perl-HTTP-Tiny bug fix update

An update is available for perl-HTTP-Tiny. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list HTTP::Tiny is a small and simple HTTP/1.1 client written in Perl. Bug...

Caddy-SSH vulnerable to Authorization Bypass due to incorrect usage of PAM library

Not invoking a call to pamacctmgmt after a call to pamauthenticate to check the validity of a login can lead to an authorization bypass. Impact Exploitability The attack can be carried over the network. A complex non-standard configuration or a specialized condition is required for the attack to ...

dnsmasq security and bug fix update

2.79-19 - Correct typo in man page 1947039 2.79-18 - Properly randomize outgoing ports also with bound interface CVE-2021-3448 2.79-17 - Fix sporadic bind-dynamic failures 1887649 2.79-16 - Fix network errors on queries both from ipv4 and ipv6 1921153...

SUSE SLES12 Security Update : libzypp, zypper (SUSE-SU-2020:3367-1)

This update for libzypp, zypper fixes the following issues : libzypp fixes the following security issue : CVE-2019-18900: Fixed assert cookie file that was world readable bsc1158763. zypper was updated to fix the following issues : Fixed an issue, where zypper crashed when the system language is...

e2fsprogs security and bug fix update

1.45.6-19 - fix issues with metabg when resizing file system 1849718 1.42.9-18 - fix out-of-bounds write on corrupted fs 1797731 - fix out-of-bounds write on corrupted fs 1768710 - fix e2fsprogs creating corrupted meta image 1711880 - fix typo in ext4 man page 1720130 - provide easy metod for...

Autovpn - Create On Demand Disposable OpenVPN Endpoints On AWS

Script that allows the easy creation of OpenVPN endpoints in any AWS region. To create a VPN endpoint is done with a single command takes 3 minutes. It will create the proper security groups. It spins up a tagged ec2 instance and configures OpenVPN software. Once instance is configured an OpenVPN...

[SECURITY] Fedora 31 Update: marked-1.1.0-3.fc31

Install this for command line tool and man page. marked is a full-featured markdown compiler that can parse huge chunks of markdown without having to worry about caching the compiled output or blocking for an unnecessarily long time. marked is extremely fast and frequently outperforms similar...

[SECURITY] Fedora 32 Update: marked-1.1.0-3.fc32

Install this for command line tool and man page. marked is a full-featured markdown compiler that can parse huge chunks of markdown without having to worry about caching the compiled output or blocking for an unnecessarily long time. marked is extremely fast and frequently outperforms similar...

macOS 320.whatis Script Privilege Escalation

Exploit Title: MacOS 320.whatis Script - Privilege Escalation Date: 2020-05-06 Exploit Author: Csaba Fitzl Vendor Homepage: https://support.apple.com/en-us/HT210722 Version: macOS Labelcom.sample.LoadProgramArguments /Applications/Scripts/sample.shRunAtLoad!-- """ shquickcontent = """...

unzip security update

6.0-43 - Update the man page with the new exit code introduced in 6.0-42 - Related: CVE-2019-13232 6.0-42 - Fix CVE-2019-13232 - Resolves: CVE-2019-13232...

openSUSE Security Update : libsolv / libzypp / zypper (openSUSE-2020-255)

This update for libsolv, libzypp, zypper fixes the following issues : Security issue fixed : - CVE-2019-18900: Fixed assert cookie file that was world readable bsc1158763. Bug fixes - Fixed removing orphaned packages dropped by to-be-installed products bsc1155819. - Adds libzypp API to mark all...

Security update for libsolv, libzypp, zypper (moderate)

openSUSE Security Update: Security update for libsolv, libzypp, zypper Announcement ID: openSUSE-SU-2020:0255-1 Rating: moderate References: 1135114 1154804 1154805 1155198 1155205 1155298 1155678 1155819 1156158 1157377 1158763 Cross-References: CVE-2019-18900 Affected Products: openSUSE Leap 15...

SUSE SLED15 / SLES15 Security Update : libsolv, libzypp, zypper (SUSE-SU-2020:0432-1)

This update for libsolv, libzypp, zypper fixes the following issues : Security issue fixed : CVE-2019-18900: Fixed assert cookie file that was world readable bsc1158763. Bug fixes Fixed removing orphaned packages dropped by to-be-installed products bsc1155819. Adds libzypp API to mark all obsolet...

yum security, bug fix, and enhancement update

createrepoc 0.11.0-3 - Backport patch to switch off timestamps on documentation in order to remove file conflicts RhBug:1738788 0.11.0-2 - Consistently produce valid URLs by prepending protocol. RhBug:1632121 - modifyrepoc: Prevent doubling of compression test.gz.gz RhBug:1639287 - Correct pkg...

Fedora 30 : libnbd (2019-f6ea699dbb)

New upstream version 1.0.3. Contains fix for remote code execution vulnerability. Add new libnbd-security3 man page. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

Fedora 28 : fuse (2019-fd54b80806)

Update fuse to 2.9.9, fuse3 to 3.4.2. Also fixes CVE-2018-10906, and adds missing fusermount.1 man page. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

Fedora 28 : gettext (2018-a5d1fa335e)

fix CVE-2018-18751 rhbz1647044, move gettextize man to correct subpackage Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

policycoreutils security, bug fix, and enhancement update

2.5-22.0.1 - Lazy unmount private, shared entry Joe Jin orabug 12560705 2.5-22 - semanage: Fix fcontext help message 1499259 - semanage: Improve semanage-user.8 man page 1079946 - semodule: Improve man page 1337192 2.5-21 - Update translations 2.5-20 - setfiles: Mention customizable types in...

Oracle: Security Advisory (ELSA-2015-2231)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: Red Hat Security Advisory: openssh security, bug fix, and enhancement update

Updated openssh packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which...