216 matches found
RHEL 8 : zsh (RHSA-2020:0978)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0978 advisory. The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the...
CentOS: Security Advisory for zsh (CESA-2020:0892)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CentOS: Security Advisory for zsh (CESA-2020:0853)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
zsh security update
CentOS Errata and Security Advisory CESA-2020:0892 An update for zsh is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Oracle Linux 6 : zsh (ELSA-2020-0892)
The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-0892 advisory. - improve printing of error messages introduced by the fix of CVE-2019-20044 Tenable has extracted the preceding description block directly from the Oracle Linu...
ALSA-2020:0903 Important: zsh security update
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command-line editing, built-in spelling correction, programmable command completion, shell...
zsh security update
An update is available for zsh. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The zsh shell is a command interpreter usable as an interactive login shell and a...
Scientific Linux Security Update : zsh on SL6.x i386/x86_64 (20200318)
Security Fixes : - zsh: insecure dropping of privileges when unsetting PRIVILEGED option CVE-2019-20044 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid134695; scriptversion"1.3";...
zsh security update
5.0.2-34.el77.2 - improve printing of error messages introduced by the fix of CVE-2019-20044 5.0.2-33.el77.1 - drop privileges securely when unsetting PRIVILEGED option CVE-2019-20044...
RHEL 7 : zsh (RHSA-2020:0853)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:0853 advisory. The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the...
Important: Red Hat Security Advisory: zsh security update
An update for zsh is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Plantronics Hub 3.13.2 Local Privilege Escalation
Exploit Title: Plantronics Hub 3.13.2 - Local Privilege Escalation Date: 2020-01-2 Exploit Author: Markus Krell - @MarkusKrell Vendor Homepage: https://support.polycom.com/content/dam/polycom-support/global/documentation/plantronics-hub-local-privilege-escalation-vulnerability.pdf Software Link:...
CVE-2011-3350
masqmail 0.2.21 through 0.2.30 improperly calls seteuid in src/log.c and src/masqmail.c that results in improper privilege dropping...
Input validation
masqmail 0.2.21 through 0.2.30 improperly calls seteuid in src/log.c and src/masqmail.c that results in improper privilege dropping...
CVE-2011-3350
masqmail 0.2.21 through 0.2.30 improperly calls seteuid in src/log.c and src/masqmail.c that results in improper privilege dropping...
CVE-2011-3350
masqmail versions 0.2.21–0.2.30 improperly call seteuid() in src/log.c and src/masqmail.c, resulting in improper privilege dropping. Affected by this is the ability to retain elevated privileges when dropping privileges, with no remediation details provided in the supplied documents. This vulnera...
CVE-2011-3350
masqmail 0.2.21 through 0.2.30 improperly calls seteuid in src/log.c and src/masqmail.c that results in improper privilege dropping...
DEBIAN-CVE-2012-1187
Bitlbee does not drop extra group privileges correctly in unix.c...
Unbreakable Enterprise kernel security update
4.14.35-1902.6.6 - RDMA/restrack: Protect from reentry to resource return path Leon Romanovsky Orabug: 30388717 4.14.35-1902.6.5 - hvnetvsc: fix vf serial matching with pci slot info Haiyang Zhang Orabug: 30373111 - rds: Use correct conn when dropping connections due to cancel Hakon Bugge Orabug:...
CentOS Control Web Panel (CWP) 0.9.8.851 Arbitrary Database Drop Vulnerability
Exploit for linux platform in category web applications Exploit Title : CWP CentOS Control Web Panel Arbitrary database dropping Exploit Author : Pongtorn Angsuchotmetee, Nissana Sirijirakal, Narin Boonwasanarak Vendor Homepage : https://control-webpanel.com/ Software Link : Not available, user...