Lucene search
K

3905 matches found

Debian CVE
Debian CVE
added 2013/10/28 10:0 p.m.39 views

CVE-2013-4393

journald in systemd, when the origin of native messages is set to file, allows local users to cause a denial of service logging service blocking via a crafted file descriptor...

2.1CVSS3.6AI score0.0039EPSS
Exploits0
Debian CVE
Debian CVE
added 2013/10/28 10:0 p.m.297 views

CVE-2013-4392

systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files...

5CVSS4.6AI score0.00472EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2013/10/28 12:0 a.m.3 views

PT-2013-4994 · Systemd +2 · Systemd +2

Name of the Vulnerable Software and Affected Versions: systemd affected versions not specified Description: The issue allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files. Recommendations: At the moment, there is ...

5CVSS7.8AI score0.00472EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2013/10/15 12:0 a.m.26 views

Fedora 18 : zabbix-2.0.8-3.fc18 (2013-18348)

New upstream version 2.0.8 - Patch for CVE-2013-5743 SQL injection vulnerability, ZBX-7091 - Patch for ZBX-6922 Failing host XML import - SQL speed-up patch for graphs ZBX-6804 - Require php-ldap and ZBX-6992 Service SQL - Create and configure a spooling directory for fping files outside of /tmp...

9.8CVSS8.5AI score0.79988EPSS
Exploits9References6
Tenable Nessus
Tenable Nessus
added 2013/10/15 12:0 a.m.24 views

Fedora 18 : xen-4.2.3-3.fc18 (2013-18373)

Two security fixes CVE-2013-4355 CVE-2013-4361, Set 'Domain-0' label in xenstored.service systemd file Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

2.1CVSS7.7AI score0.00395EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/10/15 12:0 a.m.29 views

Fedora 19 : xen-4.2.3-3.fc19 (2013-18378)

Two security fixes CVE-2013-4355 CVE-2013-4361, Set 'Domain-0' label in xenstored.service systemd file Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

2.1CVSS7.7AI score0.00395EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/10/13 12:0 a.m.30 views

Debian DSA-2777-1 : systemd - several vulnerabilities

Multiple security issues in systemd have been discovered by Sebastian Krahmer and Florian Weimer: Insecure interaction with DBUS could lead to the bypass of Policykit restrictions and privilege escalation or denial of service through an integer overflow in journald and missing input sanitising in...

7.5CVSS5.4AI score0.05341EPSS
Exploits1References6
securityvulns
securityvulns
added 2013/10/12 12:0 a.m.48 views

systemd security vulnerabilities

Integer overflow, protection bypass, privilege escalation...

7.5CVSS4.3AI score0.05341EPSS
Exploits1References1
securityvulns
securityvulns
added 2013/10/12 12:0 a.m.74 views

[SECURITY] [DSA 2777-1] systemd security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2777-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 11, 2013 http://www.debian.org/security/faq -...

7.5CVSS0.05341EPSS
Exploits1
Debian
Debian
added 2013/10/11 2:33 p.m.42 views

[SECURITY] [DSA 2777-1] systemd security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2777-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 11, 2013 http://www.debian.org/security/faq -...

7.5CVSS6.9AI score0.05341EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/10/11 12:0 a.m.42 views

Debian Security Advisory DSA 2777-1 (systemd - several vulnerabilities)

Multiple security issues in systemd have been discovered by Sebastian Krahmer and Florian Weimer: Insecure interaction with DBUS could lead to the bypass of Policykit restrictions and privilege escalation or denial of service through an integer overflow in journald and missing input sanitising in...

7.5CVSS0.7AI score0.05341EPSS
Exploits1References1
OSV
OSV
added 2013/10/11 12:0 a.m.11 views

DSA-2777-1 systemd - several

Bulletin has no description...

7.5CVSS6.2AI score0.05341EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/10/10 12:0 a.m.25 views

Debian: Security Advisory (DSA-2777-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.05341EPSS
Exploits1References3
OSV
OSV
added 2013/10/05 5:53 p.m.9 views

MGASA-2013-0293 Updated polkit package and the packages that call polkit fixes security vulnerability

A race condition was found in the way the PolicyKit pkcheck utility checked process authorization when the process was specified by its process ID via the --process option. A local user could use this flaw to bypass intended PolicyKit authorizations and escalate their privileges CVE-2013-4288...

7.2CVSS6.3AI score0.00419EPSS
Exploits0References7
Mageia
Mageia
added 2013/10/05 5:53 p.m.49 views

Updated polkit package and the packages that call polkit fixes security vulnerability

A race condition was found in the way the PolicyKit pkcheck utility checked process authorization when the process was specified by its process ID via the --process option. A local user could use this flaw to bypass intended PolicyKit authorizations and escalate their privileges CVE-2013-4288...

7.2CVSS0.7AI score0.00419EPSS
Exploits0References6
NVD
NVD
added 2013/10/03 9:55 p.m.27 views

CVE-2013-4327

systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1 setuid process or 2 pkexec process, a related issue to CVE-2013-4288...

6.9CVSS6.2AI score0.00303EPSS
Exploits0References4
OSV
OSV
added 2013/10/03 9:55 p.m.1 views

DEBIAN-CVE-2013-4327

systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1 setuid process or 2 pkexec process, a related issue to CVE-2013-4288...

6.9CVSS6.6AI score0.00303EPSS
Exploits0References1
OSV
OSV
added 2013/10/03 9:55 p.m.9 views

CVE-2013-4327

systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1 setuid process or 2 pkexec process, a related issue to CVE-2013-4288...

6.1AI score
Exploits0References7
Prion
Prion
added 2013/10/03 9:55 p.m.30 views

Race condition

systemd does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1 setuid process or 2 pkexec process, a related issue to CVE-2013-4288...

6.9CVSS6.3AI score0.00342EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2013/10/03 9:0 p.m.114 views

CVE-2013-4327

CVE-2013-4327 describes a Polkit race condition used when systemd communicates with a polkit authority via D-Bus, enabling local users to bypass access restrictions using a PolkitUnixProcess PolkitSubject race with (1) setuid processes or (2) pkexec. Connected advisories (GLSA-201406-27, related ...

6.9CVSS6.2AI score0.00303EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder