Lucene search
K
CloudlinuxRecent

524 matches found

CloudLinux
CloudLinux
•added 2022/07/11 5:36 p.m.•108 views

Fixed CVE-2020-12723 in perl-5.10.1

CVE-2020-12723: fix a buffer overflow caused by a crafted regular expression because of recursive Sstudychunk calls...

7.5CVSS4.8AI score0.05971EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/07/07 8:29 a.m.•92 views

Fixed CVEs in vim: CVE-2022-2124, CVE-2022-2129, CVE-2022-2125, CVE-2022-2126, CVE-2022-1720

CVE-2022-2125: add checking for NUL to avoid running over the end of line - CVE-2022-1720: do not include the NUL in the length to avoid reading past end of line with "gf" in Visual block mode - CVE-2022-2124: add checking for NUL to avoid running over the end of line - CVE-2022-2129: disallow...

7.8CVSS3.6AI score0.02122EPSS
Exploits5References1
CloudLinux
CloudLinux
•added 2022/07/04 7:13 p.m.•119 views

Fixed CVE-2016-10009 in openssh-5.3p1

CVE-2016-10009: add whitelist of paths which may ssh-agent load from in order to prevent execution of arbitrary local pkcs11...

7.5CVSS2.1AI score0.37431EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2022/07/04 7:12 p.m.•50 views

Fixed CVE-2022-27782 in curl

CVE-2022-27782: add missing checks of ssl and ssh options during matching a connection for reuse...

7.5CVSS1.4AI score0.02596EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/06/28 8:14 p.m.•555 views

Fixed CVEs in httpd: CVE-2022-31813, CVE-2022-28615, CVE-2022-26377

CVE-2022-26377: modproxyajp: fix HTTP request smuggling - CVE-2022-28615: fix possible out-of-bounds read in apstrcmpmatch - CVE-2022-31813: modproxy: preserve original request headers so an upstream knows what the original request hostname was, and so send X-Forwarded- headers correctly...

9.8CVSS1.9AI score0.19008EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/06/22 12:41 p.m.•46 views

Fixed CVE-2022-2042 in vim

CVE-2022-2042: fix using uninitialized value and freed memory in spell command...

7.8CVSS2.6AI score0.01411EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/06/21 8:23 p.m.•149 views

Fixed CVE-2019-17571 in log4j

CVE-2019-17571: Fix the deserialization of untrusted data in SocketServer that allows an attacker to remotely execute arbitrary code...

9.8CVSS6AI score0.6906EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2022/06/15 7:21 p.m.•66 views

Fixed CVEs in vim: CVE-2022-1927, CVE-2022-1897

CVE-2022-1897: fix substitution which overwrites an allocated buffer - CVE-2022-1927: fix invalid cursor position after '0;' range...

7.8CVSS3.6AI score0.01601EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/06/09 7:56 p.m.•81 views

Fixed CVEs in vim: CVE-2022-0319, CVE-2022-1886, CVE-2022-1898, CVE-2022-1851

CVE-2022-0319: correct end of Visual area when entering another buffer - CVE-2022-1851: fix invalid cursor position after text formatting - CVE-2022-1886: fix access before start of text with a put command - CVE-2022-1898: fix using freed memory with 'd'...

7.8CVSS4AI score0.0157EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2022/06/08 7:49 p.m.•95 views

Fixed CVE-2022-24903 in rsyslog

CVE-2022-24903: fix heap-based overflow in TCP syslog server...

8.1CVSS4.1AI score0.03821EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/06/06 3:31 p.m.•65 views

Fixed CVEs in vim: CVE-2022-1785, CVE-2022-1796

CVE-2022-1785: fix out-of-bounds write by disallowing changing window in substitute expression - CVE-2022-1796: fix use after free by making a copy of a line...

7.8CVSS2.1AI score0.0111EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/06/02 12:59 p.m.•432 views

Fixed CVEs in java-1.8.0-openjdk: CVE-2022-21434, CVE-2022-21443, CVE-2022-21476, CVE-2022-21426, CVE-2022-21496

Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u332-b09. That fixes following CVEs: - CVE-2022-21476: Defective secure validation in Apache Santuario - CVE-2022-21496: URI parsing inconsistencies - CVE-2022-21434: Improper object-to-string conversion in AnnotationInvocationHandler -...

7.5CVSS5AI score0.04046EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/06/01 6:13 p.m.•28 views

Fixed CVE-2021-33582 in cyrus-imapd

CVE-2021-33582: Fix a bad string hashing algorithm which could lead to collisions and cause a CPU denial of service...

7.5CVSS1.7AI score0.0307EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/05/30 5:53 p.m.•53 views

Fixed CVEs in vim: CVE-2022-1735, CVE-2022-1733

CVE-2022-1733: fix reading past end of the line when C-indenting - CVE-2022-1735: fix invalid memory access caused by changing text in Visual mode...

7.8CVSS1.9AI score0.01266EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/05/20 12:32 a.m.•99 views

Fixed CVEs in vim: CVE-2022-1620, CVE-2022-1616, CVE-2022-1629, CVE-2022-1621, CVE-2022-1619

CVE-2022-1619: fix going before the command line start with latin1 encoding - CVE-2022-1620: fix NULL pointer dereference when using invalig regexp - CVE-2022-1621: fix to avoid adding invalid bytes with :spellgood - CVE-2022-1629: fix reading past end of line if ended with trailing backslash -...

7.8CVSS3.6AI score0.02645EPSS
Exploits5References1
CloudLinux
CloudLinux
•added 2022/05/20 12:6 a.m.•117 views

Fixed CVE-2022-1271 in gzip

CVE-2022-1271: Fix arbitrary file override with crafted file names...

8.8CVSS9.1AI score0.04271EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/05/19 11:55 p.m.•59 views

Fixed CVE-2018-25032 in rsync

CVE-2018-25032: Fix memory corruption when deflating if the input has many distant matches...

7.5CVSS4.2AI score0.52063EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/05/16 1:3 p.m.•82 views

Fixed CVE-2018-25032 in zlib

CVE-2018-25032: Fix memory corruption when deflating if the input has many distant matches...

7.5CVSS2.3AI score0.52063EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/26 3:23 p.m.•93 views

Fix of CVE: CVE-2021-0920, CVE-2022-0492, CVE-2020-0466, CVE-2021-4155

cgroup-v1: Require capabilities to set releaseagent ELSCVE-3555 CVE-2022-0492 - xfs: map unwritten blocks in XFSIOCALLOC,FREESP just like fallocate ELSCVE-3891 CVE-2021-4155 - afunix: fix garbage collect vs MSGPEEK ELSCVE-3728 CVE-2021-0920 - epoll: Keep a reference on files added to the check...

7.8CVSS1.1AI score0.05528EPSS
Exploits12References1
CloudLinux
CloudLinux
•added 2022/04/26 3:21 p.m.•180 views

Fix of CVE: CVE-2020-0466, CVE-2022-0492, CVE-2021-4155, CVE-2021-0920

cgroup-v1: Require capabilities to set releaseagent ELSCVE-3555 CVE-2022-0492 - xfs: map unwritten blocks in XFSIOCALLOC,FREESP just like fallocate ELSCVE-3891 CVE-2021-4155 - afunix: fix garbage collect vs MSGPEEK ELSCVE-3728 CVE-2021-0920 - epoll: Keep a reference on files added to the check...

7.8CVSS1.1AI score0.05528EPSS
Exploits12References1
CloudLinux
CloudLinux
•added 2022/04/25 6:6 p.m.•72 views

Fix of CVE: CVE-2019-18276

CVE-2019-18276: Fix priviledge dropping when running with effective UID not equal to real UID...

7.8CVSS2.6AI score0.02608EPSS
Exploits5References1
CloudLinux
CloudLinux
•added 2022/04/25 5:48 p.m.•37 views

Fix of CVE: CVE-2019-18276

CVE-2019-18276: Fix priviledge dropping when running with effective UID not equal to real UID...

7.2CVSS2.6AI score0.02608EPSS
Exploits5References1
CloudLinux
CloudLinux
•added 2022/04/21 9:22 p.m.•22 views

Update of kernel, kernel-headers, kernel-debug-devel, kernel-debug, perf, python-perf, kernel-debug-devel, kernel-devel

KB-127: Bump version separete fw build...

3.2AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/21 9:21 p.m.•15 views

Update of kernel-firmware, kernel-abi-whitelists, kernel-doc

KB-127: Bump version separete fw build...

2.4AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/21 9:21 p.m.•64 views

Fix of 13 CVEs

CKSIX-267: USB: hso: Fix OOB memory access in hsoprobe/hsogetconfigdata - CKSIX-267: CVE-2019-14615: drm/i915/gen9: Clear residual context state on context switch - CKSIX-267: CVE-2020-8647, CVE-2020-8649: vgacon: Fix a UAF in vgaconinvertregion - CKSIX-267: CVE-2020-14331: vgacon: Fix for...

7.8CVSS0.7AI score0.13378EPSS
Exploits18References1
CloudLinux
CloudLinux
•added 2022/04/21 9:20 p.m.•17 views

Update of els-define

Add OracleLinux support...

1.5AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/21 9:19 p.m.•26 views

Fix of CVE: CVE-2021-27135

CVE-2021-27135: fix crash when processing combining characters...

9.8CVSS3AI score0.07541EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/21 9:19 p.m.•42 views

Fix of CVE: CVE-2021-28651

CVE-2021-28651: fix memory leak leading to denial of service...

7.5CVSS2.5AI score0.0745EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/21 9:18 p.m.•27 views

Update of php 5.3: Remove mariadb102 patch to eliminate faulty functionality

Remove mariadb102 patch to eliminate faulty functionality...

2.4AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/21 9:15 p.m.•21 views

Update of php 5.3: Fix segfault during graceful Apache restart

ELS-42: Fix segfault during graceful Apache restart...

1.7AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/19 2:4 p.m.•72 views

Fix of CVE: CVE-2022-28390, CVE-2021-3609

can: emsusb: emsusbstartxmit: fix double devkfreeskb in error path ELSCVE-3847 CVE-2022-28390 - can: bcm: delay release of struct bcmop after synchronizercu ELSCVE-1694 CVE-2021-3609...

7.8CVSS1.2AI score0.00431EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/19 2:3 p.m.•81 views

Fix of CVE: CVE-2021-3609, CVE-2022-28390

can: emsusb: emsusbstartxmit: fix double devkfreeskb in error path ELSCVE-3847 CVE-2022-28390 - can: bcm: delay release of struct bcmop after synchronizercu ELSCVE-1694 CVE-2021-3609...

7.8CVSS1.2AI score0.00431EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/19 2:2 p.m.•119 views

Fix of CVE: CVE-2022-28391

CVE-2022-28391: fix possible terminal injection attacks from DNS query results...

8.8CVSS2.2AI score0.03505EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/19 2:0 p.m.•18 views

Update of microcode_ctl

Update Intel CPU microcode to microcode-20220207 release: - Fixes in releasenote.md file...

1.2AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/13 5:2 p.m.•99 views

Fix of CVE: CVE-2022-1154

CVE-2022-1154: fix buffer usage after free...

7.8CVSS8.2AI score0.01462EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/04/11 4:46 p.m.•197 views

Fix of CVE: CVE-2021-3618

CVE-2021-3618: drop the connection after reaching the specified number of invalid protocol commmands...

7.4CVSS2.4AI score0.02037EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/07 11:39 a.m.•80 views

Fix of CVE: CVE-2021-25220

CVE-2021-25220: fix possible cache poisoning from forwarder responses...

6.8CVSS7.4AI score0.0325EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/05 3:3 p.m.•133 views

Fix of CVE: CVE-2022-0547

CVE-2022-0547: Fix authentication bypass via multiple deferred authentication plug-ins...

9.8CVSS3.4AI score0.03519EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/04/05 3:2 p.m.•54 views

Fix of CVE: CVE-2022-0943

CVE-2022-0943: fix heap-based buffer overflow...

8.4CVSS8.2AI score0.00698EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/03/24 4:8 p.m.•60 views

Fix of CVE: CVE-2021-3999

CVE-2021-3999: fix single byte buffer overflow and overflow in getcwd...

7.8CVSS3.3AI score0.0072EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/03/24 3:36 p.m.•121 views

Fix of CVE: CVE-2022-22721, CVE-2022-22720

CVE-2022-22720: simpler connection close logic if discarding the request body fails - CVE-2022-22721: make sure and check that LimitXMLRequestBody fits in system memory...

9.8CVSS1.7AI score0.41861EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/03/22 2:15 p.m.•84 views

Fix of CVE: CVE-2021-3737

CVE-2021-3737: Fix HTTP client infinite line reading DoS after receiving a '100 Continue' HTTP response...

7.5CVSS8.1AI score0.11586EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/03/17 8:51 p.m.•98 views

Fix of CVE: CVE-2022-0778

CVE-2022-0778: Fix possible infinite loop in BNmodsqrt...

7.5CVSS8.2AI score0.70561EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/03/14 11:4 a.m.•63 views

Fix of CVE: CVE-2022-23308

CVE-2022-23308: fix use-after-free of ID and IDREF attributes...

7.5CVSS1.8AI score0.0601EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/03/10 6:8 p.m.•386 views

Update of ca-certificates

remove old certificate - Removing: - Certificate "DST Root CA X3" - Update to CKBI 2.50 from NSS 3.67 - Update to CKBI 2.48 from NSS 3.66 - Removing: - Certificate "Verisign Class 3 Public Primary Certification Authority - G3" - Certificate "GeoTrust Global CA" - Certificate "GeoTrust Universal...

2AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2022/03/10 12:27 p.m.•111 views

Fix of CVE: CVE-2022-0554, CVE-2022-0729, CVE-2022-0685, CVE-2022-0572

CVE-2022-0554: fix ending up with no current buffer - CVE-2022-0572: fix crashing when repeatedly using :retab - CVE-2022-0685: fix crashing when using special multi-byte character - CVE-2022-0729: fix crashing with specific regexp pattern and string...

8.8CVSS1.4AI score0.26583EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2022/03/07 3:12 p.m.•60 views

Fix of CVE: CVE-2022-0391

CVE-2022-0391: Add stripping ASCII newline and tabs from the url by urllib.parse...

7.5CVSS1.1AI score0.08325EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/02/28 3:6 p.m.•144 views

Fix of CVE: CVE-2022-24407

CVE-2022-24407: Fix failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands...

8.8CVSS3.5AI score0.04123EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/02/21 5:56 p.m.•45 views

Fix of CVE: CVE-2022-0413, CVE-2022-0417, CVE-2022-0408, CVE-2022-0443

CVE-2022-0408: fix stack corruption when looking for spell suggestions - CVE-2022-0413: fix using freed memory when substitute with function call - CVE-2022-0417: fix illegal memory access caused by ':retab 0' - CVE-2022-0443: fix using freed memory with ':lopen' and ':bwipe'...

8.4CVSS1.5AI score0.01541EPSS
Exploits4References1
CloudLinux
CloudLinux
•added 2022/02/14 4:21 p.m.•77 views

Fix of CVE: CVE-2022-0351, CVE-2022-0368, CVE-2022-0359, CVE-2022-0361

CVE-2022-0351: fix crash caused by too depth recursion - CVE-2022-0359: fix illegal memory access with large tabstop in ex mode - CVE-2022-0361: fix illegal memory access when copying lines in visual mode - CVE-2022-0368: fix illegal memory access when undo makes visual area invalid...

8.4CVSS3.6AI score0.01566EPSS
Exploits4References1
Total number of security vulnerabilities524