EUVD-2001-1070

Malware in sbrugna...

Debian dla-3859 : libnss-myhostname - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3859 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3859-1 [email protected]...

Debian dla-3778 : libnss-libvirt - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3778 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3778-1 [email protected]...

Ubuntu 20.04 LTS : SSSD regression (USN-6156-2)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6156-2 advisory. USN-6156-1 fixed a vulnerability in SSSD. In certain environments, not all packages ended up being upgraded at the same time, resulting in authentication failures...

[SECURITY] [DLA 3047-1] avahi security update

Debian LTS Advisory DLA-3047-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany June 07, 2022 https://wiki.debian.org/LTS Package : avahi Version : 0.6.32-2+deb9u1 CVE ID : CVE-2021-3468 CVE-2021-26720 Debian Bug : 984938 It was discovered that the Debian package o...

Debian DSA-4443-1 : samba - security update

Isaac Boukris and Andrew Bartlett discovered that the S4U2Self Kerberos extension used in Samba's Active Directory support was susceptible to man-in-the-middle attacks caused by incomplete checksum validation. Details can be found in the upstream advisory at C Tenable Network Security, Inc. The...

Security fix for the ALT Linux 9 package systemd version 1:242-alt1

April 13, 2019 Alexey Shabalin 1:242-alt1 - 242 Fixes: CVE-2019-3842 - move execute systemctl daemon-reexec from post-script to filetrigger - add requires systemd to libnss-systemd package ALT 36267 - move LOCKFILE to /run/lock in udev init script ALT 35888...

OracleVM 3.3 / 3.4 : nss (OVMSA-2018-0264)

The remote OracleVM system is missing necessary patches to address critical security updates : - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed - Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which...

Debian: Security Advisory (DLA-1429-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-922-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for libnss-db vulnerability USN-922-1

Ubuntu Update for Linux kernel vulnerabilities USN-922-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9221.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for libnss-db vulnerability USN-922-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

CVE-2010-0826

The Free Software Foundation FSF Berkeley DB NSS module aka libnss-db 2.2.3pre1 reads the DBCONFIG file in the current working directory, which allows local users to obtain sensitive information via a symlink attack involving a setgid or setuid application that uses this module...

CVE-2010-0826

The CVE-2010-0826 issue affects the Free Software Foundation’s Berkeley DB NSS module (libnss-db) in the nss_db package (2.2.3pre1). The vulnerability arises because DB_CONFIG can be read from the current working directory, enabling a local attacker with setgid/setuid usage of the module to exfil...

[USN-922-1] libnss-db vulnerability

=========================================================== Ubuntu Security Notice USN-922-1 March 31, 2010 libnss-db vulnerability CVE-2010-0826 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu...

libnss-db unauthorized files access

It's possible to access local files with elevated privileges...

Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : libnss-db vulnerability (USN-922-1)

Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation. Note that Tenable Network Security has extracted the precedin...

USN-922-1: libnss-db vulnerability

Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation...

Debian Security Advisory DSA 1118-1 (mozilla)

The remote host is missing an update to mozilla announced via advisory DSA 1118-1. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: deb11181.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1118-1 Authors: Thomas...

Debian Security Advisory DSA 1430-1 (libnss-ldap)

The remote host is missing an update to libnss-ldap announced via advisory DSA 1430-1. OpenVAS Vulnerability Test $Id: deb14301.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1430-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-1430-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...