python27:2.7 security update

babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...

Apache Tomcat on RedHat Based Systems Insecure Temp Config Privilege Escalation

This module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. This may also work against The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary...

Apache Tomcat Privilege Escalation Exploit

This Metasploit module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary files including...

Exploit for Incorrect Authorization in Polkit_Project Polkit

CVE-2021-3560PoC polkit exploit script Automated script for...

Exploit for Incorrect Authorization in Polkit_Project Polkit

polkadots CVE-2021-3560 Local PrivEsc Exploit This e...

CVE-2015-0296

The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...

Directory traversal

The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...

graphite2 security, bug fix, and enhancement update

1.3.6-1 - Related: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.3.5-1 - Resolves: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.2.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora24MassRebuild 1.2.4-5 - Rebuilt for...

Fedora 21 : openjpeg2-2.1.0-7.fc21 (2015-1c9ed24c61)

This update adds a fix for CVE-2015-6581 double free vulnerability. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora 21 : xen-4.4.3-7.fc21 (2015-242be2c240)

nine security updates CVE-2015-7969 CVE-2015-7970 CVE-2015-7813 CVE-2015-7814 CVE-2015-7812 CVE-2015-7971 CVE-2015-7835 CVE-2015-7972 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

Fedora 21 : wildmagic5-5.13-12.fc21 (2015-bd6d51590e)

wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on F23...

Fedora 21 : seamonkey-2.38-1.fc21 (2015-012399857d)

Update to 2.38 Fixes various security issues, see http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for more info. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

Fedora 21 : drupal7-7.41-1.fc21 (2015-54365c8fc7)

drupal7-7.41-1.fc21 - 7.41. drupal7-7.41-1.fc22 - 7.41. drupal7-7.41-1.el5 - 7.41. drupal7-7.41-1.el6 - 7.41. drupal7-7.41-1.el7 - 7.41. drupal7-7.41-1.fc23 - 7.41. ---- drupal7-7.40-1.fc21 - 7.40. drupal7-7.40-1.fc22 - 7.40. drupal7-7.40-1.el5 - 7.40. drupal7-7.40-1.el6 - 7.40. drupal7-7.40-1.el...

Fedora 21 : xen-4.4.3-4.fc21 (2015-015aec3bf2)

ui/vnc: limit clientcuttext msg payload size CVE-2015-5239 1259504, e1000: Avoid infinite loop in processing transmit descriptor CVE-2015-6815 1260224, net: add checks to validate ring buffer pointers CVE-2015-5279 1263278, net: avoid infinite loop when receiving packets CVE-2015-5278 1263281, qe...

Fedora 21 : pacemaker-1.1.13-3.fc21 (2015-e5e36bbb87)

Security fix for CVE-2015-1867: issue allegedly present in pacemaker-1.1.12, fixed in pacemaker-1.1.13. pacemaker-1.1.13-3.fc21,22,23 - Update to Pacemaker-1.1.13 post-release + patches sync - Add nagios-plugins-metadata subpackage enabling support of selected Nagios plugins as resources recogniz...

Fedora 21 : wpa_supplicant-2.0-17.fc21 (2015-cfea96144a)

wpasupplicant-2.0-17.fc21 - Make sure that network filesystems are unmounted when shutting down rh 1214466 - CVE-2015-4142: AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 21 : pdns-3.4.7-1.fc21 (2015-a3965fd800)

Update to 3.4.7 - CVE-2015-5311 Release notes: https://doc.powerdns.com/md/changelog/powerdns-authorit ative-server-347 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

Fedora 21 : abrt-2.3.0-12.fc21 / libreport-2.3.0-10.fc21 (2015-6542ab6d3a)

Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 - doc: fix default DumpLocation in abrt.conf man page - bodhi: fix typo in error messages - abrt- dump-xorg: support Xorg log backtraces prefixed by EE libreport-2.3.0-10.fc21 - fix save users changes after reviewing dump dir files - Resolves...

Fedora 21 : lxdm-0.4.1-10.fc21 (2015-7766c0d939)

It is found that lxdm does not close file descriptor for log file althouhg it should. Also session started via lxdm can allow any local user to connect X. This new rpm should fix these issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedor...

Fedora 21 : springframework-3.2.15-1.fc21 (2015-9295d75400)

Security fix for CVE-2015-5211. Update to 3.2.15.RELEASE Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...