[SECURITY] Fedora 33 Update: gitit-0.13.0.0-4.fc33

Gitit is a wiki backed by a git, darcs, or mercurial filestore. Pages and uploaded files can be modified either directly via the VCS's command-line t ools or through the wiki's web interface. Pandoc is used for markup processing, so pages may be written in extended markdown, reStructuredText,...

Fedora: Security Advisory for gitit (FEDORA-2020-c39d7a562c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : spamassassin (EulerOS-SA-2020-2118)

According to the version of the spamassassin package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Apache SpamAssassin 3.4.2 fixes a local user code injection in the meta rule syntax.CVE-2018-11781 Note that Tenable Network Security has...

Debian DLA-2382-1 : curl security update

An issue has been found in curl, a command line tool for transferring data with URL syntax. In rare circumstances, when using the multi API of curl in combination with CURLOPTCONNECTONLY, the wrong connection might be used when transfering data later. For Debian 9 stretch, this problem has been...

[SECURITY] [DLA 2382-1] curl security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2382-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz September 26, 2020 https://wiki.debian.org/LTS -...

The vulnerability of the Intel Graphics Driver lies in the lack of commas in the syntax of elements or search paths, which allows an attacker to trigger a service failure.

The vulnerability of the Intel Graphics Driver lies in the lack of commas in the syntax of elements or search paths. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the syntax analyzer in the Cisco NX-OS network operating system allows a hacker to execute arbitrary commands with root privileges.

The vulnerability of the syntax analyzer in Cisco NX-OS exists due to insufficient checking of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary commands with root privileges...

[SECURITY] Fedora 32 Update: lua-5.3.5-8.fc32

Lua is a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Lua is free software. Lua combines simple procedural syntax with powerful data description constructs based on associative arrays and...

[SECURITY] Fedora 32 Update: rubygem-kramdown-2.1.0-3.fc32

kramdown is yet-another-markdown-parser but fast, pure Ruby, using a strict syntax definition and supporting several common extensions...

[SECURITY] Fedora 31 Update: rubygem-kramdown-1.17.0-6.fc31

kramdown is yet-another-markdown-parser but fast, pure Ruby, using a strict syntax definition and supporting several common extensions...

The vulnerability of TeamViewer’s remote control software lies in the lack of commas in the syntax of certain elements or search paths. This allows a hacker to intercept the administrator’s password hash.

The vulnerability of TeamViewer’s remote control software lies in the lack of commas in the syntax of certain elements or search paths. Exploiting this vulnerability allows a malicious actor to intercept the administrator’s password hash...

do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638 but the ! syntax is specific to ed and is unrelated to a shell metacharacter.

...

[SECURITY] Fedora 31 Update: lilypond-2.19.84-3.fc31

LilyPond is an automated music engraving system. It formats music beautifully and automatically, and has a friendly syntax for its input files...

[SECURITY] Fedora 32 Update: lilypond-2.19.84-3.fc32

LilyPond is an automated music engraving system. It formats music beautifully and automatically, and has a friendly syntax for its input files...

CVE-2020-14493

A low-privilege user may use SQL syntax to write arbitrary files to the OpenClinic GA 5.09.02 and 5.89.05b server, which may allow the execution of arbitrary commands...

Command injection

A low-privilege user may use SQL syntax to write arbitrary files to the OpenClinic GA 5.09.02 and 5.89.05b server, which may allow the execution of arbitrary commands...

CVE-2020-14493 OpenClinic GA

A low-privilege user may use SQL syntax to write arbitrary files to the OpenClinic GA 5.09.02 and 5.89.05b server, which may allow the execution of arbitrary commands...

GReAT thoughts: Awesome IDA Pro plugins

The Global Research & Analysis Team here at Kaspersky has a tradition of meeting up once a month and sharing cutting-edge research, interesting techniques and useful tools. We recently took the unprecedented decision to make our internal meetings public for a few months and present them as a seri...

openSUSE: Security Advisory for rust, (openSUSE-SU-2020:0945-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:0945-1 Security update for rust, rust-cbindgen

This update for rust, rust-cbindgen fixes the following issues: rust was updated for use by Firefox 76ESR. - Fixed miscompilations with rustc 1.43 that lead to LTO failures bsc1173202 Update to version 1.43.1 - Updated openssl-src to 1.1.1g for CVE-2020-1967. - Fixed the stabilization of AVX-512...