66 matches found
EUVD-2008-1922
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-18932
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As th...
OPENSUSE-SU-2024:11367-1 sarg-2.4.0-3.10 on GA media
These are all security issues fixed in the sarg-2.4.0-3.10 package on the GA media of openSUSE Tumbleweed...
SUSE CVE-2008-1922
Multiple stack-based buffer overflows in Sarg might allow attackers to execute arbitrary code via unknown vectors, probably a crafted Squid log file...
SUSE CVE-2008-7249
Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...
SUSE CVE-2019-18932
log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...
Sarg: Local privilege escalation
Background Sarg Squid Analysis Report Generator is a tool that provides many informations about the Squid web proxy server users activities: time, sites, traffic, etc. Description A flaw in Sarg’s handling of temporary directories was discovered. Impact A local attacker may be able to escalate...
GLSA-202007-32 : Sarg: Local privilege escalation
The remote host is affected by the vulnerability described in GLSA-202007-32 Sarg: Local privilege escalation A flaw in Sargs handling of temporary directories was discovered. Impact : A local attacker may be able to escalate privileges. Workaround : There is no known workaround at this time. C...
openSUSE Security Update : sarg (openSUSE-2020-117)
This update for sarg fixes the following issues : - CVE-2019-18932: Fixed insecure usage of /tmp/sarg which potentially allowed privilege escalation or denial of service boo1156643. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUS...
openSUSE Security Update : sarg (openSUSE-2020-121)
This update for aubio fixes the following issues : - CVE-2019-1010224: Fixed a denial of service caused by NULL pointer dereference boo1142435. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2020-121. T...
OPENSUSE-SU-2020:0140-1 Security update for sarg
This update for sarg fixes the following issues: - CVE-2019-18932: Fixed insecure usage of /tmp/sarg which potentially allowed privilege escalation or denial of service boo1156643. This update was imported from the openSUSE:Leap:15.1:Update update project...
Security update for sarg (important)
openSUSE Security Update: Security update for sarg Announcement ID: openSUSE-SU-2020:0140-1 Rating: important References: 1156643 Cross-References: CVE-2019-18932 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...
openSUSE: Security Advisory for sarg (openSUSE-SU-2020:0117_1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for sarg (openSUSE-SU-2020:0121_1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:0117-1 Security update for sarg
This update for sarg fixes the following issues: - CVE-2019-18932: Fixed insecure usage of /tmp/sarg which potentially allowed privilege escalation or denial of service boo1156643...
Security update for sarg (important)
openSUSE Security Update: Security update for sarg Announcement ID: openSUSE-SU-2020:0117-1 Rating: important References: 1156643 Cross-References: CVE-2019-18932 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for sarg fixes...
CVE-2019-18932
log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...
DEBIAN-CVE-2019-18932
log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...
UBUNTU-CVE-2019-18932
log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...
CVE-2019-18932
log.c in Squid Analysis Report Generator sarg through 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can pre-create the directory, and...