196 matches found
Permission Checking Bug in FishEye Changeset Tooltips
We have identified and fixed a permission checking bug in the FishEye changeset tooltips. Affected versions are 2.4.6 to 2.5.6 This bug allows users to view metadata for a changesets that they do not have permission to view. This issue is reported in our security advisory on the following page:...
Permission checking bug in Crucible Review Tooltips
We have identified and fixed a permission checking bug in the Crucible review tooltips. Affected versions are 2.4.6 to 2.5.6 This bug allows users to view metadata for a reviews that they do not have permission to view. This issue is reported in our security advisory on the following page:...
Permission checking bug in Crucible Review Tooltips
We have identified and fixed a permission checking bug in the Crucible review tooltips. Affected versions are 2.4.6 to 2.5.6 This bug allows users to view metadata for a reviews that they do not have permission to view. This issue is reported in our security advisory on the following page:...
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2010 [email protected] http://www.debian.org/security/ Dann Frazier March 10, 2010 http://www.debian.org/security/faq -...
Fedora Core 12 FEDORA-2009-13039 (kernel)
The remote host is missing an update to the kernel announced via advisory FEDORA-2009-13039. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...
Fedora 12 : kernel-2.6.31.6-166.fc12 (2009-13039)
CVE-2009-4131: EXT4 - fix insufficient permission checking which could result in arbitrary data corruption by a local unprivileged user. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
Ubuntu Update for slocate vulnerability USN-425-1
Ubuntu Update for Linux kernel vulnerabilities USN-425-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4251.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for slocate vulnerability USN-425-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-425-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS / 6.10 : slocate vulnerability (USN-425-1)
A flaw was discovered in the permission checking code of slocate. When reporting matching files, locate would not correctly respect the parent directory's 'read' bits. This could result in filenames being displayed when the file owner had expected them to remain hidden from other system users. No...
Code injection
Unspecified vulnerability in the Roles module in Xaraya 1.1.2 and earlier allows attackers to gain privileges via unspecified vectors, probably related to incorrect permission checking in xartemplates/user-view.xd...
CVE-2007-2251
Unspecified vulnerability in the Roles module in Xaraya 1.1.2 and earlier allows attackers to gain privileges via unspecified vectors, probably related to incorrect permission checking in xartemplates/user-view.xd...
CVE-2007-2251
CVE-2007-2251 : In Xaraya, the Roles module (versions
USN-425-1: slocate vulnerability
A flaw was discovered in the permission checking code of slocate. When reporting matching files, locate would not correctly respect the parent directory's "read" bits. This could result in filenames being displayed when the file owner had expected them to remain hidden from other system users...
USN-82-1: Linux kernel vulnerabilities
CAN-2004-0176: Michael Kerrisk noticed an insufficient permission checking in the shmctl function. Any process was permitted to lock/unlock any System V shared memory segment that fell within the the RLIMITMEMLOCK limit that is the maximum size of shared memory that unprivileged users can acquire...
Important: Red Hat Security Advisory: postgresql security update
Updated postresql packages that correct various security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. A flaw in the LOAD command in PostgreSQL was discovered. A local user could use...
Important: Red Hat Security Advisory: rh-postgresql security update
Updated PostgreSQL packages to fix various security flaws are now available for Red Hat Enterprise Linux 3. PostgreSQL is an advanced Object-Relational database management system DBMS. A flaw in the LOAD command in PostgreSQL was discovered. A local user could use this flaw to load arbitrary shar...