OpenSMTPD could be made to run programs as root if it received specially crafted input over the network. Continue Reading — Ubuntu 4268-1: OpenSMTPD vulnerability>
Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base
ipa: Denial of service in IPA server due to wrong use of ber_scanf() (CVE-2019-14867) * ipa: Batch API logging user passwords to /var/log/httpd/error_log (CVE-2019-10195) SL7 x86_64 ipa-client-4.6.5-11.el7_7.4.x86_64.rpm ipa-debuginfo-4.6.5-11.el7_7.4…. Continue Reading — SciLinux: SLSA-2020-0378-1 Important: ipa on SL7.x x86_64>
hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) * QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378) SL7 x86_64 qemu-img-1.5.3-167.el7_7.4.x86_64.rpm qemu-kvm-1.5.3-167.el7_7.4.x86_64.rpm qemu-kvm-common-1.5.3-167… Continue Reading — SciLinux: SLSA-2020-0366-1 Important: qemu-kvm on SL7.x x86_64>
An update for ksh is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, Continue Reading — RedHat:...
storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. Continue Reading — Debian LTS: DLA-2095-1: storebackup security update>
Continue Reading — How To Set Up A Custom Event Bus With Amazon EventBridge