ALPINE-CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

CVE-2017-14159

slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill cat /pathname" command, ...

quagga security and bug fix update

0.99.15-14 - Resolves: 1416013 - CVE-2017-5495 quagga: Telnet interface input buffer allocates unbounded amounts of memory 0.99.15-13 - fix path of ripd pid file 842308 0.99.15-12 - fix start function in watchqugga initscript 862826, 1208617 0.99.15-11 - fix for CVE-2013-2236 1391918 - fix for...

krb5 security, bug fix, and enhancement update

1.14.1-26 - Use responder in non-preauth AS reqs - Resolves: 1363690 1.14.1-25 - Fix bad debuglog call in selinux handling - Resolves: 1292153 1.14.1-24 - Fix KKDCPP with TLS SNI by always presenting 'Host:' header - Resolves: 1364993 1.14.1-23 - Add dependency on libkadm5 to krb5-devel - Resolve...

Oracle: Security Advisory (ELSA-2013-0132)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OracleVM 3.3 : bind (OVMSA-2014-0084)

The remote OracleVM system is missing necessary patches to address critical security updates : - Fix CVE-2014-8500 1171973 - Use /dev/urandom when generating rndc.key file 951255 - Remove bogus file from /usr/share/doc, introduced by fix for bug 1092035 - Add support for TLSA resource records...

Scientific Linux Security Update : bind97 on SL5.x i386/x86_64 (20140916)

A denial of service flaw was found in the way BIND handled queries for NSEC3-signed zones. A remote attacker could use this flaw against an authoritative name server that served NCES3-signed zones by sending a specially crafted query, which, when processed, would cause named to crash. CVE-2014-05...

CentOS 5 : bind97 (CESA-2014:1244)

Updated bind97 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

bind97 security update

CentOS Errata and Security Advisory CESA-2014:1244 Updated bind97 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base...

RedHat Update for bind97 RHSA-2014:1244-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

conga security and bug fix update

0.12.2-81.0.2.el5 - Replaced redhat logo image in Data.fs 0.12.2-81.0.1.el5 - Added conga-enterprise-Carthage.patch to support OEL5 - Replaced redhat logo image in conga-0.12.2.tar.gz 0.12.2-81 - luci: prevent non-admin user from unauthorized executive access Resolves: rhbz1089310 0.12.2-79 - luc...

Moderate: Red Hat Security Advisory: bind97 security and bug fix update

Updated bind97 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Design/Logic Flaw

Untrusted search path vulnerability in python-paste-script aka paster in Luci 0.26.0, when started using the initscript, allows local users to gain privileges via a Trojan horse .egg-info file in the 1 current working directory or 2 its parent directories...

Oracle Linux 5 : Important: / cups (ELSA-2007-1020)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2007-1020 advisory. 1.2.4-11.14.el51.1 - Applied patch to fix CVE-2007-4351 STR 2561, bug 353981. 1.2.4-11.14 - Applied patch to fix cupsd crash when failing to open a file: URI ST...

CentOS 4 : openssh (CESA-2007:0703)

Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...

tomcat5 security update

0:5.5.23-0jpp.40 - Related: CVE-2013-1976 It was found during additional testing - that the tomcat5 init may fail to start because the user - shell is set to sbin/nologin. Fixed in init scrip. SU now - uses -s /bin/sh during startup 0:5.5.23-0jpp.39 - Resolves: CVE-2013-1976 Improper TOMCATLOG...

SuSE 11.2 Security Update : Xen (SAT Patch Number 7492)

XEN has been updated to fix various bugs and security issues : - XSA 36 To avoid an erratum in early hardware, the Xen AMD IOMMU code by default choose to use a single interrupt remapping table for the whole system. This sharing implied that any guest with a passed through PCI device that is bus...

dnsmasq security, bug fix and enhancement update

2.48-13 - Fix the DHCP RELEASE problem when two or more dnsmasq instances are running rhbz887156 2.48-12 - Fixing initscript restart stop functions rhbz850944 2.48-11 - Revert previous changes because of many problems with --bind-dynamic option backport. - Dropping...

autofs security, bug fix, and enhancement update

5.0.1-0.rc2.177.0.1.el5 - apply fix from NetApp to use tcp before udp http://www.mail-archive.com/[email protected]/msg07910.html Bert Barbe orabug 6827898 5.0.1-0.rc2.177.el5 - bz714766 - autofs /net maps do not refresh list of shares exported on the NFS server - disable hosts map HUP sign...

Scientific Linux Security Update : sysstat on SL5.x i386/x86_64

The sysstat package contains a set of utilities which enable system monitoring of disks, network, and other I/O activity. It was found that the sysstat initscript created a temporary file in an insecure way. A local attacker could use this flaw to create arbitrary files via a symbolic link attack...