: FreeBSD 3.2 and earlier FreeBSD-curren...