7 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002728)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002728 advisory. Race condition in the environread function in fs/proc/base.c in the Linux kernel before 4.5.4 allows local users to obtain sensitive information from kernel memory b...
Linux Distros Unpatched Vulnerability : CVE-2024-47535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. An unsafe...
UBUNTU-CVE-2024-6126
A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pamenv's userreadenv option, which leads to a denial of service DoS attack...
SUSE: Security Advisory (SUSE-SU-2023:3866-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2023-5309 · Salt +3 · Salt +3
Name of the Vulnerable Software and Affected Versions: Salt masters versions prior to 3005.2 or 3006.2 Description: The issue is related to Git Providers in Salt masters, where they can read from the wrong environment due to the same cache directory base name. This can lead to garbage data or the...
ghostscript: getenv and filenameforall ignore -dSAFER
It was found that the ghostscript functions getenv and filenameforall did not honor the -dSAFER option, usually used when processing untrusted documents, leading to information disclosure. A specially crafted postscript document could read environment variable and list directory respectively, fro...
Privilege escalation applet, Java Media Framework
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Bugtraqqers, this is the proof-of-concept code for the vulnerability described in http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert2F54760 The code shows that there is more in this vulnerability than crash the vm, it allows to read and write...