21 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-1664
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal...
GLSA-202408-30 : dpkg: Directory Traversal
The remote host is affected by the vulnerability described in GLSA-202408-30 dpkg: Directory Traversal Please review the CVE indentifier referenced below for details. Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory. Note that Nessus has not...
EulerOS Virtualization 3.0.2.0 : dpkg (EulerOS-SA-2023-1744)
According to the versions of the dpkg package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a...
SUSE: Security Advisory (SUSE-SU-2022:4081-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : dpkg (SUSE-SU-2022:4081-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4081-1 advisory. - CVE-2022-1664: Fixed a directory traversal vulnerability in Dpkg::Source::Archive bsc1199944. Tenable h...
SUSE-SU-2022:4081-1 Security update for dpkg
This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed a directory traversal vulnerability in Dpkg::Source::Archive bsc1199944...
Huawei EulerOS: Security Advisory for dpkg (EulerOS-SA-2022-2554)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.6.0 : dpkg (EulerOS-SA-2022-2554)
According to the versions of the dpkg package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a...
Mageia: Security Advisory (MGASA-2022-0327)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated dpkg packages fix security vulnerability
A malicious source package could write files outside the unpack directory. CVE-2022-1664...
SUSE: Security Advisory (SUSE-SU-2022:2689-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2689-1 Security update for dpkg
This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed directory traversal vulnerability in Dpkg::Source::Archive bsc1199944...
CVE-2022-1664 affecting package dpkg for versions less than 1.20.10-1
CVE-2022-1664 affecting package dpkg for versions less than 1.20.10-1. An upgraded version of the package is available that resolves this issue...
CLSA-2022-1654717100 Fix CVE(s): CVE-2022-1664
SECURITY UPDATE: Directory traversal issue in dpkg-source - scripts/Dpkg/Source/Archive.pm: Prevent directory traversal for in-place extracts. - CVE-2022-1664...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : dpkg vulnerability (USN-5446-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5446-1 advisory. Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into...
CVE-2022-1664
Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...
CVE-2022-1664 directory traversal for in-place extracts with untrusted v2 and v3 source packages with debian.tar
Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...
CVE-2022-1664
CVE-2022-1664 affects dpkg: Dpkg::Source::Archive allows directory traversal during in-place extraction of untrusted v2/v3 source packages that include debian.tar. Affected versions are dpkg before 1.21.8, 1.20.10, 1.19.8, and 1.18.26. Mitigation: upgrade to a fixed dpkg version (e.g., 1.21.8 or ...
CVE-2022-1664
Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability. When extracting untrusted source packages in v2 and v3 source package formats that include a debian.tar, the in-place extraction ca...
[SECURITY] [DLA 3022-1] dpkg security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3022-1 [email protected] https://www.debian.org/lts/security/ Salvatore Bonaccorso May 25, 2022 https://wiki.debian.org/LTS -...