Lucene search
+L

68 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2019/10/07 12:0 a.m.86 views

Security update for singularity (moderate)

openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2019:2288-1 Rating: moderate References: 1125369 1128598 Cross-References: CVE-2019-11328 Affected Products: openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 An update that solves one vulnerability and h...

9CVSS7.6AI score0.02127EPSS
Exploits1References2
CVE
CVE
added 2018/05/31 10:0 p.m.116 views

CVE-2018-6552

CVE-2018-6552 affects the Ubuntu Apport component. The vulnerability arises when Apport handles crashes originating from a PID namespace; if /proc// is missing, the code may forward the crash using the container’s pid in the global namespace. This can allow a local attacker to cause a denial of s...

7.8CVSS7.5AI score0.00389EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2018/05/30 6:0 p.m.30 views

CVE-2018-6552

Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers. The issamens function...

7.8CVSS7AI score0.00389EPSS
Exploits0References4
OSV
OSV
added 2018/05/30 6:0 p.m.9 views

UBUNTU-CVE-2018-6552

Apport does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers. The issamens function...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References5
NVD
NVD
added 2018/02/02 2:29 p.m.23 views

CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS7.7AI score0.0044EPSS
Exploits0References5
OSV
OSV
added 2018/02/02 2:29 p.m.4 views

CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS5.8AI score0.0044EPSS
Exploits0References5
Prion
Prion
added 2018/02/02 2:29 p.m.22 views

Code injection

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.2CVSS7.6AI score0.0044EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2018/02/02 2:29 p.m.21 views

Code injection

Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers...

7.2CVSS7.5AI score0.00356EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2018/02/02 2:29 p.m.23 views

CVE-2017-14179

Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers...

7.8CVSS7.5AI score0.00356EPSS
Exploits0References2
CVE
CVE
added 2018/02/02 2:0 p.m.68 views

CVE-2017-14180

CVE-2017-14180 affects Apport 2.13–2.20.7. The vulnerability arises from handling crashes within a PID namespace, allowing local users to create files as root and potentially cause DoS via resource exhaustion or gain root privileges. The issue is noted as distinct from CVE-2017-14179. Public docu...

7.8CVSS7.5AI score0.0044EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2018/02/02 2:0 p.m.31 views

CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.6AI score0.0044EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2018/01/03 9:22 p.m.47 views

USN-3480-3: Apport regression

USN-3480-2 fixed regressions in Apport. The update introduced a new regression in the container support. This update addresses the problem. We apologize for the inconvenience. Original advisory details: Sander Bos discovered that Apport incorrectly handled core dumps for setuid binaries. A local...

7.3AI score
Exploits0References1
OSV
OSV
added 2018/01/03 9:22 p.m.6 views

USN-3480-3 apport regression

USN-3480-2 fixed regressions in Apport. The update introduced a new regression in the container support. This update addresses the problem. We apologize for the inconvenience. Original advisory details: Sander Bos discovered that Apport incorrectly handled core dumps for setuid binaries. A local...

5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/11/16 12:0 a.m.25 views

Ubuntu 14.04 LTS / 16.04 LTS : Apport vulnerabilities (USN-3480-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3480-1 advisory. Sander Bos discovered that Apport incorrectly handled core dumps for setuid binaries. A local attacker could use this issue to perform a deni...

7.8CVSS7.5AI score0.0044EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2017/11/15 7:22 p.m.54 views

USN-3480-1: Apport vulnerabilities

Sander Bos discovered that Apport incorrectly handled core dumps for setuid binaries. A local attacker could use this issue to perform a denial of service via resource exhaustion or possibly gain root privileges. CVE-2017-14177 Sander Bos discovered that Apport incorrectly handled core dumps for...

7.8CVSS7.3AI score0.0044EPSS
Exploits0
OSV
OSV
added 2017/11/15 7:22 p.m.7 views

USN-3480-1 apport vulnerabilities

Sander Bos discovered that Apport incorrectly handled core dumps for setuid binaries. A local attacker could use this issue to perform a denial of service via resource exhaustion or possibly gain root privileges. CVE-2017-14177 Sander Bos discovered that Apport incorrectly handled core dumps for...

7.8CVSS7.1AI score0.0044EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/11/15 7:0 p.m.30 views

CVE-2017-14179

Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers...

7.8CVSS7.1AI score0.00356EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/11/15 7:0 p.m.23 views

CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS7.1AI score0.0044EPSS
Exploits0References4
OSV
OSV
added 2017/11/15 7:0 p.m.4 views

UBUNTU-CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS7.1AI score0.0044EPSS
Exploits0References5
OSV
OSV
added 2017/11/15 7:0 p.m.7 views

UBUNTU-CVE-2017-14179

Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers...

7.8CVSS7.1AI score0.00356EPSS
Exploits0References3
Rows per page
Query Builder