Linux Distros Unpatched Vulnerability : CVE-2020-10575

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Janus through 0.9.1. plugins/janusvideocall.c in the VideoCall plugin mishandles session management because a race condition causes...

Oracle Linux 8 : kernel (ELSA-2020-4431)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4431 advisory. - fs xfs: fix boundary test in xfsattrshortformverify Eric Sandeen 1875316 CVE-2020-14385 - net packet: fix overflow in tpacketrcv Hangbin Liu 1876224...

OPENSUSE-SU-2021:3140-1 Security update for xen

This update for xen fixes the following issues: - CVE-2021-28701: Fixed race condition in XENMAPSPACEgranttable handling XSA-384 bsc1189632. - Upstream bug fixes bsc1027519...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5715)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5715 advisory. - x86/speculation: Add SRBDS vulnerability and mitigation documentation Mark Gross Orabug: 31422209 CVE-2020-0543 - x86/speculation: Add Special Regist...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2020-5710)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5710 advisory. - USB: adutux: fix use-after-free on disconnect Johan Hovold Orabug: 31240297 CVE-2019-19523 - USB: core: Fix races in character device registratio...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1452)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-19537

CVE-2019-19537 is a race condition in the Linux kernel USB stack (drivers/usb/core/file.c and related USB character device layer) triggered by a malicious USB device. The vulnerability could allow a local attacker to cause a denial of service by making the kernel stop responding. Public reference...

Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released)

Over a month ago we reported about two critical zero-day vulnerabilities in the world's 2nd most popular database management software MySQL: MySQL Remote Root Code Execution CVE-2016-6662 Privilege Escalation CVE-2016-6663 At that time, Polish security researcher Dawid Golunski of Legal Hackers w...

Scientific Linux Security Update : sudo on SL5.x i386/x86_64 (20120808)

An insecure temporary file use flaw was found in the sudo package's post-uninstall script. A local attacker could possibly use this flaw to overwrite an arbitrary file via a symbolic link attack, or modify the contents of the '/etc/nsswitch.conf' file during the upgrade or removal of the sudo...

CentOS 5 : sudo (CESA-2012:1149)

An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

sudo security update

CentOS Errata and Security Advisory CESA-2012:1149 An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring...

Moderate: Red Hat Security Advisory: sudo security and bug fix update

An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

This update addresses the following security issues : - a memory leak in keyctl handling. A local user could use this flaw to deplete kernel memory, eventually leading to a denial of service. CVE-2009-0031, Important - a buffer overflow in the Linux kernel Partial Reliable Stream Control...