EUVD-2019-6507

Malware in sbrugna...

EUVD-2019-6508

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-15523

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LINBIT csync2 through 2.0. It does not correctly check for the return value GNUTLSEWARNINGALERTRECEIVED of the gnutlshandshake...

Linux Distros Unpatched Vulnerability : CVE-2019-15522

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LINBIT csync2 through 2.0. csyncdaemonsession in daemon.c neglects to force a failure of a hello command when the configuration...

OPENSUSE-SU-2024:10706-1 csync2-2.0+git.1600444747.83b3644-1.3 on GA media

These are all security issues fixed in the csync2-2.0+git.1600444747.83b3644-1.3 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2019-15523

An issue was discovered in LINBIT csync2 through 2.0. It does not correctly check for the return value GNUTLSEWARNINGALERTRECEIVED of the gnutlshandshake function. It neglects to call this function again, as required by the design of the API...

CVE-2019-15523

An issue was discovered in LINBIT csync2 through 2.0. It does not correctly check for the return value GNUTLSEWARNINGALERTRECEIVED of the gnutlshandshake function. It neglects to call this function again, as required by the design of the API...

SUSE-SU-2021:14763-1 Security update for csync2

This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS bsc1147137 - Fixed an issue where the TLS keys were not created correctly during installation bsc1145032...

Denial Of Service

csync2 is vulnerable to denial of service. The vulnerability exists due to the system's failure to force a failure of a hello command when the configuration requires use of SSL...

SUSE SLES12 Security Update : csync2 (SUSE-SU-2021:1952-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1952-1 advisory. - An issue was discovered in LINBIT csync2 through 2.0. csyncdaemonsession in daemon.c neglects to force a failure of a hello command when the...

SUSE SLES15 Security Update : csync2 (SUSE-SU-2021:1858-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:1858-1 advisory. - An issue was discovered in LINBIT csync2 through 2.0. csyncdaemonsession in daemon.c neglects to force a failure of a hello command when the...

openSUSE Security Update : csync2 (openSUSE-2021-853)

This update for csync2 fixes the following issues : - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS bsc1147137 - CVE-2019-15523: Fixed an incorrect TLS handshake error handling bsc1147139 This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C...

openSUSE: Security Advisory for csync2 (openSUSE-SU-2021:0853-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2021:0853-1 Security update for csync2

This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS bsc1147137 - CVE-2019-15523: Fixed an incorrect TLS handshake error handling bsc1147139 This update was imported from the SUSE:SLE-15:Update update project...

Security update for csync2 (moderate)

openSUSE Security Update: Security update for csync2 Announcement ID: openSUSE-SU-2021:0853-1 Rating: moderate References: 1147137 1147139 Cross-References: CVE-2019-15522 CVE-2019-15523 CVSS scores: CVE-2019-15522 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-15522 SUSE: 3.5...

SUSE-SU-2021:1858-1 Security update for csync2

This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS bsc1147137 - CVE-2019-15523: Fixed an incorrect TLS handshake error handling bsc1147139...

SUSE-SU-2021:0647-1 Security update for csync2

This update for csync2 fixes the following issues: - Fixed an issue where TLS keys were generated wrongly during installation bsc1145032...

Debian: Security Advisory (DLA-2515-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2515-1 : csync2 security update

It was discovered that csync2, a cluster synchronization tool, did not correctly check for the return value from GnuTLS security routines. It neglected to repeatedly call this function as required by the design of the API. For Debian 9 'Stretch', this problem has been fixed in version...

Insecure Logic Validation

csync2 does not securely validate a logic path within the application. The return value GNUTLSEWARNINGALERTRECEIVED of the gnutlshandshake function is not properly validated as required by design of the API and would lead to unintended logic execution...