Lucene search
K
CloudlinuxRecent

524 matches found

CloudLinux
CloudLinux
•added 2023/02/02 9:34 p.m.•42 views

vim: Fix of CVE-2023-0433

CVE-2023-0433: check for not going over the end of the line...

7.8CVSS7.8AI score0.00555EPSS
Exploits1
CloudLinux
CloudLinux
•added 2023/01/30 8:52 p.m.•55 views

httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible HTTP request smuggling...

9CVSS9AI score0.01879EPSS
Exploits0
CloudLinux
CloudLinux
•added 2023/01/27 10:3 a.m.•38 views

vim: Fix of CVE-2023-0049

CVE-2023-0049: fix out-of-bounds read...

7.8CVSS7.7AI score0.00471EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/12/21 8:56 p.m.•25 views

Update of ca-certificates

update to CKBI 2.58 from NSS 3.67 - removed old certificates: - Certificate "Camerfirma Global Chambersign Root" - Certificate "Cybertrust Global Root" - Certificate "Equifax Secure eBusiness CA 1" - Certificate "Equifax Secure Global eBusiness CA" - Certificate "Explicitly Distrusted DigiNotar...

1.1AI score
Exploits0
CloudLinux
CloudLinux
•added 2022/12/19 8:22 p.m.•75 views

openssh: Fix of 2 CVEs

CVE-2019-6109: verify character encoding in progress display to avoid spoofing of scp client output - CVE-2016-10012: updated to fix server-side protocol errors observed during rekeying with compression enabled...

7.8CVSS2.4AI score0.03807EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/12/15 5:44 p.m.•35 views

vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

7.8CVSS8.7AI score0.00373EPSS
Exploits0
CloudLinux
CloudLinux
•added 2022/12/15 5:42 p.m.•47 views

curl: Fix of CVE-2022-32221

CVE-2022-32221: fix issue when POST following PUT confusion...

9.8CVSS9.3AI score0.04325EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/12/14 3:59 p.m.•40 views

vim: Fix of CVE-2022-4292

CVE-2022-4292: bail out if the window no longer exists...

7.8CVSS2.2AI score0.00655EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/12/12 7:49 p.m.•33 views

vim: Fix of 2 CVEs

CVE-2022-4141: check for text locked in CTRL-W gf - CVE-2022-3520: check that the column does not become negative...

9.8CVSS2.6AI score0.01002EPSS
Exploits2
CloudLinux
CloudLinux
•added 2022/12/12 7:47 p.m.•43 views

krb5: Fix of CVE-2022-42898

CVE-2022-42898: Fix integer overflows in PAC parsing - A test-suite was activated...

8.8CVSS5.2AI score0.06419EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/12/08 5:47 p.m.•43 views

libxml2: Fix of 2 CVEs

CVE-2022-40303: fix integer overflows with XMLPARSEHUGE - CVE-2022-40304: fix dict corruption caused by entity reference cycles...

7.8CVSS2.5AI score0.22791EPSS
Exploits2
CloudLinux
CloudLinux
•added 2022/11/23 8:55 p.m.•50 views

vim: Fix of CVE-2022-3352

CVE-2022-3352: disallow deleting the current buffer to avoid using freed memory...

7.8CVSS3AI score0.00492EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/11/23 8:50 p.m.•70 views

python: Fix of CVE-2022-45061

CVE-2022-45061: Fix quadratic time idna decoding - fix tests to be compatible with expat 2.0.1-tuxcare.els...

7.5CVSS2AI score0.02453EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/11/23 8:44 p.m.•52 views

xterm: Fix of CVE-2022-45063

CVE-2022-45063: improve error recovery when setting a bitmap font for the VT100 window - Add NULL pointer checks in xstrcasecmp and xstrncasecmp to help with error recovery for a missing font...

9.8CVSS1.4AI score0.04949EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/11/21 9:36 p.m.•68 views

nginx: Fix of 2 CVEs

CVE-2022-41741: fix memory corruption in the ngxhttpmp4module - CVE-2022-41742: fix memory disclosure in the ngxhttpmp4module...

7.8CVSS2AI score0.01069EPSS
Exploits2
CloudLinux
CloudLinux
•added 2022/11/10 11:0 p.m.•40 views

sqlite: Fix of CVE-2022-35737

CVE-2022-35737: fix a buffer overflow...

7.5CVSS3AI score0.17981EPSS
Exploits2
CloudLinux
CloudLinux
•added 2022/11/10 10:47 p.m.•29 views

perl: Fix of CVE-2020-16156

CVE-2020-16156: recognize CANNOTVERIFY signature verification type...

7.8CVSS1.8AI score0.00791EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/11/03 4:42 p.m.•42 views

expat: Fix of CVE-2022-43680

CVE-2022-43680: Fix overeager DTD destruction...

7.5CVSS8AI score0.0226EPSS
Exploits1
CloudLinux
CloudLinux
•added 2022/10/13 4:56 p.m.•38 views

Fixed CVEs in vim: CVE-2022-3296, CVE-2022-3324

CVE-2022-3296: check CSFTRY can be found - CVE-2022-3324: make sure the window width does not become negative...

7.8CVSS2.3AI score0.00528EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/10/11 3:18 p.m.•39 views

Fixed CVE-2022-41318 in squid34

CVE-2022-41318: Fix buffer-over-read in SSPI and SMB authentication...

8.6CVSS2AI score0.0282EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/10/11 3:16 p.m.•45 views

Fixed CVE-2022-41318 in squid

CVE-2022-41318: Fix buffer-over-read in SSPI and SMB authentication...

8.6CVSS2.2AI score0.0282EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/10/10 6:56 p.m.•51 views

Fixed CVEs in sqlite: CVE-2020-35525, CVE-2020-13435

CVE-2020-13435: add a code that tries to prevent a recurrence of problems - CVE-2020-35525: a potential null pointer dereference was fixed...

7.5CVSS3AI score0.00928EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/09/29 6:36 p.m.•49 views

Fixed CVE-2022-2795 in bind

CVE-2022-2795: fix possible resolver performance degradation when processing large delegations...

5.3CVSS7.9AI score0.01495EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/09/29 6:33 p.m.•43 views

Fixed CVE-2022-3256 in vim

CVE-2022-3256: copy the mark before editing another buffer...

7.8CVSS2.2AI score0.00464EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/09/26 11:53 a.m.•171 views

Fixed CVE-2022-40674 in expat

CVE-2022-40674: Ensure raw tagnames are safe exiting internalEntityParser - fix tests leak - fix xmlparse leak...

8.1CVSS8.5AI score0.01673EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/09/19 12:52 p.m.•45 views

Fixed CVE-2022-28614 in httpd

CVE-2022-28614: fix out-of-bounds read via aprwrite, refactoring...

5.3CVSS1AI score0.04428EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/09/14 4:34 p.m.•49 views

Fixed CVE-2022-28614 in httpd

CVE-2022-28614: fix out-of-bounds read via aprwrite...

5.3CVSS1AI score0.04428EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/09/08 5:32 p.m.•46 views

Fixed CVE-2022-29154 in rsync

CVE-2022-29154: fix arbitrary file write vulnerability via malicious rsync server MITM attack, refactoring - fix test-system components, enable 'daemon' and 'hardlinks' tests...

7.4CVSS5.7AI score0.01659EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/08/25 3:56 p.m.•62 views

Fixed CVE-2022-37434 in rsync

CVE-2022-37434: fix possible buffer overflow when getting a gzip header extra field with inflate...

9.8CVSS3.7AI score0.16004EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/08/25 3:52 p.m.•49 views

Fixed CVEs in vim: CVE-2022-2845, CVE-2022-2849

CVE-2022-2849: fix invalid memory access with for loop over NULL string - CVE-2022-2845: fix reading before the start of the line...

7.8CVSS2.1AI score0.00501EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/08/22 1:56 p.m.•108 views

Fixed 50 CVEs in java-1.7.0-openjdk

Bump to 2.6.28 and OpenJDK 7u351-b01. - Security fixes in 7u351: - CVE-2022-21540: Improve class compilation JDK-8281859 - CVE-2022-21541: Enhance MethodHandle invocations JDK-8281866 - CVE-2022-34169: Improve Xalan supports JDK-8285407 - Security fixes in 7u341: - CVE-2022-21426: Better XPath...

8.3CVSS1AI score0.17673EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/08/17 6:58 p.m.•53 views

Fixed CVE-2022-2581 in vim

CVE-2022-2581: fix illegal memory access when pattern starts with illegal byte...

7.8CVSS2.8AI score0.00485EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/08/17 6:50 p.m.•97 views

Fixed 13 CVEs in expat

CVE-2022-25236: Fix insertion of namespace-separator characters into namespace URIs - CVE-2022-25235: Fix malformed UTF-8 sequences which can lead to arbitrary code execution - CVE-2022-25315: Fix integer overflow in storeRawNames - CVE-2022-22822: Fix integer overflow in addBinding -...

9.8CVSS3AI score0.34174EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2022/08/17 6:47 p.m.•205 views

Fixed CVE-2022-37434 in zlib

CVE-2022-37434: fix possible buffer overflow when getting a gzip header extra field with inflate...

9.8CVSS2.5AI score0.16004EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/08/17 6:45 p.m.•149 views

Fixed CVE-2022-29154 in rsync

CVE-2022-29154: fix arbitrary file write vulnerability via malicious rysnc server MITM attack - Add '%check unset DISPLAY ' section but disable broken 'daemon' and 'hardlinks' tests...

7.4CVSS5.2AI score0.01659EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/08/17 6:41 p.m.•161 views

Fixed CVEs in exim: CVE-2022-37451, CVE-2022-37452

CVE-2022-37452: fix heap-based buffer overflow for the alias list in hostnamelookup - CVE-2022-37451: fix invalid free in pamconverse...

9.8CVSS3.8AI score0.02935EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2022/08/04 6:51 p.m.•68 views

Fixed CVEs in vim: CVE-2022-2345, CVE-2022-2344, CVE-2022-2343, CVE-2022-2522

CVE-2022-2345: fix using freed memory with recursive substitute - CVE-2022-2344: fix reading past end of completion with duplicate match - CVE-2022-2343: fix reading past end of completion with a long line and 'infercase' set - CVE-2022-2522: fix accessing uninitialized memory when completing...

7.8CVSS4.4AI score0.01302EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2022/08/04 6:49 p.m.•67 views

Fixed CVE-2021-21702 in php

CVE-2021-21702: Fix null pointer dereference in Soap Client...

7.5CVSS1.5AI score0.03179EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/08/04 6:46 p.m.•65 views

Fixed CVEs in java-1.8.0-openjdk: CVE-2022-21541, CVE-2022-34169, CVE-2022-21540

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u342-b07. That fixes following CVEs: - CVE-2022-34169: Integer truncation issue in Xalan-J - CVE-2022-21540: Class compilation issue - CVE-2022-21541: Improper restriction of MethodHandle.invokeBasic - Update tzdata requirement to 2022a to match...

7.5CVSS4.9AI score0.17673EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/07/28 2:22 p.m.•51 views

Fixed CVE-2021-22543 in kernel

KVM: do not allow mapping valid but non-reference-counted pages CVE-2021-22543...

8.7CVSS2.6AI score0.0066EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/07/28 2:18 p.m.•65 views

Fixed CVE-2021-22543 in kernel

KVM: do not allow mapping valid but non-reference-counted pages CVE-2021-22543...

8.7CVSS2.6AI score0.0066EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/07/26 4:42 p.m.•122 views

Fixed CVEs in vim: CVE-2022-2289, CVE-2022-2304

CVE-2022-2289: bail out when diff pointer is no longer valid to avoid accessing freed memory with diff put - CVE-2022-2304: limit the word length to avoid out of bound accesing...

7.8CVSS3.3AI score0.01408EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/07/20 7:58 p.m.•47 views

Fixed CVE-2015-20170 in python

CVE-2015-20170: mailcap: findmatch function does not sanitise the second argument allowing to inject shell commands...

2.5AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/07/18 7:7 p.m.•194 views

Fixed 7 CVEs in vim

CVE-2022-2206: adjust cmdlinerow and msgrow to the value of Rows - CVE-2022-2284: stop visual mode when closing a window - CVE-2022-2285: put a NUL after the typeahead - CVE-2022-2286: check the length of the string - CVE-2022-2287: disallow adding a word with control characters or a trailing...

8CVSS4.8AI score0.01363EPSS
Exploits7References1
CloudLinux
CloudLinux
•added 2022/07/18 7:5 p.m.•70 views

Fixed CVE-2022-31625 in php

ELS-189: Fix for Harden PHP - CVE-2022-31625: Fix freeing of uninitialized memory leading to RCE...

8.1CVSS1.5AI score0.03437EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/07/18 7:3 p.m.•167 views

Fixed CVE-2016-10012 in openssh

CVE-2016-10012: re-remove pre-authentication compression and potentially unsecure shared memory manager used by zlib - Move not yet valid timestamps for certs to 2030-2040 range, make sure all tests are passed and add %check unset DISPLAY section...

7.8CVSS3AI score0.01281EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/07/14 4:55 p.m.•82 views

Fixed CVEs in vim: CVE-2022-2183, CVE-2022-2182, CVE-2022-2207, CVE-2022-2210

CVE-2022-2182: when on line zero check the column is valid for line one - CVE-2022-2183: avoid going over the NUL at the end of the line - CVE-2022-2207: check the cursor column is more than zero - CVE-2022-2210: use zero offset when change removes all lines in a diff block...

7.8CVSS3.7AI score0.01473EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2022/07/14 4:53 p.m.•204 views

Fixed CVEs in openssl: CVE-2022-1292, CVE-2022-2068

CVE-2022-1292: crehash: Do not use shell to invoke openssl to prevent command injection - CVE-2022-2068: crehash: Fix file operations to prevent command injection...

10CVSS2.5AI score0.96275EPSS
Exploits6References1
CloudLinux
CloudLinux
•added 2022/07/11 5:47 p.m.•1110 views

Fixed CVEs in openssh-5.3p1: CVE-2016-10708, CVE-2016-10012

CVE-2016-10708: fix crash in packet handling code by moving inbound NEWKEYS handling to kex layer - CVE-2016-10012: abandon the fix due to compression mode issues...

7.8CVSS2AI score0.15716EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/07/11 5:39 p.m.•155 views

Fixed CVE-2018-5741 in bind

CVE-2018-5741: update krb5,ms-self,subdomain descriptions...

6.5CVSS1.1AI score0.03451EPSS
Exploits0References1
Total number of security vulnerabilities524