805 matches found
python27:2.7 security update
babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...
Apache Tomcat on RedHat Based Systems Insecure Temp Config Privilege Escalation
This module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. This may also work against The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary...
Apache Tomcat Privilege Escalation Exploit
This Metasploit module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary files including...
Exploit for Incorrect Authorization in Polkit_Project Polkit
CVE-2021-3560PoC polkit exploit script Automated script for...
Exploit for Incorrect Authorization in Polkit_Project Polkit
polkadots CVE-2021-3560 Local PrivEsc Exploit This e...
CVE-2015-0296
The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...
Directory traversal
The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...
graphite2 security, bug fix, and enhancement update
1.3.6-1 - Related: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.3.5-1 - Resolves: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.2.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora24MassRebuild 1.2.4-5 - Rebuilt for...
Fedora 21 : wildmagic5-5.13-12.fc21 (2015-bd6d51590e)
wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on F23...
Fedora 22 : firefox-41.0.2-2.fc22 (2015-444e5d168d)
firefox-41.0.2-2.fc21 - Update to 41.0.2 firefox-41.0.2-2.fc22 - Update to 41.0.2 firefox-41.0.2-2.fc23 - Update to 41.0.2 ---- firefox-41.0-6.fc21 - Rebuilt for old sqlite which is available in updates firefox-41.0-6.fc22 - Rebuilt for old sqlite which is available in updates firefox-41.0-6.fc23...
Fedora 21 : kernel-4.1.13-100.fc21 (2015-f2c534bc12)
kernel-4.1.13-100.fc21 - Linux v4.1.13 - CVE-2015-8104 kvm: DoS infinite loop in microcode DB exception rhbz 1278496 1279691 - CVE-2015-5307 kvm: DoS infinite loop in microcode AC exception rhbz 1277172 1279688 Note that Tenable Network Security has extracted the preceding description block...
Fedora 21 : libsndfile (2015-0f405832d3)
The remote Fedora 21 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2015-0f405832d3 advisory. libsndfile-1.0.25-17.fc22 - fix CVE-2015-7805: Heap overflow vulnerability when parsing specially crafted AIFF header libsndfile-1.0.25-16.fc21 - fi...
Fedora 21 : abrt-2.3.0-12.fc21 / libreport-2.3.0-10.fc21 (2015-6542ab6d3a)
Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 - doc: fix default DumpLocation in abrt.conf man page - bodhi: fix typo in error messages - abrt- dump-xorg: support Xorg log backtraces prefixed by EE libreport-2.3.0-10.fc21 - fix save users changes after reviewing dump dir files - Resolves...
Fedora 21 : php-5.6.14-1.fc21 (2015-366f3dd73f)
01 Oct 2015, PHP 5.6.14 Core: Fixed bug php70370 Bundled libtool.m4 doesn't handle FreeBSD 10 when building extensions. Adam CLI server: Fixed bug php68291 404 on urls with '+'. cmb DOM: Fixed bug php70001 Assigning to DOMNode::textContent does additional entity encoding. cmb Mysqlnd: Fixed bug...
Fedora 21 : libvdpau-1.1.1-2.fc21 (2015-3ca3f2138b)
libvdpau-1.1.1-2.fc21 - Backport current patches - Switch to new upstream git repository on freedesktop.org ---- Update to 1.1.1 Security fix for CVE-2015-5198, CVE-2015-5199, CVE-2015-5200 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
Fedora 21 : pacemaker-1.1.13-3.fc21 (2015-e5e36bbb87)
Security fix for CVE-2015-1867: issue allegedly present in pacemaker-1.1.12, fixed in pacemaker-1.1.13. pacemaker-1.1.13-3.fc21,22,23 - Update to Pacemaker-1.1.13 post-release + patches sync - Add nagios-plugins-metadata subpackage enabling support of selected Nagios plugins as resources recogniz...
Fedora 21 : snappy-player-1.0-7.20151010git166a98.fc21 (2015-3471dfb5b4)
snappy-player-1.0-7.20151010git166a98.fc23 - Update to commit 166a98 - Hardened build activated on F23 snappy-player-1.0-7.20151010git166a98.fc21 - Update to commit 166a98 - Hardened build activated on F23 snappy- player-1.0-7.20151010git166a98.fc22 - Update to commit 166a98 - Hardened build...
Fedora 21 : xen-4.4.3-8.fc21 (2015-f150b2a8c8)
x86: CPU lockup during exception delivery XSA-156, CVE-2015-5307, CVE-2015-8104 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 21 : sundials-2.6.2-11.fc21 (2015-038912089d)
sundials-2.6.2-11.fc23 - Fixes for EPEL7 - Set mpif77 only for OpenMPI 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds on 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds on 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds on 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds o...
Fedora 21 : zarafa-7.1.14-1.fc21 (2015-a275fd68f2)
Zarafa Collaboration Platform 7.1.14 final 51822 ================================================== - ZCP-13581: update fck- editor for webaccess to solve CVE-2012-4000 - ZCP-13572: CVE-2015-6566 - zarafa-autorespond suffers from a potential local privilege escalation - ZCP-13087: Meeting request...