13 matches found
EUVD-2012-0896
Malware in sbrugna...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssh (SUSE-SU-2025:01638-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01638-1 advisory. This update for openssh fixes the following issue: Security fixes: - CVE-2025-32728: Fixed logic error i...
SUSE CVE-2012-1174
The rmrfchildren function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."...
systemd - Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit
systemd - Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit As documented at , for any action, a polkit policy can specify separate levels of required authentication based on whether a client is: - in an active session on a local console - in an inactive session on...
systemd - Lack of Seat Verification in PAM Module Permits Spoofing Active Session to polkit
As documented at , for any action, a polkit policy can specify separate levels of required authentication based on whether a client is: - in an active session on a local console - in an inactive session on a local console - or neither This is expressed in the policy using the elements "allowany",...
systemd Seat Verification Active Session Spoofing
systemd: lack of seat verification in PAM module permits spoofing active session to polkit Related CVE Numbers: CVE-2019-3842. I am sending this bug report to Ubuntu as requested by systemd at . As documented at , for any action, a polkit policy can specify separate levels of required...
openSUSE Security Update : systemd (openSUSE-SU-2012:0383-1)
local attackers could delete arbitrary system files by exploiting a race condition in systemd-logind %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-166. The text description of...
DEBIAN-CVE-2012-0871
The sessionlinkx11socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/...
CVE-2012-0871
The sessionlinkx11socket function in login/logind-session.c in systemd-logind in systemd, possibly 37 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on the X11 user directory in /run/user/...
DEBIAN-CVE-2012-1174
The rmrfchildren function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."...
CVE-2012-1174
The rmrfchildren function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."...
Session fixation
The rmrfchildren function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."...
CVE-2012-1174
The rmrfchildren function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session."...