24 matches found
kubernetes: Volume security can be sidestepped with innocent emptyDir and subpath
It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket...
UBUNTU-CVE-2017-7225
The findnearestline function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an invalid write, and leading to a program crash...
Moving or deleting an issue leaves the empty attachments subdirectory on the filesystem
To reproduce: Create an issue Attach a file to it Locate the file on the JIRA-server filesystem -- under JIRA "home" directory attachments/..../PROJECT-ISSUE Move the issue to a different project or delete it completely Observe the empty issue subdirectory remaining on the filesystem The director...
rsync.permissions.txt
Date: Wed, 7 Apr 1999 22:21:30 +1000 From: Andrew Tridgell To: [email protected] Subject: rsync 2.3.1 release - security fix I discovered a security hole in rsync yesterday and have released rsync 2.3.1 to fix it. The new version and patches against the last version are available at...