5 matches found
Debian: Security Advisory (DSA-1959-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-4261
Multiple directory traversal vulnerabilities in the iallocator framework in Ganeti 1.2.4 through 1.2.8, 2.0.0 through 2.0.4, and 2.1.0 before 2.1.0rc2 allow 1 remote attackers to execute arbitrary programs via a crafted external script name supplied through the HTTP remote API RAPI and allow 2...
CVE-2009-4261
Ganeti CVE-2009-4261 affects the iallocator framework with path sanitization errors in Ganeti versions 1.2.4–1.2.8, 2.0.0–2.0.4, and 2.1.0 before 2.1.0~rc2. The vulnerability allows (1) remote attackers to execute arbitrary programs via a crafted external script name through the HTTP remote API (...
[Suspected Spam][oCERT-2009-019] Ganeti path sanitization errors
2009-019 Ganeti path sanitization errors Description: Ganeti, an open source virtualisation manager, suffers from an input validation bug that poses a security risk. The vulnerability applies to the commands submitted, either locally via gnt- commands or remotely via the HTTP API, to the machine...
[SECURITY] [DSA-1959-1] New ganeti packages fix arbitrary command execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1959-1 [email protected] http://www.debian.org/security/ Raphael Geissert December 19, 2009 http://www.debian.org/security/faq -...