18 matches found
Siemens SIMATIC S7-1500 and Ruggedcom ROX Devices Use After Free (CVE-2021-36084)
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC S7-1500 and Ruggedcom ROX Devices Use After Free (CVE-2021-36085)
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC S7-1500 and Ruggedcom ROX Devices Use After Free (CVE-2021-36086)
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Linux Distros Unpatched Vulnerability : CVE-2021-36084
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. CVE-2021-36084 Note tha...
NewStart CGSL MAIN 6.02 : libsepol Multiple Vulnerabilities (NS-SA-2024-0054)
The remote NewStart CGSL host, running version MAIN 6.02, has libsepol packages installed that are affected by multiple vulnerabilities: - The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. CVE-2021-36084 - The...
Amazon Linux 2 : libsepol (ALASSELINUX-NG-2023-001)
The version of libsepol installed on the remote host is prior to 2.5-10. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2SELINUX-NG-2023-001 advisory. The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission...
Medium: libsepol
Issue Overview: The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. CVE-2021-36084 The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
SUSE CVE-2021-36084
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
Amazon Linux 2022 : libsepol, libsepol-devel, libsepol-static (ALAS2022-2022-208)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-208 advisory. The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. CVE-2021-36084 The CIL compiler in SELinux 3.2 has a...
Amazon Linux 2022 : libsepol, libsepol-devel, libsepol-static (ALAS2022-2022-170)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-170 advisory. The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. CVE-2021-36084 The CIL compiler in SELinux 3.2 has a...
EulerOS 2.0 SP9 : libsepol (EulerOS-SA-2022-1309)
According to the versions of the libsepol package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...
Huawei EulerOS: Security Advisory for libsepol (EulerOS-SA-2022-1309)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AlmaLinux 8 : libsepol (ALSA-2021:4513)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:4513 advisory. - The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper. CVE-2021-36084 ...
Denial Of Service (DoS)
libsepol is vulnerable to denial of service. The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
CVE-2021-36085
The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from verifymappermclassperms and hashtabmap...
CVE-2021-36086
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
CVE-2021-36086
The CIL compiler in SELinux 3.2 has a use-after-free in cilresetclasspermission called from cilresetclasspermsset and cilresetclasspermslist...
PT-2021-3582 · Selinux +6 · Selinux +6
Name of the Vulnerable Software and Affected Versions: SELinux version 3.2 Description: The issue is related to a use-after-free in the cil reset classpermission function of the CIL compiler in SELinux. This function is called from cil reset classperms set and cil reset classperms list. The...