Lucene search
K
MageiaRecent

6009 matches found

Mageia
Mageia
•added 2013/06/06 12:24 p.m.•41 views

Updated nginx package fixes security vulnerability

A security problem related to CVE-2013-2028 was identified, affecting some previous nginx versions if proxypass to untrusted upstream HTTP servers is used. The problem may lead to a denial of service or a disclosure of a worker process memory on a specially crafted response from an upstream proxi...

5.8CVSS3.2AI score0.11925EPSS
Exploits3References3
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•47 views

Updated php-geshi package fix security vulnerabilities

A directory traversal and information disclosure local file inclusion flaws were found in the cssgen contrib module application to generate custom CSS files of GeSHi, a generic syntax highlighter, performed sanitization of 'geshi-path' and 'geshi-lang-path' HTTP GET / POST variables. A remote...

4.3CVSS1.4AI score0.0163EPSS
Exploits1References1
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•45 views

Updated wireshark packages fix security vulnerability (Mageia 2)

The ASN.1 BER dissector could crash CVE-2013-3557...

5CVSS2.5AI score0.03348EPSS
Exploits1References4
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•60 views

Updated moodle package fix security vulnerabilities

The assignment module in Moodle before 2.4.4 was not checking capabilities for users downloading all assignments as a zip CVE-2013-2079. The Gradebook's Overview report in Moodle before 2.4.4 was showing grade totals that may have incorrectly included hidden grades CVE-2013-2080. When registering...

5CVSS0.8AI score0.02372EPSS
Exploits0References7
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•31 views

Updated sssd packages fix security vulnerability

A TOCTOU time-of-check time-of-use race condition was found in the way SSSD, System Security Services Daemon, performed copying and removal of user directory trees.A local attacker, with permissions to write into directory of the victim, being actively / currently copied / removed via the sssd...

3.7CVSS2.3AI score0.00366EPSS
Exploits0References3
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•14 views

Updated flightgear package fixes security vulnerability

It was reported that FlightGear suffers from improper handling of format strings when FlightGear is started with allowances for remote access via the --props or --telnet commandline arguments. If a remote attacker were able to connect to FlightGear and set special parameters related with clouds, ...

4.3AI score
Exploits0References3
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•44 views

Updated libvirt packages fix security vulnerability

It was found that libvirtd leaked file descriptors when listing all volumes for a particular pool. A remote attacker able to establish a read-only connection to libvirtd could use this flaw to cause libvirtd to consume all available file descriptors, preventing other users from using libvirtd...

5CVSS2.1AI score0.03513EPSS
Exploits0References2
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•31 views

Updated libraw packages fix security vulnerability

A double-free error exits when handling damaged full-color within Foveon and sRAW files in libraw before 0.15.2 CVE-2013-2126...

7.5CVSS0.8AI score0.04412EPSS
Exploits1References2
Mageia
Mageia
•added 2013/06/06 12:24 p.m.•45 views

Updated wireshark packages fix security vulnerabilities (Mageia 3)

The RELOAD dissector could go into an infinite loop CVE-2013-2486, CVE-2013-2487. The GTPv2 dissector could crash CVE-2013-3555. The ASN.1 BER dissector could crash CVE-2013-3557. The PPP CCP dissector could crash CVE-2013-3558. The DCP ETSI dissector could crash CVE-2013-3559. The MPEG DSM-CC...

7.8CVSS1.3AI score0.03365EPSS
Exploits5References12
Total number of security vulnerabilities6009