CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2022/11/15 12:0 a.m.•16 views

NewStart CGSL MAIN 6.02 : logrotate Multiple Vulnerabilities (NS-SA-2022-0095)

The remote NewStart CGSL host, running version MAIN 6.02, has logrotate packages installed that are affected by multiple vulnerabilities: - Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before th...

Tenable Nessus•added 2022/05/09 12:0 a.m.•25 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : logrotate Multiple Vulnerabilities (NS-SA-2022-0037)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has logrotate packages installed that are affected by multiple vulnerabilities: - Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a fi...

Tenable Nessus•added 2021/10/27 12:0 a.m.•13 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : logrotate Multiple Vulnerabilities (NS-SA-2021-0108)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has logrotate packages installed that are affected by multiple vulnerabilities: - Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a fi...

Tenable Nessus•added 2015/09/14 12:0 a.m.•29 views

F5 Networks BIG-IP : logrotate vulnerability (SOL16869)

Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

1.9CVSS5.3AI score0.00281EPSS

F5 Networks•added 2015/07/07 12:0 a.m.•48 views

SOL16869 - logrotate vulnerability CVE-2011-1098

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...

1.9CVSS1.5AI score0.00281EPSS

Exploits1References5

Tenable Nessus•added 2014/06/13 12:0 a.m.•20 views

openSUSE Security Update : logrotate (openSUSE-SU-2011:0536-1)

This update for logrotate provides the following fixes : dbg114-logrotate-4580 logrotate-4580 newupdateinfo The shredfile function in logrotate might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated by a filename that is...

6.9CVSS5.6AI score0.00412EPSS

Tenable Nessus•added 2013/07/12 12:0 a.m.•23 views

Oracle Linux 6 : logrotate (ELSA-2011-0407)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2011-0407 advisory. 3.7.8-12.1 - fix 688518 - fixed CVE-2011-1154, CVE-2011-1155 and CVE-2011-1098 Tenable has extracted the preceding description block directly from the...

6.9CVSS5.6AI score0.00412EPSS

Exploits1References4

Tenable Nessus•added 2012/08/01 12:0 a.m.•24 views

Scientific Linux Security Update : logrotate on SL6.x i386/x86_64

A shell command injection flaw was found in the way logrotate handled the shred directive. A specially crafted log file could cause logrotate to execute arbitrary commands with the privileges of the user running logrotate root, by default. Note: The shred directive is not enabled by default...

6.9CVSS5.9AI score0.00412EPSS

Exploits1References4

Tenable Nessus•added 2011/07/22 12:0 a.m.•32 views

Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 : logrotate vulnerabilities (USN-1172-1)

It was discovered that logrotate incorrectly handled the creation of new log files. Local users could possibly read log files if they were opened before permissions were in place. This issue only affected Ubuntu 8.04 LTS. CVE-2011-1098 It was discovered that logrotate incorrectly handled certain...

6.9CVSS5.8AI score0.00412EPSS

Exploits1References5

OpenVAS•added 2011/07/22 12:0 a.m.•22 views

Ubuntu: Security Advisory (USN-1172-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.4AI score0.00412EPSS

Ubuntu•added 2011/07/21 3:24 p.m.•46 views

USN-1172-1: logrotate vulnerabilities

6.9CVSS5.3AI score0.00412EPSS

Exploits1

Tenable Nessus•added 2011/05/26 12:0 a.m.•29 views

SuSE 10 Security Update : logrotate (ZYPP Patch Number 7534)

This update for logrotate provides the following fixes : - Race condition in the createOutputFile function in logrotate allows local users to read log data by opening a file before the intended permissions are in place CVE-2011-1098. bnc677336 - The writeState function in logrotate might allow...

1.9CVSS5.3AI score0.00387EPSS

Exploits1References4

Tenable Nessus•added 2011/04/12 12:0 a.m.•20 views

Fedora 14 : logrotate-3.7.9-2.fc14 (2011-3739)

Fixes CVE-2011-1154, CVE-2011-1155 and CVE-2011-1098. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

6.9CVSS5.3AI score0.00412EPSS

OpenVAS•added 2011/04/11 12:0 a.m.•24 views

Mandriva Update for logrotate MDVSA-2011:065 (logrotate)

Check for the Version of logrotate OpenVAS Vulnerability Test Mandriva Update for logrotate MDVSA-2011:065 logrotate Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

6.9CVSS0.3AI score0.00412EPSS

OpenVAS•added 2011/04/11 12:0 a.m.•24 views

Mandriva Update for logrotate MDVSA-2011:065 (logrotate)

6.9CVSS5.2AI score0.00412EPSS

Exploits1References3

securityvulns•added 2011/04/06 12:0 a.m.•55 views

[ MDVSA-2011:065 ] logrotate

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:065 http://www.mandriva.com/security/ Package : logrotate Date : April 5, 2011 Affected: 2009.0, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Problem Description: Multiple vulnerabilities were...

6.9CVSS7AI score0.00412EPSS

Exploits1

Tenable Nessus•added 2011/04/06 12:0 a.m.•13 views

Mandriva Linux Security Advisory : logrotate (MDVSA-2011:065)

Multiple vulnerabilities were discovered and corrected in logrotate : Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place CVE-2011-1098. The shredfile...