Lucene search
K
CloudlinuxRecent

524 matches found

CloudLinux
CloudLinux
•added 2021/09/28 2:25 p.m.•52 views

Fix of CVE: CVE-2020-35452

CVE-2020-35452: fix stack overflow in modauthdigest due to crafted digest nonce...

6.8CVSS2.8AI score0.53191EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/23 12:55 p.m.•313 views

Fix of CVE: CVE-2018-20852, CVE-2020-8492, CVE-2020-26116, CVE-2020-27619

Add Oracle Linux distribution in platform.py - CVE-2018-20852: Prefix dot in domain for proper subdomain validation - CVE-2020-8492: Python allows an HTTP server to conduct Regular Expression Denial of Service ReDoS attacks against a client - CVE-2020-26116: http.client allows CRLF injection if...

7.5CVSS2.6AI score0.08314EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/09/23 12:14 p.m.•78 views

Fix of CVE: CVE-2021-3487

CVE-2021-3487: excessive debug section size can cause excessive memory consumption in bfd's dwarf2.c readsection...

7.1CVSS2.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/22 4:31 p.m.•43 views

Fix of CVE: CVE-2020-10543

CVE-2020-10543: fix signed integer overflow leading to heap buffer overrun...

8.2CVSS2.7AI score0.11334EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/22 4:30 p.m.•49 views

Fix of CVE: CVE-2020-10878

CVE-2020-10878: fix integer overflow leading to RCE...

8.6CVSS3.1AI score0.04879EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:12 p.m.•45 views

Fix of CVE: CVE-2020-24513, CVE-2020-24489, CVE-2020-24512, CVE-2020-24511

Do not use "grep -q" in a pipe in checkcaveats. - Update Intel CPU microcode to microcode-20210608 release: - Fixes in releasenote.md file. - Update Intel CPU microcode to microcode-20210525 release, addresses CVE-2020-24489, CVE-2020-24511, CVE-2020-24512, and CVE-2020-24513 1962659, 1962709,...

8.8CVSS1AI score0.00472EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:11 p.m.•79 views

Fix of CVE: CVE-2018-0739, CVE-2018-0737, CVE-2021-3712, CVE-2018-0732

fix CVE-2021-3712 - handling ASN.1 string as NULL terminated leads to read buffer overrun - Port patches from oracle6els branch, original changelog entry: - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737 - Merge upstream patch to fix CVE-2018-0739 -...

7.5CVSS2.3AI score0.50445EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:11 p.m.•85 views

Fix of CVE: CVE-2021-38160, CVE-2021-3573, CVE-2021-38205, CVE-2021-3178, CVE-2021-20265, CVE-2021-3612, CVE-2021-32399, CVE-2021-37159, CVE-2014-4508, CVE-2021-28972, CVE-2021-34693, CVE-2021-20292

ELSCVE-666: CVE-2021-34693: can: bcm: fix infoleak in struct bcmmsghead - ELSCVE-705: CVE-2021-38160: virtioconsole: Assure used length from device is limited - ELSCVE-769: CVE-2014-4508: x8632, entry: Do syscall exit work on badsys CVE-2014-4508 - ELSCVE-844: CVE-2021-3573: Bluetooth: use...

7.8CVSS7.4AI score0.02417EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/09/21 10:11 p.m.•76 views

Fix of CVE: CVE-2021-34693, CVE-2021-20292, CVE-2021-28972, CVE-2021-20265, CVE-2021-32399, CVE-2014-4508, CVE-2021-3612, CVE-2021-3178, CVE-2021-37159, CVE-2021-38205, CVE-2021-3573, CVE-2021-38160

ELSCVE-666: CVE-2021-34693: can: bcm: fix infoleak in struct bcmmsghead - ELSCVE-705: CVE-2021-38160: virtioconsole: Assure used length from device is limited - ELSCVE-769: CVE-2014-4508: x8632, entry: Do syscall exit work on badsys CVE-2014-4508 - ELSCVE-844: CVE-2021-3573: Bluetooth: use...

7.8CVSS7.4AI score0.02417EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/09/21 10:10 p.m.•43 views

Fix of CVE: CVE-2021-22924

fix connection reuse checks for issuer cert and case sensitivity CVE-2021-22924...

4.3CVSS1.2AI score0.0627EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/09/21 10:10 p.m.•67 views

Fix of CVE: CVE-2020-8517, CVE-2021-28651, CVE-2020-15049, CVE-2020-8449, CVE-2020-8450, CVE-2020-24606, CVE-2020-25097, CVE-2020-11945, CVE-2020-14058

CVE-2020-15049: fix incorrect validation of Content-Length field leading to Http smuggling and Poisoning attack - CVE-2020-14058: fix handling of unknown SSL errors which resulted in denial of service - CVE-2020-25097: fix improper input validation allowing HTTP smuggling from trusted client -...

9.9CVSS1.9AI score0.7179EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/09/21 10:9 p.m.•80 views

Fix of CVE: CVE-2021-2388

Fix CVE-2021-2388 OpenJDK: Incorrect comparison during range check elimination...

7.5CVSS2.3AI score0.04008EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:7 p.m.•16 views

Update of nscd, glibc-headers, glibc, glibc-utils, glibc-static, glibc-static, glibc-devel, glibc-devel, glibc, glibc-common

More precise DNS name checks accepting dash-.example.com, among other things...

2AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:6 p.m.•58 views

Fix of CVE: CVE-2021-33909

ELS-130: netfilter: xtables: add missing tables zeroing - CLKRN-800: CVE-2021-33909: seqfile: disallow extremely large seq buffer allocation...

7.8CVSS2.8AI score0.09729EPSS
Exploits6References1
CloudLinux
CloudLinux
•added 2021/09/21 10:6 p.m.•66 views

Fix of CVE: CVE-2021-33909

ELS-130: netfilter: xtables: add missing tables zeroing - CLKRN-800: CVE-2021-33909: seqfile: disallow extremely large seq buffer allocation...

7.8CVSS2.8AI score0.09729EPSS
Exploits6References1
CloudLinux
CloudLinux
•added 2021/09/21 10:5 p.m.•68 views

Fix of CVE: CVE-2021-22925

telnet stack contents disclosure again CVE-2021-22925...

5.3CVSS1.4AI score0.04929EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/09/21 10:5 p.m.•60 views

Fix of CVE: CVE-2021-22555

ELS-130: CVE-2021-22555: netfilter: xtables: fix compat match/target pad out-of-bound write...

8.3CVSS1.6AI score0.78684EPSS
Exploits21References1
CloudLinux
CloudLinux
•added 2021/09/21 10:4 p.m.•119 views

Fix of CVE: CVE-2021-22555

ELS-130: CVE-2021-22555: netfilter: xtables: fix compat match/target pad out-of-bound write...

8.3CVSS1.6AI score0.78684EPSS
Exploits21References1
CloudLinux
CloudLinux
•added 2021/09/21 10:4 p.m.•40 views

Fix of CVE: CVE-2021-22898

check sscanf for correct number of matches CVE-2021-22898...

3.1CVSS1.7AI score0.04385EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/09/21 10:3 p.m.•60 views

Fix of CVE: CVE-2020-29661, CVE-2019-19532, CVE-2020-25656, CVE-2020-25211

CKSIX-277: CVE-2020-29661: tty: Fix -pgrp locking in tiocspgrp - CKSIX-277: CVE-2020-25656: vt: keyboard, extend funcbuflock to readers - CKSIX-277: CVE-2020-25656: tty/vt: fix write/write race in ioctlKDSKBSENT handler - CKSIX-277: CVE-2020-25656: vt: keyboard, simplify vtkdgkbsent - CKSIX-277:...

7.8CVSS1.7AI score0.01129EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2021/09/21 10:3 p.m.•47 views

Fix of CVE: CVE-2020-25211, CVE-2020-25656, CVE-2019-19532, CVE-2020-29661

CKSIX-277: CVE-2020-29661: tty: Fix -pgrp locking in tiocspgrp - CKSIX-277: CVE-2020-25656: vt: keyboard, extend funcbuflock to readers - CKSIX-277: CVE-2020-25656: tty/vt: fix write/write race in ioctlKDSKBSENT handler - CKSIX-277: CVE-2020-25656: vt: keyboard, simplify vtkdgkbsent - CKSIX-277:...

7.8CVSS1.7AI score0.01129EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2021/09/21 10:3 p.m.•46 views

Fix of CVE: CVE-2021-23840

Fixed integer overflow in CipherUpdateCVE-2021-23840...

7.5CVSS2.9AI score0.50732EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:2 p.m.•142 views

Fix of CVE: CVE-2021-23017

Update fix for CVE-2021-23017 accoding nginx.org recomendations...

7.7CVSS1.9AI score0.53461EPSS
Exploits10References1
CloudLinux
CloudLinux
•added 2021/09/21 10:2 p.m.•91 views

Fix of CVE: CVE-2021-23017

Fixed CVE-2021-23017 : Off-by-one in ngxresolvercopy when - labels are followed by a pointer to a root domain name...

7.7CVSS2.3AI score0.53461EPSS
Exploits10References1
CloudLinux
CloudLinux
•added 2021/09/21 10:1 p.m.•118 views

Fix of CVE: CVE-2021-25215, CVE-2021-25214, CVE-2021-25216

A broken inbound incremental zone update IXFR can cause named to terminate unexpectedly CVE-2021-25214 - An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself CVE-2021-25215 - A second vulnerability in BIND's GSSAPI security...

9.8CVSS3.7AI score0.82367EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/21 10:1 p.m.•55 views

Fix of CVE: CVE-2021-27364, CVE-2021-27363, CVE-2021-27365

CVE-2021-27365: scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE - CVE-2021-27365: scsi: iscsi: Verify lengths on passthrough PDUs - CVE-2021-27363: CVE-2021-27364: scsi: iscsi: Restrict sessions and handles to admin capabilities - sysfs: Add sysfsemit and sysfsemitat to format sysfs...

7.8CVSS1.2AI score0.02079EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/09/21 10:0 p.m.•43 views

Fix of CVE: CVE-2020-8625

Fix buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation CVE-2020-8625...

8.1CVSS4.3AI score0.64161EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/13 1:26 p.m.•24 views

Update of microcode_ctl

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/13 12:54 p.m.•20 views

Update of openssl-static, openssl, openssl-devel, openssl-perl, openssl, openssl-devel

...

0.8AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/09 4:51 p.m.•23 views

Update of kernel, kernel-debug-devel, kernel-devel, kernel-debug, kernel-debug-devel, python-perf, perf, kernel-headers

...

2.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/09 4:50 p.m.•18 views

Update of kernel-abi-whitelists, kernel-firmware, kernel-doc

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/09 12:56 p.m.•46 views

Fix of CVE: CVE-2021-27135

CVE-2021-27135: fix crash when processing combining characters...

7.5CVSS3AI score0.07541EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/09/01 4:24 p.m.•40 views

Update of libcurl-devel, libcurl-devel, libcurl, curl, libcurl

...

1.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/08/26 3:2 p.m.•30 views

Update of squid34

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/08/25 2:44 p.m.•43 views

Fix of CVE: CVE-2020-14058, CVE-2020-15049

CVE-2020-14058: fix handling of unknown SSL errors which resulted in denial of service - CVE-2020-15049: fix incorrect validation of Content-Length field leading to Http smuggling and Poisoning attack...

9.9CVSS2.3AI score0.05706EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/08/19 5:45 p.m.•34 views

Update of java-1.8.0-openjdk-devel-debug, java-1.8.0-openjdk-src, java-1.8.0-openjdk-headless, java-1.8.0-openjdk, java-1.8.0-openjdk-headless-debug, java-1.8.0-openjdk-demo, java-1.8.0-openjdk-javadoc-debug, java-1.8.0-openjdk-src-debug, java-1.8.0-openjdk-devel, java-1.8.0-openjdk-debug, java-1.8.0-openjdk-demo-debug, java-1.8.0-openjdk-javadoc

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/08/19 5:44 p.m.•96 views

Fix of CVE: CVE-2021-33574, CVE-2021-35942, CVE-2021-38604

Adopt pthreadattrcopy functionality, test case is included - CVE-2021-33574: avoid use-after-free vulnerability - CVE-2021-35942: avoid out-of-bounds read via signed integer overflow in array index - CVE-2021-38604: considered. No NULL pointer dereference is possible...

9.8CVSS4.4AI score0.03045EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/08/12 3:42 p.m.•83 views

Fix of CVE: CVE-2020-8450, CVE-2020-8517, CVE-2020-8449

CVE-2020-8449: fix improper HTTP request validation allowing access to resources which are prohibited by security filters - CVE-2020-8450: fix incorrect buffer managment leading to buffer overflow - CVE-2020-8517: fix incorrect input validation allowing writing outside of buffer and leading to...

7.5CVSS3AI score0.7179EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/08/02 5:33 p.m.•20 views

Update of perl-Pod-Simple, perl-IO-Compress-Bzip2, perl-Log-Message, perl-CPANPLUS, perl-Parse-CPAN-Meta, perl-Archive-Tar, perl-Locale-Maketext-Simple, perl-Compress-Raw-Zlib, perl-ExtUtils-MakeMaker, perl-version, perl-Params-Check, perl-Module-CoreList, perl-parent, perl-Log-Message-Simple, perl-IO-Compress-Base, perl-Archive-Extract, perl-Test-Harness, perl-Module-Load, perl-Compress-Zlib, perl-Module-Pluggable, perl-Pod-Escapes, perl-Module-Build, perl-Module-Loaded, perl-Test-Simple, perl-Term-UI, perl-Package-Constants, perl-Object-Accessor, perl-Digest-SHA, perl-ExtUtils-ParseXS, perl-File-Fetch, perl-Time-HiRes, perl-Compress-Raw-Bzip2, perl-Time-Piece, perl-CGI, perl-ExtUtils-CBuilder, perl-IO-Zlib, perl-Module-Load-Conditional, perl-IO-Compress-Zlib, perl-ExtUtils-Embed, perl-IPC-Cmd, perl-CPAN

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/29 6:4 p.m.•56 views

Update of nscd, glibc-headers, glibc, glibc-utils, glibc-static, glibc-static, glibc-devel, glibc-devel, glibc, glibc-common

...

1.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/29 6:3 p.m.•60 views

Update of perl-Pod-Simple, perl-Log-Message-Simple, perl-Object-Accessor, perl-IPC-Cmd, perl-ExtUtils-MakeMaker, perl-Compress-Raw-Zlib, perl-CPAN, perl-CGI, perl-Digest-SHA, perl-Module-Loaded, perl-parent, perl-Module-CoreList, perl-Compress-Raw-Bzip2, perl-File-Fetch, perl-version, perl-ExtUtils-Embed, perl-Locale-Maketext-Simple, perl-Time-HiRes, perl-Module-Load-Conditional, perl-IO-Compress-Bzip2, perl-ExtUtils-CBuilder, perl-Term-UI, perl-Module-Build, perl-Pod-Escapes, perl-IO-Compress-Base, perl-Parse-CPAN-Meta, perl-Time-Piece, perl-Params-Check, perl-Module-Pluggable, perl-Archive-Tar, perl-IO-Compress-Zlib, perl-Package-Constants, perl-Test-Simple, perl-Test-Harness, perl-IO-Zlib, perl-ExtUtils-ParseXS, perl-Archive-Extract, perl-CPANPLUS, perl-Log-Message, perl-Module-Load, perl-Compress-Zlib

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/23 8:39 p.m.•65 views

Update of kernel-devel, kernel-debug, kernel-debug-devel, kernel-headers, perf, kernel, kernel-debug-devel, python-perf

...

2.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/23 8:38 p.m.•66 views

Update of kernel-doc, kernel-firmware, kernel-abi-whitelists

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/21 2:55 p.m.•49 views

Update of libcurl, curl, libcurl-devel, libcurl-devel, libcurl

...

1.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/21 2:34 p.m.•44 views

Update of kernel-doc, kernel-abi-whitelists, kernel-firmware

...

0.6AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/21 2:33 p.m.•50 views

Update of python-perf, kernel-debug, kernel-debug-devel, kernel-headers, kernel-debug-devel, kernel, perf, kernel-devel

...

2.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/07/20 9:58 a.m.•65 views

Fix of CVE: CVE-2021-28651

CVE-2021-28651: fix memory leak leading to denial of service...

5CVSS2.5AI score0.0745EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/07/07 9:30 a.m.•65 views

Fix of CVE: CVE-2021-23240

sudo-1.8.6p3-CVE-2021-23240-2.patch: fixed issue with credentials management in sudoedit - sudo-1.8.6p3-CVE-2021-23240-3.patch: fixed issue with origin file removal in sesh...

7.8CVSS2.3AI score0.01066EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/06/29 5:3 p.m.•43 views

Update of libcurl, libcurl-devel, libcurl-devel, curl, libcurl

...

1.1AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/06/22 2:34 p.m.•61 views

Fix of CVE: CVE-2021-3504

Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950500...

5.8CVSS1.4AI score0.01916EPSS
Exploits0References1
Total number of security vulnerabilities524