805 matches found
python27:2.7 security update
babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...
Apache Tomcat on RedHat Based Systems Insecure Temp Config Privilege Escalation
This module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. This may also work against The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary...
Apache Tomcat Privilege Escalation Exploit
This Metasploit module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary files including...
Exploit for Incorrect Authorization in Polkit_Project Polkit
CVE-2021-3560PoC polkit exploit script Automated script for...
Exploit for Incorrect Authorization in Polkit_Project Polkit
polkadots CVE-2021-3560 Local PrivEsc Exploit This e...
Directory traversal
The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...
CVE-2015-0296
The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...
graphite2 security, bug fix, and enhancement update
1.3.6-1 - Related: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.3.5-1 - Resolves: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.2.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora24MassRebuild 1.2.4-5 - Rebuilt for...
Fedora 21 : wpa_supplicant-2.0-17.fc21 (2015-cfea96144a)
wpasupplicant-2.0-17.fc21 - Make sure that network filesystems are unmounted when shutting down rh 1214466 - CVE-2015-4142: AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
Fedora 21 : pdns-3.4.7-1.fc21 (2015-a3965fd800)
Update to 3.4.7 - CVE-2015-5311 Release notes: https://doc.powerdns.com/md/changelog/powerdns-authorit ative-server-347 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora 21 : abrt-2.3.0-12.fc21 / libreport-2.3.0-10.fc21 (2015-6542ab6d3a)
Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 - doc: fix default DumpLocation in abrt.conf man page - bodhi: fix typo in error messages - abrt- dump-xorg: support Xorg log backtraces prefixed by EE libreport-2.3.0-10.fc21 - fix save users changes after reviewing dump dir files - Resolves...
Fedora 21 : pacemaker-1.1.13-3.fc21 (2015-e5e36bbb87)
Security fix for CVE-2015-1867: issue allegedly present in pacemaker-1.1.12, fixed in pacemaker-1.1.13. pacemaker-1.1.13-3.fc21,22,23 - Update to Pacemaker-1.1.13 post-release + patches sync - Add nagios-plugins-metadata subpackage enabling support of selected Nagios plugins as resources recogniz...
Fedora 21 : wildmagic5-5.13-12.fc21 (2015-bd6d51590e)
wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on F23...
Fedora 21 : xen-4.4.3-4.fc21 (2015-015aec3bf2)
ui/vnc: limit clientcuttext msg payload size CVE-2015-5239 1259504, e1000: Avoid infinite loop in processing transmit descriptor CVE-2015-6815 1260224, net: add checks to validate ring buffer pointers CVE-2015-5279 1263278, net: avoid infinite loop when receiving packets CVE-2015-5278 1263281, qe...
Fedora 21 : libsndfile (2015-0f405832d3)
The remote Fedora 21 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2015-0f405832d3 advisory. libsndfile-1.0.25-17.fc22 - fix CVE-2015-7805: Heap overflow vulnerability when parsing specially crafted AIFF header libsndfile-1.0.25-16.fc21 - fi...
Fedora 21 : kernel-4.1.13-100.fc21 (2015-f2c534bc12)
kernel-4.1.13-100.fc21 - Linux v4.1.13 - CVE-2015-8104 kvm: DoS infinite loop in microcode DB exception rhbz 1278496 1279691 - CVE-2015-5307 kvm: DoS infinite loop in microcode AC exception rhbz 1277172 1279688 Note that Tenable Network Security has extracted the preceding description block...
Fedora 21 : drupal7-7.41-1.fc21 (2015-54365c8fc7)
drupal7-7.41-1.fc21 - 7.41. drupal7-7.41-1.fc22 - 7.41. drupal7-7.41-1.el5 - 7.41. drupal7-7.41-1.el6 - 7.41. drupal7-7.41-1.el7 - 7.41. drupal7-7.41-1.fc23 - 7.41. ---- drupal7-7.40-1.fc21 - 7.40. drupal7-7.40-1.fc22 - 7.40. drupal7-7.40-1.el5 - 7.40. drupal7-7.40-1.el6 - 7.40. drupal7-7.40-1.el...
Fedora 21 : krb5-1.12.2-19.fc21 (2015-200d2dfd9f)
krb5-1.13.2-13.fc23 - Patch CVE-2015-2698 krb5-1.12.2-19.fc21 - Patch CVE-2015-2698 krb5-1.13.2-10.fc22 - Patch CVE-2015-2698 ---- krb5-1.12.2-18.fc21 - Fix CVE-2015-2695, CVE-2015-2696, CVE-2015-2697 krb5-1.13.2-9.fc22 - Fix CVE-2015-2695, CVE-2015-2696, CVE-2015-2697 krb5-1.13.2-12.fc23 - Fix...
Fedora 21 : ProDy-1.7.1-1.fc21 (2015-68f5a5ba94)
ProDy-1.7.1-1.el6 - Update to 1.7.1 - Added scipy as BR package - Set CFLAGS for hardened builds ProDy-1.7.1-1.fc22 - Update to 1.7.1 - Added scipy as BR package - Set CFLAGS for hardened builds ProDy-1.7.1-1.fc21 - Update to 1.7.1 - Added scipy as BR package - Set CFLAGS for hardened builds...
Fedora 21 : mbedtls-1.3.14-1.fc21 (2015-30a417bea9)
Update to 1.3.14 - CVE-2015-5291 Release notes: https://tls.mbed.org/tech- updates/releases/mbedtls-2.1.2-and-1.3.14-and-polarssl-1 .2.17-released Security notes: https://tls.mbed.org/tech-updates/security-advisories/mb edtls-security- advisory-2015-01 Note that Tenable Network Security has...