python27:2.7 security update

babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...

Apache Tomcat on RedHat Based Systems Insecure Temp Config Privilege Escalation

This module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. This may also work against The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary...

Apache Tomcat Privilege Escalation Exploit

This Metasploit module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary files including...

Exploit for Incorrect Authorization in Polkit_Project Polkit

CVE-2021-3560PoC polkit exploit script Automated script for...

Exploit for Incorrect Authorization in Polkit_Project Polkit

polkadots CVE-2021-3560 Local PrivEsc Exploit This e...

CVE-2015-0296

The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...

Directory traversal

The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...

graphite2 security, bug fix, and enhancement update

1.3.6-1 - Related: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.3.5-1 - Resolves: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.2.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora24MassRebuild 1.2.4-5 - Rebuilt for...

Fedora 21 : xen-4.4.3-4.fc21 (2015-015aec3bf2)

ui/vnc: limit clientcuttext msg payload size CVE-2015-5239 1259504, e1000: Avoid infinite loop in processing transmit descriptor CVE-2015-6815 1260224, net: add checks to validate ring buffer pointers CVE-2015-5279 1263278, net: avoid infinite loop when receiving packets CVE-2015-5278 1263281, qe...

Fedora 21 : springframework-3.2.15-1.fc21 (2015-9295d75400)

Security fix for CVE-2015-5211. Update to 3.2.15.RELEASE Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

Fedora 21 : pacemaker-1.1.13-3.fc21 (2015-e5e36bbb87)

Security fix for CVE-2015-1867: issue allegedly present in pacemaker-1.1.12, fixed in pacemaker-1.1.13. pacemaker-1.1.13-3.fc21,22,23 - Update to Pacemaker-1.1.13 post-release + patches sync - Add nagios-plugins-metadata subpackage enabling support of selected Nagios plugins as resources recogniz...

Fedora 21 : drupal7-7.41-1.fc21 (2015-54365c8fc7)

drupal7-7.41-1.fc21 - 7.41. drupal7-7.41-1.fc22 - 7.41. drupal7-7.41-1.el5 - 7.41. drupal7-7.41-1.el6 - 7.41. drupal7-7.41-1.el7 - 7.41. drupal7-7.41-1.fc23 - 7.41. ---- drupal7-7.40-1.fc21 - 7.40. drupal7-7.40-1.fc22 - 7.40. drupal7-7.40-1.el5 - 7.40. drupal7-7.40-1.el6 - 7.40. drupal7-7.40-1.el...

Fedora 21 : seamonkey-2.38-1.fc21 (2015-012399857d)

Update to 2.38 Fixes various security issues, see http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for more info. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

Fedora 21 : abrt-2.3.0-12.fc21 / libreport-2.3.0-10.fc21 (2015-6542ab6d3a)

Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 - doc: fix default DumpLocation in abrt.conf man page - bodhi: fix typo in error messages - abrt- dump-xorg: support Xorg log backtraces prefixed by EE libreport-2.3.0-10.fc21 - fix save users changes after reviewing dump dir files - Resolves...

Fedora 21 : wildmagic5-5.13-12.fc21 (2015-bd6d51590e)

wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on F23 wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on F23...

Fedora 21 : pdns-3.4.7-1.fc21 (2015-a3965fd800)

Update to 3.4.7 - CVE-2015-5311 Release notes: https://doc.powerdns.com/md/changelog/powerdns-authorit ative-server-347 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

Fedora 21 : wpa_supplicant-2.0-17.fc21 (2015-cfea96144a)

wpasupplicant-2.0-17.fc21 - Make sure that network filesystems are unmounted when shutting down rh 1214466 - CVE-2015-4142: AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 21 : php-5.6.14-1.fc21 (2015-366f3dd73f)

01 Oct 2015, PHP 5.6.14 Core: Fixed bug php70370 Bundled libtool.m4 doesn't handle FreeBSD 10 when building extensions. Adam CLI server: Fixed bug php68291 404 on urls with '+'. cmb DOM: Fixed bug php70001 Assigning to DOMNode::textContent does additional entity encoding. cmb Mysqlnd: Fixed bug...

Fedora 21 : libvdpau-1.1.1-2.fc21 (2015-3ca3f2138b)

libvdpau-1.1.1-2.fc21 - Backport current patches - Switch to new upstream git repository on freedesktop.org ---- Update to 1.1.1 Security fix for CVE-2015-5198, CVE-2015-5199, CVE-2015-5200 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 21 : kernel-4.1.13-100.fc21 (2015-f2c534bc12)

kernel-4.1.13-100.fc21 - Linux v4.1.13 - CVE-2015-8104 kvm: DoS infinite loop in microcode DB exception rhbz 1278496 1279691 - CVE-2015-5307 kvm: DoS infinite loop in microcode AC exception rhbz 1277172 1279688 Note that Tenable Network Security has extracted the preceding description block...