python27:2.7 security update

babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...

Apache Tomcat on RedHat Based Systems Insecure Temp Config Privilege Escalation

This module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. This may also work against The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary...

Apache Tomcat Privilege Escalation Exploit

This Metasploit module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfiles.d/tomcat.conf for Apache Tomcat versions before 7.0.54-8. The configuration files in tmpfiles.d are used by systemd-tmpfiles to manage temporary files including...

Exploit for Incorrect Authorization in Polkit_Project Polkit

CVE-2021-3560PoC polkit exploit script Automated script for...

Exploit for Incorrect Authorization in Polkit_Project Polkit

polkadots CVE-2021-3560 Local PrivEsc Exploit This e...

Directory traversal

The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...

CVE-2015-0296

The pre-install script in texlive 3.1.20140525r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory...

graphite2 security, bug fix, and enhancement update

1.3.6-1 - Related: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.3.5-1 - Resolves: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.2.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora24MassRebuild 1.2.4-5 - Rebuilt for...

Fedora 21 : ntp (2015-77bfbc1bcd)

The remote Fedora 21 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2015-77bfbc1bcd advisory. Security fix for CVE-2015-7704, CVE-2015-5300, CVE-2015-7692, CVE-2015-7871, CVE-2015-7702, CVE-2015-7691, CVE-2015-7852, CVE-2015-7701 ---- Securit...

Fedora 21 : xen-4.4.3-7.fc21 (2015-242be2c240)

nine security updates CVE-2015-7969 CVE-2015-7970 CVE-2015-7813 CVE-2015-7814 CVE-2015-7812 CVE-2015-7971 CVE-2015-7835 CVE-2015-7972 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...

Fedora 21 : zarafa-7.1.14-1.fc21 (2015-a275fd68f2)

Zarafa Collaboration Platform 7.1.14 final 51822 ================================================== - ZCP-13581: update fck- editor for webaccess to solve CVE-2012-4000 - ZCP-13572: CVE-2015-6566 - zarafa-autorespond suffers from a potential local privilege escalation - ZCP-13087: Meeting request...

Fedora 21 : sundials-2.6.2-11.fc21 (2015-038912089d)

sundials-2.6.2-11.fc23 - Fixes for EPEL7 - Set mpif77 only for OpenMPI 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds on 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds on 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds on 1.17 Fedora - Set LDFLAGS for EPEL7 - Hardened builds o...

Fedora 21 : webkitgtk-2.4.9-2.fc21 / webkitgtk3-2.4.9-2.fc21 (2015-6999afd53e)

webkitgtk-2.4.9-2.fc21 - rhbz1189303 - abrt midori: WebCore::SQLiteStatement::prepare: midori killed by SIGSEGV Initialize string in SQLiteStatement before using it webkitgtk-2.4.9-2.fc22 - rhbz1189303 - abrt midori: WebCore::SQLiteStatement::prepare: midori killed by SIGSEGV Initialize string in...

Fedora 21 : libvdpau-1.1.1-2.fc21 (2015-3ca3f2138b)

libvdpau-1.1.1-2.fc21 - Backport current patches - Switch to new upstream git repository on freedesktop.org ---- Update to 1.1.1 Security fix for CVE-2015-5198, CVE-2015-5199, CVE-2015-5200 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 21 : abrt-2.3.0-12.fc21 / libreport-2.3.0-10.fc21 (2015-6542ab6d3a)

Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 - doc: fix default DumpLocation in abrt.conf man page - bodhi: fix typo in error messages - abrt- dump-xorg: support Xorg log backtraces prefixed by EE libreport-2.3.0-10.fc21 - fix save users changes after reviewing dump dir files - Resolves...

Fedora 21 : pdns-3.4.7-1.fc21 (2015-a3965fd800)

Update to 3.4.7 - CVE-2015-5311 Release notes: https://doc.powerdns.com/md/changelog/powerdns-authorit ative-server-347 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

Fedora 21 : wpa_supplicant-2.0-17.fc21 (2015-cfea96144a)

wpasupplicant-2.0-17.fc21 - Make sure that network filesystems are unmounted when shutting down rh 1214466 - CVE-2015-4142: AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 21 : mbedtls-1.3.14-1.fc21 (2015-30a417bea9)

Update to 1.3.14 - CVE-2015-5291 Release notes: https://tls.mbed.org/tech- updates/releases/mbedtls-2.1.2-and-1.3.14-and-polarssl-1 .2.17-released Security notes: https://tls.mbed.org/tech-updates/security-advisories/mb edtls-security- advisory-2015-01 Note that Tenable Network Security has...

Fedora 21 : metis-5.1.0-7.fc21 (2015-19dc86f49b)

metis-5.1.0-7.el7 - Rebuild for cmake 3.4.0 - Hardened builds on F23 metis-5.1.0-7.fc22 - Rebuild for cmake 3.4.0 - Hardened builds on F23 metis-5.1.0-7.fc21 - Rebuild for cmake 3.4.0 - Hardened builds on F23 metis-5.1.0-7.el6 - Rebuild for cmake 3.4.0 - Hardened builds on F23 metis-5.1.0-7.fc23 ...

Fedora 21 : php-5.6.14-1.fc21 (2015-366f3dd73f)

01 Oct 2015, PHP 5.6.14 Core: Fixed bug php70370 Bundled libtool.m4 doesn't handle FreeBSD 10 when building extensions. Adam CLI server: Fixed bug php68291 404 on urls with '+'. cmb DOM: Fixed bug php70001 Assigning to DOMNode::textContent does additional entity encoding. cmb Mysqlnd: Fixed bug...