8 matches found
TencentOS Server 3: perl:5.32 (TSSA-2026:0325)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0325 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2026-35376 uutils coreutils chcon Security Bypass and Mandatory Access Control (MAC) Inconsistency via TOCTOU Race Condition
A Time-of-Check to Time-of-Use TOCTOU vulnerability exists in the chcon utility of uutils coreutils during recursive operations. The implementation resolves recursive targets using a fresh path lookup via ftsaccpath rather than binding the traversal and label application to the specific directory...
EulerOS Virtualization 2.12.1 : perl (EulerOS-SA-2026-1452)
According to the versions of the perl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Perl threads have a working directory race condition where file operations may target unintended paths.If a directory handle is open ...
Moderate: perl security update
Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fixes: perl: Perl threads have a working directory race condition where file operations may target unintended paths CVE-2025-40909 For more details about the security...
SUSE-SU-2025:20456-1 Security update for perl
This update for perl fixes the following issues: - CVE-2025-40909: Fixed a working directory race condition causing file operations to target unintended paths bsc1244079...
CVE-2025-40909
Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide current working directory is temporarily changed in order to clone that handle for the new thread, which is visible from any...
PT-2025-22879
Name of the Vulnerable Software and Affected Versions Perl versions 5.13.6 through 5.41.12 Description The issue is related to a working directory race condition in Perl threads, where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide...
OracleVM 3.3 / 3.4 : sudo (OVMSA-2017-0110)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fixes CVE-2017-1000367 Resolves: rhbz1455399 - Update noexec syscall blacklist - Fixes CVE-2016-7032, CVE-2016-7076 Resolves: rhbz1391938 - RHEL-6.9 erratum - Fix race condition when creating...