Debian: Security Advisory (DSA-5072-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-5072-1 : debian-edu-config - security update

The remote Debian 10 / 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5072 advisory. - It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user w...

Debian DLA-2918-1 : debian-edu-config - LTS security update

The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2918 advisory. Marcel Neumann, Robert Altschaffel, Loris Guba and Dustin Hermann discovered that debian-edu-config, a set of configuration files used for the Debian Edu blend configured...

DLA-2918-1 debian-edu-config - security update

Bulletin has no description...

Debian: Security Advisory (DLA-2918-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 2918-1] debian-edu-config security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2918-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 12, 2022 https://wiki.debian.org/LTS -...

CVE-2021-20001

It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...

CVE-2021-20001

It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...

CVE-2021-20001

It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...

CVE-2021-20001

CVE-2021-20001 affects debian-edu-config prior to 2.12.16, where insecure permissions on user web shares (~/public_html) could allow privilege escalation. Debian advisories (DSA-5072-1, DLA-2918-1) document the issue and its fix; for Debian 9, the fix is in 1.929+deb9u5. Multiple feeds (NVD entry...

[SECURITY] [DSA 5072-1] debian-edu-config security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5072-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 11, 2022 https://www.debian.org/security/faq -...

Privilege Escalation

debian-edu-config is vulnerable to privilege escalation. The vulnerability exists due to lack of validation of the authorization in the configuration files...

Debian: Security Advisory (DSA-4589-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2041-1 : debian-edu-config security update

It was discovered that debian-edu-config, the package containing the configuration files and scripts for Debian Edu Skolelinux, contained an insecure configuration for kadmin, the Kerberos administration server. The insecure configuration allowed every user to change other users' passwords, thus...

Debian: Security Advisory (DLA-2041-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4589-1 : debian-edu-config - security update

It was discovered that debian-edu-config, a set of configuration files used for the Debian Edu blend, configured too permissive ACLs for the Kerberos admin server, which allowed password changes for other user principals. C Tenable Network Security, Inc. The descriptive text and package checks in...

[SECURITY] [DSA 4589-1] debian-edu-config security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4589-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 18, 2019 https://www.debian.org/security/faq -...

[SECURITY] [DLA 2041-1] debian-edu-config security update

Package : debian-edu-config Version : 1.818+deb8u3 CVE ID : CVE-2019-3467 Debian Bug : 946797 It was discovered that debian-edu-config, the package containing the configuration files and scripts for Debian Edu Skolelinux, contained an insecure configuration for kadmin, the Kerberos administration...

DLA-2041-1 debian-edu-config - security update

Bulletin has no description...