54 matches found
CVE-1999-0405
A buffer overflow in lsof allows local users to obtain root privilege...
EUVD-2006-1862
Malware in sbrugna...
EUVD-1999-0405
Malware in sbrugna...
EUVD-2021-0886
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-3757
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The printmaps function in toolbox/lsof.c in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows user-assisted...
CVE-2019-10783
All versions including 0.0.4 of lsof npm module are vulnerable to Command Injection. Every exported method used by the package uses the exec function to parse user input...
Nysm - A Stealth Post-Exploitation Container
A stealth post-exploitation container. Introduction With the raise in popularity of offensive tools based on eBPF, going from credential stealers to rootkits hiding their own PID, a question came to our mind: Would it be possible to make eBPFinvisible in its own eyes? From there, we created nysm,...
SUSE CVE-2006-1862
The virtual memory implementation in Linux kernel 2.6.x allows local users to cause a denial of service panic by running lsof a large number of times in a way that produces a heavy system load...
new packages: lsof
An update is available for lsof. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...
SUSE: Security Advisory (SUSE-SU-2018:2690-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:0109-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2017:2264-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2814-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OS Command Injection in lsof
All versions including 0.0.4 of lsof npm module are vulnerable to Command Injection. Every exported method used by the package uses the exec function to parse user input...
GHSA-WHQ6-MJ2R-MJQC OS Command Injection in lsof
All versions including 0.0.4 of lsof npm module are vulnerable to Command Injection. Every exported method used by the package uses the exec function to parse user input...
SUSE SLED15 / SLES15 Security Update : libzypp, zypper (SUSE-SU-2021:0109-1)
This update for libzypp, zypper fixes the following issues : Update zypper to version 1.14.41 Update libzypp to 17.25.4 CVE-2017-9271: Fixed information leak in the log file bsc1050625 bsc1177583 RepoManager: Force refresh if repo url has changed bsc1174016 RepoManager: Carefully tidy up the...
ALEA-2020:4468 lsof bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
lsof bug fix and enhancement update
An update is available for lsof. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...
lsof bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Command Injection
lsof is vulnerable to command injection. The vulnerability exists as the unvalidated value of port is used in cp.exec...