Lucene search
K

4731 matches found

Positive Technologies
Positive Technologies
added 2022/11/11 12:0 a.m.3 views

PT-2022-6516 · Suse · Opensuse Leap +3

Name of the Vulnerable Software and Affected Versions: SUSE Linux Enterprise Module for SAP Applications 15-SP1 saphanabootstrap-formula versions prior to 0.13.1+git.1667812208.4db963e SUSE Linux Enterprise Server for SAP 12-SP5 saphanabootstrap-formula versions prior to...

7.8CVSS7.5AI score0.00223EPSS
Exploits1References21
OpenVAS
OpenVAS
added 2022/11/11 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2022:3938-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.8AI score0.00271EPSS
Exploits0References4
OSV
OSV
added 2022/11/10 12:42 p.m.6 views

SUSE-SU-2022:3938-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt password backend bsc1204986...

7.1CVSS7.1AI score0.00271EPSS
Exploits0References3
Photon
Photon
added 2022/11/10 12:0 a.m.40 views

Important Photon OS Security Update - PHSA-2022-3.0-0485

Updates of 'pixman', 'strongswan', 'linux-esx', 'linux-secure', 'sudo', 'linux-rt', 'linux-aws', 'linux' packages of Photon OS have been released...

6.7CVSS6.7AI score0.02211EPSS
Exploits0
Photon
Photon
added 2022/11/10 12:0 a.m.48 views

Important Photon OS Security Update - PHSA-2022-4.0-0279

Updates of 'powershell', 'pixman', 'strongswan', 'sudo' packages of Photon OS have been released...

8.8CVSS7.1AI score0.0144EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2022/11/09 8:0 a.m.8 views

Sudo 1.8.0 through 1.9.12 with the crypt() password backend contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer. The impact could vary depending on the system libraries compiler and processor architecture.

...

7.1CVSS6.6AI score0.00271EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.19 views

FreeBSD : sudo -- Potential out-of-bounds write for small passwords (3310014a-5ef9-11ed-812b-206a8a720317)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 3310014a-5ef9-11ed-812b-206a8a720317 advisory. - Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c...

7.1CVSS7.6AI score0.00271EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/11/08 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2022:3886-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.8AI score0.00271EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/11/08 12:0 a.m.15 views

Debian: Security Advisory (DLA-3181-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.5CVSS5.9AI score0.01029EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.17 views

SUSE SLES12 Security Update : sudo (SUSE-SU-2022:3886-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2022:3886-1 advisory. - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt password...

7.1CVSS7.3AI score0.00271EPSS
Exploits0References4
Debian
Debian
added 2022/11/07 3:0 p.m.34 views

[SECURITY] [DLA 3181-1] sudo security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3181-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 07, 2022 https://wiki.debian.org/LTS -...

2.5CVSS6.1AI score0.01029EPSS
Exploits1
OSV
OSV
added 2022/11/07 11:20 a.m.6 views

SUSE-SU-2022:3886-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt password backend bsc1204986...

7.1CVSS7.1AI score0.00271EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2022/11/07 12:0 a.m.46 views

sudo -- Potential out-of-bounds write for small passwords

CVE.org reports: Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to sudo by entering a password of seven...

7.1CVSS6.7AI score0.00271EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/11/07 12:0 a.m.27 views

Debian dla-3181 : sudo - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3181 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3181-1 [email protected] https://www.debian.org/lts/security/...

2.5CVSS6.7AI score0.01029EPSS
Exploits1References4
OSV
OSV
added 2022/11/07 12:0 a.m.29 views

DLA-3181-1 sudo - security update

Bulletin has no description...

2.5CVSS5.8AI score0.01029EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/11/07 12:0 a.m.12 views

Slackware: Security Advisory (SSA:2022-309-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.2AI score0.00271EPSS
Exploits0References3
Slackware Linux
Slackware Linux
added 2022/11/05 7:28 p.m.36 views

[slackware-security] sudo

New sudo packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/sudo-1.9.12p1-i586-1slack15.0.txz: Upgraded. Fixed a potential out-of-bounds write for passwords smaller than 8...

7.1CVSS0.6AI score0.00271EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.13 views

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current sudo Vulnerability (SSA:2022-309-01)

The version of sudo installed on the remote host is prior to 1.9.12p1. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-309-01 advisory. - Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that...

7.1CVSS7.6AI score0.00271EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/11/03 7:55 p.m.52 views

CVE-2022-43995

Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer...

7.1CVSS3.5AI score0.00271EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2022-2669)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.1593EPSS
Exploits2References2
Rows per page
Query Builder