24 matches found
EUVD-2009-0055
Malware in sbrugna...
NGS000107 Technical Advisory: Oracle Gridengine sgepasswd Buffer Overflow
======= Summary ======= Name: Oracle Gridengine sgepasswd Buffer Overflow Release Date: 30 November 2012 Reference: NGS00107 Discoverer: Edward Torkington [email protected] Vendor: Oracle Vendor Reference: Systems Affected: Multiple packages - version 62u7 Risk: High Status: Publish...
Oracle Gridengine sgepasswd Buffer Overflow
======= Summary ======= Name: Oracle Gridengine sgepasswd Buffer Overflow Release Date: 30 November 2012 Reference: NGS00107 Discoverer: Edward Torkington Vendor: Oracle Vendor Reference: Systems Affected: Multiple packages - version 62u7 Risk: High Status: Published ======== TimeLine ========...
Oracle Gridengine sgepasswd Buffer Overflow Vulnerability
Oracle Gridengine's sgepasswd suffers from a buffer overflow vulnerability. ======= Summary ======= Name: Oracle Gridengine sgepasswd Buffer Overflow Release Date: 30 November 2012 Reference: NGS00107 Discoverer: Edward Torkington Vendor: Oracle Vendor Reference: Systems Affected: Multiple packag...
Fedora Update for gridengine FEDORA-2012-6112
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for gridengine FEDORA-2012-6112
Check for the Version of gridengine OpenVAS Vulnerability Test Fedora Update for gridengine FEDORA-2012-6112 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Debian Security Advisory DSA 2472-1 (gridengine)
The remote host is missing an update to gridengine announced via advisory DSA 2472-1. OpenVAS Vulnerability Test $Id: deb24721.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2472-1 gridengine Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian DSA-2472-1 : gridengine - privilege escalation
Dave Love discovered that users who are allowed to submit jobs to a Grid Engine installation can escalate their privileges to root because the environment is not properly sanitized before creating processes. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
[SECURITY] [DSA 2472-1] gridengine security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2472-1 [email protected] http://www.debian.org/security/ Florian Weimer May 15, 2012 http://www.debian.org/security/faq -...
DSA-2472-1 gridengine - privilege escalation
Bulletin has no description...
Fedora 16 : gridengine-6.2u5p2-7.fc16.3 (2012-6179)
Security update to prevent environment code injection and two other security issues. - Use hardened build. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...
Fedora 15 : gridengine-6.2u5-10.fc15.3 (2012-6177)
Security update to prevent environment code injection and two other security issues. - Use hardened build. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...
Fedora Update for gridengine FEDORA-2012-6177
Check for the Version of gridengine OpenVAS Vulnerability Test Fedora Update for gridengine FEDORA-2012-6177 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Fedora Update for gridengine FEDORA-2012-6179
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for gridengine FEDORA-2012-6177
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for gridengine FEDORA-2012-6179
Check for the Version of gridengine OpenVAS Vulnerability Test Fedora Update for gridengine FEDORA-2012-6179 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Fedora 17 : gridengine-2011.11-3.svn131.fc17 (2012-6112)
Security update to prevent environment code injection and two other security issues. - Use hardened build. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...
[oCERT-2008-016] Multiple OpenSSL signature verification API misuses
2008-016 multiple OpenSSL signature verification API misuse Description: Several functions inside the OpenSSL library incorrectly check the result after calling the EVPVerifyFinal function. This bug allows a malformed signature to be treated as a good signature rather than as an error. This issue...
CVE-2009-0046
Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077...
CVE-2009-0046
Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077...