EUVD-2018-7768

Malware in sbrugna...

PT-2025-29015

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.14.0-0-MANJARO-ARM and earlier Description: A flaw was identified in the Linux kernel where the meson ddr pmu create function within the Amlogic DDR PMU driver incorrectly utilizes smp processor id. This function assum...

Exploit for Argument Injection in Linuxmint Xreader

CVE-2023-44452, CVE-2023-51698: Linux Mint Xreader/MATE Atril...

Manjaro Linux Pamac Local Mobilization Vulnerability

Manjaro is a very popular personal desktop version of the linux operating system. A local elevation vulnerability exists in Manjaro Linux Pamac, which can be exploited by attackers to locally elevate Manjaro Linux Pamac to root privileges...

New Linux Bug Lets Attackers Hijack Encrypted VPN Connections

A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could allow remote 'network adjacent attackers' to spy on and tamper with encrypted VPN connections. The...

Multiple Linux Distributions CVE-2019-14899 Security Bypass Vulnerability

Description Multiple Linux Distributions are prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Apple iOS Apple macOS Archlinux Linux 2019.05...

Linux Kernel 4.10 5.1.17 - PTRACE_TRACEME pkexec Local Privilege Escalation

Linux Kernel 4.10 5.1.17 - PTRACETRACEME pkexec Local Privilege Escalation // Linux 4.10 // - added known helper paths // - added search for suitable helpers // - added automatic targeting // - changed target suid exectuable from passwd to pkexec //...

Linux Kernel 4.10 < 5.1.17 - 'PTRACE_TRACEME' pkexec Local Privilege Escalation

// Linux 4.10 // - added known helper paths // - added search for suitable helpers // - added automatic targeting // - changed target suid exectuable from passwd to pkexec // https://github.com/bcoles/kernel-exploits/tree/master/CVE-2019-13272 // --- // Tested on: // - Ubuntu 16.04.5 kernel...

Unspecified Vulnerability in Manjaro Linux

Manjaro Linux is a set of Linux distributions for the Arch operating system. A security vulnerability exists in the manjaro-update-system.sh file in the manjaro-system 20180716-1 release of Manjaro Linux. A local attacker can exploit this vulnerability to install or remove arbitrary packets or...

CVE-2018-15912

An issue was discovered in manjaro-update-system.sh in manjaro-system 20180716-1 on Manjaro Linux. A local attacker can install or remove arbitrary packages and package repositories potentially containing hooks with arbitrary code, which will automatically be run as root, or remove packages vital...

Information disclosure

An issue was discovered in manjaro-update-system.sh in manjaro-system 20180716-1 on Manjaro Linux. A local attacker can install or remove arbitrary packages and package repositories potentially containing hooks with arbitrary code, which will automatically be run as root, or remove packages vital...

CVE-2018-15912

An issue was discovered in manjaro-update-system.sh in manjaro-system 20180716-1 on Manjaro Linux. A local attacker can install or remove arbitrary packages and package repositories potentially containing hooks with arbitrary code, which will automatically be run as root, or remove packages vital...

CVE-2018-15912

An issue was discovered in manjaro-update-system.sh in manjaro-system 20180716-1 on Manjaro Linux. A local attacker can install or remove arbitrary packages and package repositories potentially containing hooks with arbitrary code, which will automatically be run as root, or remove packages vital...

CVE-2018-15912

Affected component: manjaro-update-system.sh in manjaro-system 20180716-1 on Manjaro Linux. The issue enables a local attacker to install or remove arbitrary packages and package repositories that may contain hooks with arbitrary code, which would run with root privileges, potentially compromisin...

openSUSE Security Update : lynis (openSUSE-2017-705)

This update for lynis fixes the following issues : Lynis 2.5.1 : - Improved detection of SSL certificate files - Minor changes to improve logging and results - Firewall tests: Determine if CSF is in testing mode The Update also includes changes from Lynis 2.5.0 : - CVE-2017-8108: symlink attack m...

Joomla 3.7.0 - com_fields SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla 3.7.0 - Sql Injection Date: 05-19-2017 Exploit Author: Mateus Lino Reference: https://blog.sucuri.net/2017/05/sql-injection-vulnerability-joomla-3-7.html Vendor Homepage: https://www.joomla.org/ Version: = 3.7.0 Tested on...

wiki.manjaro.org XSS vulnerability

Vulnerable URL: https://wiki.manjaro.org/thumb.php?f=x%23%3Cbody%09onmousemove=confirm%28%27XSSPOSED%27%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculate...

TORQUE Resource Manager 2.5.x < 2.5.13 - Stack Buffer Overflow Stub

!/usr/bin/env python Exploit Title: TORQUE Resource Manager 2.5.x-2.5.13 stack based buffer overflow stub Date: 27 May 2014 Exploit Author: bwall - @botnethunter Vulnerability discovered by: MWR Labs CVE: CVE-2014-0749 Vendor Homepage: http://www.adaptivecomputing.com/ Software Link:...