Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base


Mageia 2019-0111: gnome-keyring security update

It was discovered that GNOME Keyring incorrectly cleared out credentials supplied to the PAM module. A local attacker could possibly use this issue to discover login credentials (CVE-2018-20781). References: Continue Reading — Mageia 2019-0111: gnome-keyring security update


Mageia 2019-0110: rsyslog security update

A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash (CVE-2018-16881). References: Continue Reading — Mageia 2019-0110: rsyslog security update


Mageia 2019-0109: apache security update

By sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections in Apache HTTP Server versions 2.4…. Continue Reading — Mageia 2019-0109:...


Mageia 2019-0108: gnupg2 security update

GnuPG version 2.1.12 – 2.2.11 contains a Cross ite Request Forgery (CSRF) vulnerability in dirmngr that can result in Attacker controlled CSRF, Information Disclosure, DoS. This attack appear to be exploitable via Victim must perform a WKD request, e.g… Continue Reading — Mageia 2019-0108: gnupg2...


Get every new post delivered to your Inbox

Join other followers

Page 1975 of 2989