SUSE CVE-2020-15824

In JetBrains Kotlin from 1.4-M1 to 1.4-RC as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0 there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default...

CVE-2020-15824

In JetBrains Kotlin from 1.4-M1 to 1.4-RC as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0 there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default...

CVE-2020-15824

In JetBrains Kotlin from 1.4-M1 to 1.4-RC as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0 there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default...

CVE-2020-15824

In JetBrains Kotlin from 1.4-M1 to 1.4-RC as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0 there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default...

CVE-2020-15824

CVE-2020-15824 affects JetBrains Kotlin from 1.4-M1 to 1.4-RC, with Kotlin 1.3.7x unaffected. The issue is a script-cache privilege escalation caused by cached kotlin-main-kts scripts in the system temporary directory, which is shared by all users by default. The vulnerability is fixed in Kotlin ...

CVE-2020-15824

In JetBrains Kotlin from 1.4-M1 to 1.4-RC as Kotlin 1.3.7x is not affected by the issue. Fixed version is 1.4.0 there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default...

chromium-browser: Use-after-free in service workers

Multiple use-after-free vulnerabilities in the ServiceWorkerScriptCacheMap implementation in content/browser/serviceworker/serviceworkerscriptcachemap.cc in Google Chrome before 41.0.2272.76 allow remote attackers to cause a denial of service or possibly have unspecified other impact via vectors...

Twiki Perl 4.x, 5.x, 6.x Upload Bypass / Code Execution Vulnerabilities

The debugenableplugins request parameter in Twiki versions 4.x, 5.x, and 6.0.0 allows arbitrary Perl code execution and suffer from a file upload bypass vulnerability. This is an advisory for TWiki administrators: The debugenableplugins request parameter allows arbitrary Perl code execution...