8 matches found
Ubuntu: Security Advisory (USN-7984-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 4390-1] pagure security update
Debian LTS Advisory DLA-4390-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert December 01, 2025 https://wiki.debian.org/LTS Package : pagure Version : 5.11.3+dfsg-1+deb11u1 CVE ID : CVE-2024-4981 CVE-2024-4982 CVE-2024-47515 CVE-2024-47516 Debian Bug : 1091383...
Debian: Security Advisory (DLA-4390-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2024-47515
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allow...
CVE-2024-47515
creationtimestamp| type| source ---|---|--- 2024-12-24 03:37:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113705709023822903 2024-12-24 04:15:21+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldzlic67db2f 2024-12-24 06:02:15+00:00| seen|...
CVE-2024-47515 Pagure: generate_archive() follows symbolic links in temporary clones
A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...
CVE-2024-47515 Pagure: generate_archive() follows symbolic links in temporary clones
A vulnerability was found in Pagure. Support of symbolic links during repository archiving of repositories allows the disclosure of local files. This flaw allows a malicious user to take advantage of the Pagure instance...
CVE-2024-47515
Pagure CVE-2024-47515 involves generate_archive() following symbolic links in temporary clones, enabling disclosure of local files outside repository boundaries. Ubuntu (USN-7984-1) and Debian (DLA-4390-1) advisories reference Pagure fixes; Debian notes version 5.11.3+dfsg-1+deb11u1, Ubuntu patch...