EUVD-2020-12713

Malware in sbrugna...

CVE-2020-1887

Incorrect validation of the TLS SNI hostname in osquery versions after 2.9.0 and before 4.2.0 could allow an attacker to MITM osquery traffic in the absence of a configured root chain of trust...

SUSE-SU-2021:2771-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: DoS or information disclosure in some configurations bsc1188875 - Change PASSWORDLEN from 64 to 256 bsc1188034 - Set the hostname for SNI when using TLS bsc1182807 - Allow --syslog option in daemon mode. bsc1033081 - Set the...

Facebook osquery trust management issue vulnerability

Facebook osquery is a SQL-based, open-source operating system detection and monitoring framework from Facebook Inc. in the United States. A trust management issue vulnerability exists in Facebook osquery versions 2.9.0 through 4.2.0 excluding versions 2.9.0 and 4.2.0, which stems from the program...

gnutls security, bug fix, and enhancement update

3.3.29-8.0.1 - Include ECDSA KAT into selftests for FIPS140-2 compliance Orabug 27484156 3.3.29-8 - Backported --sni-hostname option which allows overriding the hostname advertised to the peer 1444792 - Improved counter-measures in TLS CBC record padding for lucky13 attack CVE-2018-10844, 1589704...