EUVD-2004-2251

Malware in sbrugna...

EUVD-2002-1545

Malware in sbrugna...

SUSE-SU-2022:4607-1 Security update for conmon

This update for conmon fixes the following issues: conmon was updated to version 2.1.5: don't leak syslogidentifier logging: do not read more that the buf size logging: fix error handling Makefile: Fix install for FreeBSD signal: Track changes to getsignaldescriptor in the FreeBSD version Packit:...

SUSE-SU-2022:4280-1 Security update for sudo

This update for sudo fixes the following issues: Security fixes: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt password backend bsc1204986. Other: - Make sure SIGCHLD is not ignored when sudo is executed;...

Improper Privilege Management in shadow-maint/shadow

Description The su utility, if compiled with PAM support, uses waitpid internally to monitor its child process. It depends on the creation of zombie processes for proper monitoring, but the creation can be suppressed by ignoring the SIGCHLD signal see waitpid manual page. If su is spawned from a...

CentOS 7 : libvirt (CESA-2014:0914)

Updated libvirt packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Linux Kernel 3.13 - SGID Privilege Escalation

Linux Kernel 3.13 - SGID Privilege Escalation / CVE-2014-4014 Linux Kernel Local Privilege Escalation PoC Vitaly Nikolenko http://hashcrack.org Usage: ./poc filepath where filepath is the file on which you want to set the sgid bit / define GNUSOURCE include include include include include include...

Oracle Linux 5 : piranha (ELSA-2014-0174)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2014-0174 advisory. 0.8.4-26.1.0.1 - Replace web/web/RedHat.gif with updated image in tarball 0.8.4-26.1 - Resolves: 1061903 - require authentication for all HTTP methods 0.8.4-26 ...

piranha security update

0.8.4-26.1.0.1 - Replace web/web/RedHat.gif with updated image in tarball 0.8.4-26.1 - Resolves: 1061903 - require authentication for all HTTP methods 0.8.4-26 - Resolves: 886361 - add SIGCHLD handler to pulse for lvs mode...

CentOS 5 : sudo (CESA-2012:1149)

An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

sudo security update

CentOS Errata and Security Advisory CESA-2012:1149 An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring...

Scientific Linux Security Update : dovecot on SL6.x i386/x86_64

Dovecot is an IMAP server for Linux, UNIX, and similar operating systems, primarily written with security in mind. A flaw was found in the way Dovecot handled SIGCHLD signals. If a large amount of IMAP or POP3 session disconnects caused the Dovecot master process to receive these signals rapidly,...

RedHat Update for dovecot RHSA-2011:0600-01

Check for the Version of dovecot OpenVAS Vulnerability Test RedHat Update for dovecot RHSA-2011:0600-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

RHEL 6 : dovecot (RHSA-2011:0600)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0600 advisory. Dovecot is an IMAP server for Linux, UNIX, and similar operating systems, primarily written with security in mind. A flaw was found in the w...

Moderate: Red Hat Security Advisory: dovecot security and enhancement update

Updated dovecot packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

SuSE 10 Security Update : PHP (ZYPP Patch Number 2236)

This update fixes the following security problems in the PHP scripting language : - Various buffer overflows in htmlentities/htmlspecialchars internal routines could be used to crash the PHP interpreter or potentially execute code, depending on the PHP application used. CVE-2006-5465 - A missing...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-2238)

This update fixes the following security problems in the PHP scripting language : - CVE-2006-5465: Various buffer overflows in htmlentities/htmlspecialchars internal routines could be used to crash the PHP interpreter or potentially execute code, depending on the PHP application used. - A missing...

CVE-2004-2259

vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...

CVE-2004-2259

Vulnerability CVE-2004-2259 affects vsftpd before 1.2.2. Under heavy load, a SIGCHLD signal during malloc/free (non-reentrant) can cause the FTP daemon to crash, producing a denial of service. Multiple connected sources confirm a signal-handling bug where unsafe operations in signal handlers coul...

CVE-2004-2259

vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...