Lucene search
K

18 matches found

OSV
OSV
added 2022/03/07 3:21 p.m.9 views

CLSA-2022-1646666491 Fix of CVE: CVE-2021-3445

CVE-2021-3445: fix signature verification bypass leading to code execution RhBug:1932079...

7.5CVSS7.2AI score0.01117EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/02/12 12:0 a.m.23 views

EulerOS Virtualization 3.0.6.0 : libdnf (EulerOS-SA-2022-1073)

According to the versions of the libdnf packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libdnf's signature verification functionality in versions before 0.60.1. This flaw allows an attacker to...

7.5CVSS7.2AI score0.01117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.34 views

AlmaLinux 8 : dnf (ALSA-2021:4464)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:4464 advisory. - A flaw was found in libdnf's signature verification functionality in versions before 0.60.1. This flaw allows an attacker to achieve code execution if they can...

7.5CVSS7.2AI score0.01117EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/11/17 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for libdnf (EulerOS-SA-2021-2772)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.30 views

CentOS 8 : dnf (CESA-2021:4464)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4464 advisory. - libdnf: Signature verification bypass via signature placed in the main RPM header CVE-2021-3445 Note that Nessus has not tested for this issue but has instead...

7.5CVSS6.9AI score0.01117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.39 views

RHEL 8 : dnf (RHSA-2021:4464)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4464 advisory. dnf is a package manager that allows users to manage packages on their systems. It supports RPMs, modules and comps groups & environments. Security...

7.5CVSS7AI score0.01117EPSS
Exploits0References30
RedHat Linux
RedHat Linux
added 2021/11/09 6:25 p.m.38 views

Moderate: Red Hat Security Advisory: dnf security and bug fix update

An update for dnf, dnf-plugins-core, and libdnf is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.8AI score0.01117EPSS
Exploits0References27
Rockylinux
Rockylinux
added 2021/11/09 9:25 a.m.33 views

dnf security and bug fix update

An update is available for dnf-plugins-core, dnf, libdnf. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list dnf is a package manager that allows users to manage...

7.5CVSS8.6AI score0.01117EPSS
Exploits0
OSV
OSV
added 2021/11/09 9:25 a.m.22 views

ALSA-2021:4464 Moderate: dnf security and bug fix update

dnf is a package manager that allows users to manage packages on their systems. It supports RPMs, modules and comps groups & environments. Security Fixes: libdnf: Signature verification bypass via signature placed in the main RPM header CVE-2021-3445 For more details about the security issues,...

7.5CVSS7.6AI score0.01117EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/09/27 12:0 a.m.34 views

EulerOS 2.0 SP9 : libdnf (EulerOS-SA-2021-2531)

According to the versions of the libdnf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libdnf's signature verification functionality in versions before 0.60.1. This flaw allows an attacker to achieve code...

7.5CVSS7.3AI score0.01117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/09/27 12:0 a.m.39 views

EulerOS 2.0 SP9 : libdnf (EulerOS-SA-2021-2555)

According to the versions of the libdnf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libdnf's signature verification functionality in versions before 0.60.1. This flaw allows an attacker to achieve code...

7.5CVSS7.3AI score0.01117EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/09/24 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for libdnf (EulerOS-SA-2021-2468)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/09/24 12:0 a.m.30 views

EulerOS 2.0 SP8 : libdnf (EulerOS-SA-2021-2468)

According to the versions of the libdnf packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in libdnf's signature verification functionality in versions before 0.60.1. This flaw allows an attacker to achieve code...

7.5CVSS7.3AI score0.01117EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/08/14 12:0 a.m.105 views

openSUSE 15 Security Update : libdnf (openSUSE-SU-2021:2685-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2685-1 advisory. - A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a vict...

7.5CVSS7.2AI score0.01117EPSS
Exploits0References8
CBLMariner
CBLMariner
added 2021/08/11 6:39 a.m.11 views

CVE-2021-3445 affecting package libdnf 0.43.1-2

CVE-2021-3445 affecting package libdnf 0.43.1-2. A patched version of the package is available...

7.5CVSS9.8AI score0.01117EPSS
Exploits0
OSV
OSV
added 2021/05/19 2:15 p.m.7 views

CVE-2021-3445

A flaw was found in libdnf's signature verification functionality in versions before 0.60.1. This flaw allows an attacker to achieve code execution if they can alter the header information of an RPM package and then trick a user or system into installing it. The highest risk of this vulnerability...

7.5CVSS7.6AI score
Exploits0References3
CVE
CVE
added 2021/05/19 1:44 p.m.276 views

CVE-2021-3445

CVE-2021-3445 affects Cloud Pak for Security (CP4S) with vulnerability in libdnf signature verification. The IBM security bulletin details that an attacker who is able to place a signature in the main header could achieve remote code execution on CP4S. Affected CP4S versions in this report are 1....

7.5CVSS7.4AI score0.01117EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2021/04/25 12:0 a.m.21 views

Fedora: Security Advisory for rpm-ostree (FEDORA-2021-c6802f0b69)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.01117EPSS
Exploits0References2
Rows per page
Query Builder