Oracle Linux 5 : cman (ELSA-2009-1341)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-1341 advisory. 2.0.115-1 - RSA II fencing agent has been fixed. - Resolves: rhbz493802 2.0.114-1 - local variable 'verbosefilename' referenced before assignment has...

CentOS Update for luci CESA-2013:0128 centos5

Check for the Version of luci OpenVAS Vulnerability Test CentOS Update for luci CESA-2013:0128 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for luci CESA-2013:0128 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS 5 : conga (CESA-2013:0128)

Updated conga packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives ...

Low: Red Hat Security Advisory: conga security, bug fix, and enhancement update

Updated conga packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives ...

Scientific Linux Security Update : fence on SL4.x i386/x86_64

Insecure temporary file use flaws were found in fenceegenera, fenceapc, and fenceapcsnmp. A local attacker could use these flaws to overwrite an arbitrary file writable by the victim running those utilities via a symbolic link attack. CVE-2008-4192, CVE-2008-4579 This update also fixes the...

cman/fence: insecure temporary file usage in the apc fence agents

The 1 fenceapc and 2 fenceapcsnmp programs, as used in a fence 2.02.00-r1 and possibly b cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file...

Code injection

The 1 fenceapc and 2 fenceapcsnmp programs, as used in a fence 2.02.00-r1 and possibly b cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file...

CVE-2008-4579

CVE-2008-4579 is tied to the fence components (fence_apc and fence_apc_snmp) used by fence 2.02.00-r1 and possibly cman. The vulnerability arises from insecure temporary file handling in verbose mode, enabling a local attacker to perform a symlink attack against the apclog file and append data to...

CVE-2008-4579

The 1 fenceapc and 2 fenceapcsnmp programs, as used in a fence 2.02.00-r1 and possibly b cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file...