Linux Distros Unpatched Vulnerability : CVE-2025-68803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: NFSD: NFSv4 file creation neglects setting ACL An NFSv4 client that sets an ACL with a named...

EUVD-2020-22048

Malware in sbrugna...

EUVD-2019-17224

Malware in sbrugna...

EUVD-2008-4656

Malware in sbrugna...

EUVD-2008-3236

Malware in sbrugna...

EUVD-2017-7325

Malware in sbrugna...

EUVD-2021-2087

Malware in sbrugna...

EUVD-2021-25029

Malware in sbrugna...

EUVD-2021-1573

Malware in sbrugna...

CLSA-2025-1756929133 git: Fix of CVE-2025-27613

CVE-2025-27613: fix issue with file creation and truncation when running gitk without additional command arguments from untrusted repositories...

CVE-2022-49918 ipvs: fix WARNING in __ip_vs_cleanup_batch()

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix WARNING in ipvscleanupbatch During the initialization of ipvsconnnetinit, if file ipvsconn or ipvsconnsync fails to be created, the initialization is successful by default. Therefore, the ipvsconn or ipvsconnsync file...

CVE-2022-49917

CVE-2022-49917 affects the Linux kernel IPVS subsystem (ip_vs_app_net_cleanup and ip_vs_app_net_init). If ip_vs_app fails to be created during init, removal still proceeds, causing the ip_vs_app entry to be missing and a WARNING in fs/proc/generic.c: remove_proc_entry. The issue is demonstrated b...

Unexpected Creation of BullseyeCoverageError.txt in UserProfile Folder with 2402CU1 UPM

After upgrading Citrix Profile Management CPM to version 2402 CU1, administrators and users may notice a file named BullseyeCoverageError.txt appearing in the user’s profile folder. While this file does not impact functionality, it may cause confusion as it is unexpected...

OPENSUSE-SU-2022:0704-1 Security update for nodejs8

This update for nodejs8 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe bsc1192153. - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite bsc1191963. - CVE-2021-32804: Fixed...

CVE-2021-32841 Path Traversal in SharpZipLib

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

[Full-Disclosure] [SECURITY] [DSA 446-1] New synaesthesia packages fix insecure file creation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 446-1 [email protected] http://www.debian.org/security/ Matt Zimmerman February 21st, 2004 http://www.debian.org/security/faq -...

[Full-Disclosure] MondoSoft File Creation vulnerability

PROTEGO Security Advisory PSA200302 Topic: MondoSoft File Creation vulnerability Application : MondoSearch 4.4, 5.0, and 5.1 Author: Jens H. Christensen jhc at protego.dk Advisory URL: http://www.protego.dk/advisories/200302.html Identifiers: CERT: VU 756556 Vendor Name: MondoSoft Vendor URL:...

UUCP - File CreationOverwriting Symlinks

UUCP - File CreationOverwriting Symlinks / root exploit: multiple subsystem errors allowing root exploit bashack.c - Thu Nov 30 21:50:50 NZDT 2000 redhat 6.1 /etc/rc.d/ and scripts that are trusting the untrustworthy. /bin/sh acts silly when u get it to use the include define FNAME...

ipfilter.3.2.10.txt

Date: Thu, 15 Apr 1999 17:56:02 +0000 From: 0x1c To: [email protected] Subject: FSA-99.04-IPFILTER-v3.2.10 The author Darren Reed was notified about this problem early April. I believe it has been fixed in the latest version. FERALMONKEY SECURITY ADVISORY - IPFILTER v3.2.10 Title:...