Lucene search
K

5 matches found

OSV
OSV
added 2025/02/27 8:4 p.m.8 views

CVE-2025-21813 timers/migration: Fix off-by-one root mis-connection

In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix off-by-one root mis-connection Before attaching a new root to the old root, the children counter of the new root is checked to verify that only the upcoming CPU's top group have been connected to it. However...

5.5CVSS5.6AI score0.00179EPSS
Exploits0References6
OSV
OSV
added 2023/07/06 9:22 p.m.4 views

CLSA-2023-1688678532 Fix CVE(s): CVE-2021-41617

SECURITY UPDATE: Allows privilege escalation - debian/patches/CVE-2021-41617.patch: Added correct user group initialization. - CVE-2021-41617...

7CVSS7.1AI score0.02367EPSS
Exploits2References1
OSV
OSV
added 2021/09/26 7:15 p.m.8 views

ALPINE-CVE-2021-41617

sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with...

7CVSS7.3AI score0.02367EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2021/09/26 12:0 a.m.254 views

OpenSSH -- OpenSSH 6.2 through 8.7 failed to correctly initialise supplemental groups when executing an AuthorizedKeysCommand or AuthorizedPrincipalsCommand

OpenBSD Project reports: sshd8 from OpenSSH 6.2 through 8.7 failed to correctly initialise supplemental groups when executing an AuthorizedKeysCommand or AuthorizedPrincipalsCommand, where a AuthorizedKeysCommandUser or AuthorizedPrincipalsCommandUser directive has been set to run the command as ...

7CVSS2.2AI score0.02367EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.33 views

CentOS Update for sudo CESA-2010:0122 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.9CVSS7.7AI score0.01125EPSS
Exploits4References2
Rows per page
Query Builder