AlmaLinux 8 : curl (ALSA-2021:3582)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:3582 advisory. - When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.The...

CVE-2021-32690

Helm is a tool for managing Charts packages of pre-configured Kubernetes resources. In versions of helm prior to 3.6.1, a vulnerability exists where the username and password credentials associated with a Helm repository could be passed on to another domain referenced by that Helm repository. Thi...

CVE-2021-32690

Helm before version 3.6.1 has an information-disclosure flaw where credentials tied to a Helm repository could be passed to other domains listed in the repository’s index.yaml. The issue is fixed in 3.6.1; a workaround involves auditing index.yaml for other domains in the urls list to see if cred...

DEBIAN-CVE-2013-1979

The scmsetcred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafted application...

CVE-2013-1979

The scmsetcred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafted application...