Local /tmp vulnerability fixed in ppp-off

A local /tmp bug in the /usr/sbin/ppp-off program was found. This bug could allow a local user to corrupt system files. A fix has been made and an updated package is now available in the -current branch. The package described below will work for users of Slackware 7.0, 7.1, and -current...

ppp-off.txt

Hi, In SlackWare Linux the script /usr/bin/ppp-off writes the output of 'ps x' to /tmp/grep.tmp Since root is the user that runs ppp-off, a non-privileged user could create a link from /tmp/grep.tmp to any file ie: /etc/issue, thus when root runs the ppp-off script, the output of 'ps x' would be...

CVE-2000-0793

Norton AntiVirus 5.00.01C with the Novell Netware client does not properly restart the auto-protection service after the first user has logged off of the system...

CVE-2000-0793

CVE-2000-0793 affects Norton AntiVirus 5.00.01C when used with the Novell Netware client, where the auto-protection service fails to restart after the first user logs off. The CVSS2 base metrics indicate a HIGH impact across confidentiality, integrity, and availability with network access and no ...

CVE-1999-0824

CVE-1999-0824 involves Windows NT where a user can use SUBST to map a drive letter to a folder. This mapping is not unmapped after log off, potentially allowing the affected user to influence the location of folders accessed by later users. The description covers the mapping behavior and its pers...

February 16, 2021-KB4601383 (OS Build 17763.1790) Preview

February 16, 2021-KB4601383 OS Build 17763.1790 Preview NEW 2/16/21 IMPORTANT As part of the end of support for Adobe Flash, KB4577586 is now available as an optional update from Windows Update WU and Windows Server Update Services WSUS. Installing KB4577586 will remove Adobe Flash Player...

unsetenv.txt

o unsetenv off-by-one error: The unsetenv function in glibc 2.1.1 suffers from a problem whereby when running through the environment variables, if the name of the variable being unset is present twice consecutively, the second is not destroyed. unsetenv is sometimes used by programs that depend ...

PT-1999-1794 · Ncftp · Ncftpd

Name of the Vulnerable Software and Affected Versions: NcFTPd versions prior to 2.4.1 Description: The issue is caused by an off-by-one error in the NcFTPd FTP server, allowing a remote attacker to cause a denial of service crash via a long PORT command. Recommendations: For versions prior to...

CVE-2023-52071

The CVE-2023-52071 entry is tied to curl/libcurl. The IBM bulletin notes a stack-based buffer overflow in tool_cb_wrt within libcurl, caused by improper bounds checking, which could let a remote attacker overflow a buffer and execute code or cause a denial of service. Affected IBM MaaS360 compone...

CVE-2022-3638

Removed by vendor...

CVE-2026-45065: UrlGenerator Route-Requirement Bypass via Unanchored Regex Alternation → Off-Site //host URL Injection

More info at https://symfony.com/cve-2026-45065...

PT-2001-2681 · Red Hat +2 · Nfs-Utils +7

Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.2.19-amiga version 2.2.19 Debian GNU/Linux kernel-image-2.2.19-atari version 2.2.19 Debian GNU/Linux kernel-image-2.2.19-bvme6000 version 2.2.19 Debian GNU/Linux kernel-image-2.2.19-chrp version 2.2.19 Debian...

CVE-2026-45065: UrlGenerator Route-Requirement Bypass via Unanchored Regex Alternation → Off-Site //host URL Injection

More info at https://symfony.com/cve-2026-45065...

CVE-2026-48784: UrlGenerator Dot-Segment Encoding Skips Every Other Chained `../` or `./` → Generated URL Collapses Off-Route Under RFC 3986 Normalization

More info at https://symfony.com/cve-2026-48784...