Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base


Mageia 2020-0081: sudo security update>

The updated packages fix a security vulnerability: In Sudo before 1.8.31, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. (pwfeedback is a default setting in Linux Mint and elem… Continue Reading — Mageia 2020-0081: sudo...


Mageia 2020-0080: qtbase5 security update>

Updated qtbase5 packages fix security vulnerabilities: QPluginLoader in Qt versions 5.0.0 through 5.13.2 would search for certain plugins first on the current working directory of the application, which allows an attacker that can place files in the f… Continue Reading — Mageia 2020-0080: qtbase5 security...


Mageia 2020-0078: chromium-browser-stable security update>

Multiple flaws were found in the way Chromium 78.0.3904.108 processes various types of web content, where loading a web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information. (CVE-201… Continue Reading — Mageia 2020-0078: chromium-browser-stable security update>


Mageia 2020-0077: xmlrpc security update>

A flaw was discovered where the XMLRPC client implementation in Apache XMLRPC, performed deserialization of the server-side exception serialized in the faultCause attribute of XMLRPC error response messages. A malicious or compromised XMLRPC server cou… Continue Reading — Mageia 2020-0077: xmlrpc security update>


Mageia 2020-0076: mgetty security update>

Updated mgetty package fixes security vulnerability: mgetty prior to version 1.2.1 is affected by: Infinite Loop. The impact is: DoS, the program does never terminates. The component is: g3/g32pbm.c. The attack vector is: Local, the user should open a… Continue Reading — Mageia 2020-0076: mgetty...


Debian LTS: DLA-2098-1: ipmitool security update>

Christopher Ertl found that multiple functions in ipmitool neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. Continue Reading — Debian LTS: DLA-2098-1: ipmitool security update>


Debian LTS: DLA-2097-1: ppp security update>

Ilja Van Sprundel discovered a buffer overflow vulnerability in ppp, the Point-to-Point Protocol daemon. When receiving an EAP Request message in client mode, an attacker was able to overflow the rhostname array by providing a very long name. This issu… Continue Reading — Debian LTS:...


Get every new post delivered to your Inbox

Join other followers

Page 960 of 2989