8 matches found
Mageia: Security Advisory (MGASA-2014-0289)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for dpkg FEDORA-2014-7697
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : dpkg-1.16.15-1.fc20 (2014-7697)
Update to 1.16.15, fixes: CVE-2014-3864, CVE-2014-3865 , rhbz 1103026 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Debian Security Advisory DSA 2953-1 (dpkg - security update)
Multiple vulnerabilities were discovered in dpkg that allow file modification through path traversal when unpacking source packages with specially crafted patch files. This update had been scheduled before the end of security support for the oldstable distribution squeeze, hence an exception has...
CVE-2014-3865
Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pseudo-header in conjunction with 1 missing --- and +++ header lines or 2 a +++ header line with a...
CVE-2014-3865
CVE-2014-3865 describes a directory-traversal vulnerability in dpkg-source (part of dpkg-dev 1.3.0) that lets remote attackers modify files outside intended directories via a crafted Index: pseudo-header (with missing ---/+++ headers or a +++ header with a blank pathname). Connected advisories in...
CVE-2014-3865
Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pseudo-header in conjunction with 1 missing --- and +++ header lines or 2 a +++ header line with a...
CVE-2014-3865
creationtimestamp| type| source ---|---|--- 2014-05-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39207...