130 matches found
DEBIAN-CVE-2014-3127
dpkg 1.15.9 on Debian squeeze introduces support for the "C-style encoded filenames" feature without recognizing that the squeeze patch program lacks this feature, which triggers an interaction error that allows remote attackers to conduct directory traversal attacks and modify files outside of t...
Ubuntu: Security Advisory (USN-2183-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : dpkg vulnerability (USN-2183-2)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2183-2 advisory. USN-2183-1 fixed a vulnerability in dpkg. Javier Serrano Polo discovered that the fix introduced a vulnerability in releases with an older version of the patch...
USN-2183-2 dpkg vulnerability
USN-2183-1 fixed a vulnerability in dpkg. Javier Serrano Polo discovered that the fix introduced a vulnerability in releases with an older version of the patch utility. This update fixes the problem. Original advisory details: Jakub Wilk discovered that dpkg incorrectly certain paths and symlinks...
DEBIAN-CVE-2014-0471
Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...
USN-2183-1 dpkg vulnerability
Jakub Wilk discovered that dpkg incorrectly certain paths and symlinks when unpacking source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of...
UBUNTU-CVE-2014-0471
Directory traversal vulnerability in the unpacking functionality in dpkg before 1.15.9, 1.16.x before 1.16.13, and 1.17.x before 1.17.8 allows remote attackers to write arbitrary files via a crafted source package, related to "C-style filename quoting."...
Fedora Update for gnome-python2-extras FEDORA-2012-6610
Check for the Version of gnome-python2-extras OpenVAS Vulnerability Test Fedora Update for gnome-python2-extras FEDORA-2012-6610 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Debian DSA-2409-1 : devscripts - several vulnerabilities
Several vulnerabilities have been discovered in debdiff, a script used to compare two Debian packages, which is part of the devscripts package. The following Common Vulnerabilities and Exposures project ids have been assigned to identify them : - CVE-2012-0210 : Paul Wise discovered that due to...
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : devscripts vulnerabilities (USN-1366-1)
Paul Wise discovered that debdiff did not properly sanitize its input when processing .dsc and .changes files. If debdiff processed a crafted file, an attacker could execute arbitrary code with the privileges of the user invoking the program. CVE-2012-0210 Raphael Geissert discovered that debdiff...
Horde Groupware Source Packages Backdoor Vulnerability - Active Check
Horde Groupware is prone to a backdoor vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:horde:hordegroupware";...
Fedora Update for gnome-python2-extras FEDORA-2012-1147
Check for the Version of gnome-python2-extras OpenVAS Vulnerability Test Fedora Update for gnome-python2-extras FEDORA-2012-1147 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
[SECURITY] Fedora 15 Update: gnome-python2-extras-2.25.3-35.fc15.5
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 15 Update: gnome-python2-extras-2.25.3-35.fc15.4
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 14 Update: gnome-python2-extras-2.25.3-34.fc14.1
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 15 Update: gnome-python2-extras-2.25.3-34.fc15
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 14 Update: gnome-python2-extras-2.25.3-32.fc14.1
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 14 Update: gnome-python2-extras-2.25.3-29.fc14.1
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 13 Update: gnome-python2-extras-2.25.3-28.fc13
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...
[SECURITY] Fedora 13 Update: gnome-python2-extras-2.25.3-26.fc13
The gnome-python-extra package contains the source packages for additional Python bindings for GNOME. It should be used together with gnome-python...