7 matches found
[SECURITY] [DLA 3014-1] elog security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-3014-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta May 18, 2022 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...
Debian DLA-3014-1 : elog - LTS security update
The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-3014 advisory. A vulnerability was reported in src:elog, a logbook system to manage notes through a Web interface. This vulnerability allows remote attackers to create a denial-of-service...
Photon OS 1.0: Envoy PHSA-2020-1.0-0290
An update of the envoy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0290. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid136105...
Photon OS 2.0: Envoy PHSA-2020-2.0-0229
An update of the envoy package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0229. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid135867...
Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 1.0.9 servicemesh-proxy security update
Red Hat OpenShift Service Mesh 1.0.9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References...
CVE-2020-8659
CVE-2020-8659 affects the Envoy proxy used in Photon OS (Envoy package). The vulnerability causes memory exhaustion when proxying HTTP/1.1 requests or responses with many tiny chunks. Photon OS advisories PHSA-2020-1.0-0290 and PHSA-2020-2.0-0229 indicate updates to the envoy package are availabl...
CVE-2020-8659
A resource consumption vulnerability was found in the servicemesh-proxy in Envoy. An attacker could send specially crafted small HTTP/1.1 packets that, when processed, could cause excessive amounts of memory to be used, possibly degrading or crashing the application...