Lucene search
K
CloudlinuxRecent

524 matches found

CloudLinux
CloudLinux
•added 2022/02/10 1:49 p.m.•327 views

Fix of CVE: CVE-2022-23307, CVE-2022-23302

CVE-2022-23307: Fix Unsafe deserialization flaw in Chainsaw log viewer - CVE-2022-23302: Fix remote code execution when application is configured to use JMSSink...

9CVSS3.2AI score0.61785EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2022/02/03 8:1 p.m.•185 views

Fix of CVE: CVE-2022-23305

CVE-2022-23305: disable JDBCAppender by default. Add optional parameter for enabling it...

9.8CVSS1.7AI score0.66537EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/02/02 4:15 p.m.•72 views

Fix of CVE: CVE-2022-23218, CVE-2022-23219

CVE-2022-23218: fix possible buffer overflow in svcunixcreate - CVE-2022-23219: fix possible buffer overflow in clntcreate...

9.8CVSS3.1AI score0.04729EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/01/31 2:48 p.m.•45 views

Fix of CVE: CVE-2022-0261, CVE-2022-0213

CVE-2022-0213: fix going over the end of status line buffer - CVE-2022-0261: fix block insert goes over the end of the line...

7.8CVSS1.3AI score0.01687EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/01/26 3:45 p.m.•149 views

Fix of CVE: CVE-2021-4034

CVE-2021-4034: pkexec: argv overflow results in local privilege esc...

7.8CVSS3.9AI score0.94921EPSS
Exploits152References1
CloudLinux
CloudLinux
•added 2022/01/25 12:6 p.m.•44 views

Fix of CVE: CVE-2021-44038

CVE-2021-44038: low privilege escalation during package installation/update due to insecure chmod in spec file...

7.8CVSS3.3AI score0.00761EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/01/17 2:23 p.m.•107 views

Fix of CVE: CVE-2021-4104

CVE-2021-4104: Fix remote code execution vulnerability...

7.5CVSS2.6AI score0.81147EPSS
Exploits9References1
CloudLinux
CloudLinux
•added 2022/01/13 3:24 p.m.•40 views

Fix of CVE: CVE-2021-4192, CVE-2021-4193

CVE-2021-4192: fix using freed memory in /%V - CVE-2021-4193: fix going beyond the end of the line with /%V...

7.8CVSS1.3AI score0.01762EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2022/01/13 2:29 p.m.•58 views

Fix of CVE: CVE-2021-3800

CVE-2021-3800: Fix privilege escalation...

5.5CVSS2.5AI score0.00531EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2022/01/11 12:27 p.m.•47 views

Fix of 14 CVEs

CVE-2018-9138: Fix stack exhaustion - CVE-2018-12641: Fix stack exhaustion - CVE-2018-12697: Fix NULL pointer dereference - CVE-2018-12698: Fix memory consumption - CVE-2018-12699: Fix heap-based buffer overflow - CVE-2018-12700: Fix infinite recursion - CVE-2018-17794: Fix NULL pointer...

9.8CVSS4.1AI score0.0669EPSS
Exploits10References1
CloudLinux
CloudLinux
•added 2022/01/11 12:18 p.m.•77 views

Fix of 8 CVEs

CVE-2021-3517.patch: validate UTF8 in xmlEncodeEntities - CVE-2021-3518.patch: fix user-after-free with 'xmllint --xinclude --dropdtd' - CVE-2021-3537.patch: propagate error in xmlParseElementChildrenContentDeclPriv - CVE-2021-3541.patch: parser fix for the billion laughs attack -...

9.1CVSS8.2AI score0.0828EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/12/29 3:9 p.m.•97 views

Fix of CVE: CVE-2021-45078, CVE-2018-9138, CVE-2018-17985, CVE-2018-12641, CVE-2018-12699, CVE-2018-12698, CVE-2018-12697, CVE-2018-12700, CVE-2018-18484, CVE-2018-18701, CVE-2018-12934, CVE-2018-18700, CVE-2018-17794, CVE-2018-18483

CVE-2018-9138: Fix stack exhaustion - CVE-2018-12641: Fix stack exhaustion - CVE-2018-12697: Fix NULL pointer dereference - CVE-2018-12698: Fix memory consumption - CVE-2018-12699: Fix heap-based buffer overflow - CVE-2018-12700: Fix infinite recursion - CVE-2018-17794: Fix NULL pointer...

7.5CVSS4.1AI score0.0669EPSS
Exploits10References1
CloudLinux
CloudLinux
•added 2021/12/28 1:15 p.m.•78 views

Fix of CVE: CVE-2021-3516, CVE-2021-3537, CVE-2017-8872, CVE-2021-3518, CVE-2019-20388, CVE-2020-24977, CVE-2021-3541, CVE-2021-3517

CVE-2021-3517.patch: validate UTF8 in xmlEncodeEntities - CVE-2021-3518.patch: fix user-after-free with 'xmllint --xinclude --dropdtd' - CVE-2021-3537.patch: propagate error in xmlParseElementChildrenContentDeclPriv - CVE-2021-3541.patch: parser fix for the billion laughs attack -...

7.5CVSS1.2AI score0.0828EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/12/27 4:8 p.m.•42 views

Fix of CVE: CVE-2021-3973, CVE-2021-3974, CVE-2021-4019, CVE-2021-4069, CVE-2021-3984

CVE-2021-3974: fix using freed memory with regexp using a mark - CVE-2021-3984: fix illegal memory access when C-indenting - CVE-2021-3973: fix crash when using CTRL-W f without finding a file name - CVE-2021-4019: fix buffer overflow with long help argument - CVE-2021-4069: fix using freed...

9.3CVSS1.2AI score0.01792EPSS
Exploits5References1
CloudLinux
CloudLinux
•added 2021/12/27 4:8 p.m.•67 views

Fix of 36 CVEs

CVE-2018-6323: Fix unsigned integer overflow - CVE-2018-19931: Fix heap-based buffer overflow in bfdelf32swapphdrin - CVE-2018-6543: Fix integer overflow - CVE-2018-20671: Fix integer overflow vulnerability - CVE-2018-6759: Fix segmentation fault - CVE-2018-7208: Fix segmentation fault -...

7.8CVSS7.7AI score0.07267EPSS
Exploits26References1
CloudLinux
CloudLinux
•added 2021/12/20 12:12 p.m.•66 views

Fix of CVE: CVE-2021-43527

CVE-2021-43527: Fix memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS - Update to CKBI 2.50 from NSS 3.67 - Removing: - Certificate "Verisign Class 3 Public Primary Certification Authority - G3" - Certificate "AddTrust Low-Value Services Root" - Certificate "AddTrust...

9.8CVSS1.3AI score0.17563EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/12/16 4:2 p.m.•90 views

Fix of CVE: CVE-2018-18605, CVE-2019-12972, CVE-2016-4490, CVE-2018-6543, CVE-2018-19931, CVE-2018-10535, CVE-2019-17450, CVE-2018-7643, CVE-2016-4487, CVE-2016-4492, CVE-2018-20002, CVE-2018-1000876, CVE-2019-9073, CVE-2019-9075, CVE-2018-20671, CVE-2016-4488, CVE-2018-7568, CVE-2018-7642, CVE-2018-10373, CVE-2018-6323, CVE-2016-2226, CVE-2016-4493, CVE-2018-19932, CVE-2018-6759, CVE-2019-9077, CVE-2018-18607, CVE-2018-8945, CVE-2018-7208, CVE-2016-6131, CVE-2018-13033, CVE-2018-20623, CVE-2019-14444, CVE-2018-18309, CVE-2018-18606, CVE-2018-7569, CVE-2016-4489

CVE-2018-6323: Fix unsigned integer overflow - CVE-2018-19931: Fix heap-based buffer overflow in bfdelf32swapphdrin - CVE-2018-6543: Fix integer overflow - CVE-2018-20671: Fix integer overflow vulnerability - CVE-2018-6759: Fix segmentation fault - CVE-2018-7208: Fix segmentation fault -...

6.8CVSS2.3AI score0.07267EPSS
Exploits26References1
CloudLinux
CloudLinux
•added 2021/12/15 2:28 p.m.•44 views

Fix of CVE: CVE-2021-3973, CVE-2021-3974, CVE-2021-4019, CVE-2021-3984, CVE-2021-4069

CVE-2021-3974: fix using freed memory with regexp using a mark - CVE-2021-3984: fix illegal memory access when C-indenting - CVE-2021-3973: fix crash when using CTRL-W f without finding a file name - CVE-2021-4019: fix buffer overflow with long help argument - CVE-2021-4069: fix using freed...

9.3CVSS1.2AI score0.01792EPSS
Exploits5References1
CloudLinux
CloudLinux
•added 2021/12/06 3:23 p.m.•418 views

Fix of CVE: CVE-2021-43527

CVE-2021-43527: Fix memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS - Update to CKBI 2.50 from NSS 3.67 - Removing: - Certificate "Verisign Class 3 Public Primary Certification Authority - G3" - Certificate "AddTrust Low-Value Services Root" - Certificate "AddTrust...

7.5CVSS1.3AI score0.17563EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/12/06 3:16 p.m.•49 views

Fix of 56 CVEs

CVE-2017-7223: Fix global buffer overflow of size 1 - CVE-2017-7224: Fix invalid write of size 1 while disassembling - CVE-2017-7225: Fix NULL pointer dereference and an invalid write - CVE-2017-7226: Fix heap-based buffer over-read of size 4049 - CVE-2017-7227: Fix heap-based buffer overflow -...

9.8CVSS7.9AI score0.08506EPSS
Exploits13References1
CloudLinux
CloudLinux
•added 2021/12/06 3:16 p.m.•37 views

Fix of CVE: CVE-2021-3928, CVE-2021-3927

CVE-2021-3927: fix heap-based buffer overflow when reading character past end of line - CVE-2021-3928: fix stack-based buffer overflow when reading uninitialized memory when giving spell suggestions...

7.8CVSS8.2AI score0.01589EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/12/06 3:15 p.m.•41 views

Fix of CVE: CVE-2021-27212

CVE-2021-27212: fix DoS via malicious packet...

7.5CVSS3.3AI score0.64147EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/11/24 4:19 p.m.•105 views

Fix of CVE: CVE-2017-15022, CVE-2017-9742, CVE-2017-9749, CVE-2017-14940, CVE-2017-15225, CVE-2017-9753, CVE-2017-14130, CVE-2017-14333, CVE-2017-8421, CVE-2017-8398, CVE-2017-12448, CVE-2017-16826, CVE-2017-15938, CVE-2017-16831, CVE-2017-9744, CVE-2017-12455, CVE-2017-15996, CVE-2017-8396, CVE-2017-12451, CVE-2017-7614, CVE-2017-12452, CVE-2017-9748, CVE-2017-7225, CVE-2017-7302, CVE-2017-12449, CVE-2017-12458, CVE-2017-16827, CVE-2017-15939, CVE-2017-7227, CVE-2017-7226, CVE-2017-16828, CVE-2017-17121, CVE-2017-12453, CVE-2017-17080, CVE-2017-17124, CVE-2017-7223, CVE-2017-9747, CVE-2017-12457, CVE-2017-12456, CVE-2017-7299, CVE-2017-7300, CVE-2017-9754, CVE-2017-13710, CVE-2017-12450, CVE-2017-7301, CVE-2017-8394, CVE-2017-12454, CVE-2017-14932, CVE-2017-15020, CVE-2017-17123, CVE-2017-12459, CVE-2017-7224, CVE-2017-17125, CVE-2017-12799, CVE-2017-8393, CVE-2017-14938

CVE-2017-7223: Fix global buffer overflow of size 1 - CVE-2017-7224: Fix invalid write of size 1 while disassembling - CVE-2017-7225: Fix NULL pointer dereference and an invalid write - CVE-2017-7226: Fix heap-based buffer over-read of size 4049 - CVE-2017-7227: Fix heap-based buffer overflow -...

7.5CVSS1.5AI score0.08506EPSS
Exploits13References1
CloudLinux
CloudLinux
•added 2021/11/24 4:11 p.m.•39 views

Fix of CVE: CVE-2021-27212

CVE-2021-27212: fix DoS via malicious packet...

5CVSS3.3AI score0.64147EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/11/24 4:0 p.m.•43 views

Fix of CVE: CVE-2021-3928, CVE-2021-3927

CVE-2021-3927: fix heap-based buffer overflow when reading character past end of line - CVE-2021-3928: fix stack-based buffer overflow when reading uninitialized memory when giving spell suggestions...

6.8CVSS8.2AI score0.01589EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/11/23 1:13 p.m.•83 views

Fix of CVE: CVE-2021-21704, CVE-2021-21703, CVE-2021-21705

CVE-2021-21704: fix integer overflow and subsequent incorrect buffer allocation - CVE-2021-21705: fix incorrect url password validation - CVE-2021-21703: fix incorrect shared memory management, which led to priv escalation...

7.8CVSS3AI score0.01945EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/11/23 1:12 p.m.•60 views

Fix of CVE: CVE-2021-3903, CVE-2021-3875, CVE-2021-3872

CVE-2021-3872: fix illegal memory access if buffer name is very long - CVE-2021-3875: fix mlget error after search with range - CVE-2021-3903: fix invalid memory access when scrolling without a valid screen...

7.8CVSS7.1AI score0.0144EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/11/22 12:20 p.m.•51 views

Fix of CVE: CVE-2021-3326, CVE-2021-43396

CVE-2021-3326: avoid denial of service due to a failed assertion - CVE-2021-43396: check actual stored character in state reset code...

7.5CVSS2.6AI score0.03093EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/11/16 1:53 p.m.•42 views

Fix of CVE: CVE-2021-25219

CVE-2021-25219: Fix resolver performance degradation via lame cache abuse...

5.3CVSS2.4AI score0.08001EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/11/10 6:27 p.m.•67 views

Fix of CVE: CVE-2021-21705, CVE-2021-21704, CVE-2021-21703

CVE-2021-21704: fix integer overflow and subsequent incorrect buffer allocation - CVE-2021-21705: fix incorrect url password validation - CVE-2021-21703: fix incorrect shared memory management, which led to priv escalation...

6.9CVSS7.3AI score0.01945EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/11/10 6:26 p.m.•55 views

Fix of CVE: CVE-2021-3875, CVE-2021-3872, CVE-2021-3903

CVE-2021-3872: fix illegal memory access if buffer name is very long - CVE-2021-3875: fix mlget error after search with range - CVE-2021-3903: fix invalid memory access when scrolling without a valid screen...

6.8CVSS7.1AI score0.0144EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/11/08 4:35 p.m.•43 views

Fix of CVE: CVE-2021-3326, CVE-2021-43396

CVE-2021-3326: avoid denial of service due to a failed assertion - CVE-2021-43396: check actual stored character in state reset code...

5CVSS7.8AI score0.03093EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/11/08 1:34 p.m.•57 views

Fix of CVE: CVE-2017-20005

CVE-2017-20005: fix buffer overflow for years that exceed four digits...

9.8CVSS3.8AI score0.03285EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/11/03 4:59 p.m.•42 views

Fix of CVE: CVE-2021-25219

CVE-2021-25219: Fix resolver performance degradation via lame cache abuse...

5CVSS6.4AI score0.08001EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/10/28 4:47 p.m.•33 views

Fix of CVE: CVE-2017-6363, CVE-2021-40145

CVE-2021-40145: check for memory allocation errors processing GD2 images - CVE-2017-6363: make sure transparent index is within bounds of the palette...

8.1CVSS3.7AI score0.02051EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/10/28 1:11 p.m.•155 views

Fix of CVE: CVE-2017-20005

CVE-2017-20005: fix buffer overflow for years that exceed four digits...

7.5CVSS3.8AI score0.03285EPSS
Exploits1References1
CloudLinux
CloudLinux
•added 2021/10/20 3:53 p.m.•69 views

Fix of CVE: CVE-2021-39275

CVE-2021-39275: apescapequotes algorithm which led to buffer overflow...

9.8CVSS3.4AI score0.36339EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/10/20 3:51 p.m.•48 views

Fix of CVE: CVE-2021-3778, CVE-2021-3796

CVE-2021-3778: crafted input leads to heap-based buffer overflow - CVE-2021-3796: crafted input leads to use-after-free...

8.2CVSS7.8AI score0.01749EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/10/19 1:31 p.m.•50 views

Fix of CVE: CVE-2017-6363, CVE-2021-40145

CVE-2021-40145: check for memory allocation errors processing GD2 images - CVE-2017-6363: make sure transparent index is within bounds of the palette...

5.8CVSS3.7AI score0.02051EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/10/18 4:15 p.m.•39 views

Fix of CVE: CVE-2020-25275, CVE-2020-12100

CVE-2020-12100: Resource exhaustion via deeply nested MIME parts - CVE-2020-25275: Denial of service via mail MIME parsing...

7.5CVSS3.7AI score0.05215EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/10/11 3:13 p.m.•88 views

Fix of CVE: CVE-2021-3778, CVE-2021-3796

CVE-2021-3778: crafted input leads to heap-based buffer overflow - CVE-2021-3796: crafted input leads to use-after-free...

6.8CVSS3.5AI score0.01749EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/10/11 3:13 p.m.•74 views

Fix of CVE: CVE-2021-39275

CVE-2021-39275: apescapequotes algorithm which led to buffer overflow...

7.5CVSS3.4AI score0.36339EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/10/07 3:19 p.m.•64 views

Fix of CVE: CVE-2020-25275, CVE-2020-12100

CVE-2020-12100: Resource exhaustion via deeply nested MIME parts - CVE-2020-25275: Denial of service via mail MIME parsing...

5CVSS3.7AI score0.05215EPSS
Exploits2References1
CloudLinux
CloudLinux
•added 2021/10/07 10:12 a.m.•45 views

Fix of CVE: CVE-2020-35452

CVE-2020-35452: fix stack overflow in modauthdigest due to crafted digest nonce...

7.3CVSS2.8AI score0.53191EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/10/05 2:8 p.m.•55 views

Fix of CVE: CVE-2020-11868

CVE-2020-11868: incorrect handling of packets from unauthenticated synchronization source with spoofed IP address leads to denial of service...

7.5CVSS7.6AI score0.02081EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/10/05 2:8 p.m.•18 views

Update of openssl-static, openssl-perl, openssl-devel, openssl, openssl-devel, openssl

Always check certificates from local root store first...

3.2AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/10/05 2:7 p.m.•57 views

Fix of CVE: CVE-2020-26116, CVE-2020-8492, CVE-2018-20852, CVE-2020-27619

Add Oracle Linux distribution in platform.py - CVE-2018-20852: Prefix dot in domain for proper subdomain validation - CVE-2020-8492: Python allows an HTTP server to conduct Regular Expression Denial of Service ReDoS attacks against a client - CVE-2020-26116: http.client allows CRLF injection if...

9.8CVSS7.3AI score0.08314EPSS
Exploits3References1
CloudLinux
CloudLinux
•added 2021/10/05 2:7 p.m.•29 views

Fix of CVE: CVE-2021-3487

CVE-2021-3487: excessive debug section size can cause excessive memory consumption in bfd's dwarf2.c readsection...

6.9AI score
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/30 4:12 p.m.•37 views

Fix of CVE: CVE-2020-11868

CVE-2020-11868: incorrect handling of packets from unauthenticated synchronization source with spoofed IP address leads to denial of service...

5CVSS2.2AI score0.02081EPSS
Exploits0References1
CloudLinux
CloudLinux
•added 2021/09/30 12:55 p.m.•27 views

Update of openssl-static, openssl-perl, openssl-devel, openssl, openssl-devel, openssl

Always check certificates from local root store first...

3.2AI score
Exploits0References1
Total number of security vulnerabilities524