Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-5067-1: SSSD vulnerabilities

2021-09-08 KENNETH 0

USN-5067-1: SSSD vulnerabilities Jakub Hrozek discovered that SSSD incorrectly handled file permissions. A local attacker could possibly use this issue to read the sudo rules available for any user. This issue only affected Ubuntu 18.04 LTS. (CVE-2018-10852) It was discovered that SSSD incorrectly handled Group Policy Objects. When SSSD is configured with too strict permissions causing the GPO to not be readable, SSSD will allow all authenticated users to login instead of being denied, contrary to expectations. This issue only affected Ubuntu 18.04 LTS. (CVE-2018-16838) It was discovered that SSSD incorrectly handled users with no home directory set. When no home directory was set, SSSD would return the root directory instead of an empty string, possibly bypassing security measures. This issue only affected Ubuntu 18.04 LTS. (CVE-2019-3811) Cedric Buissart discovered that SSSD incorrectly handled the sssctl command. In certain environments, [ more… ]

No Image

USN-5066-1: PySAML2 vulnerability

2021-09-08 KENNETH 0

USN-5066-1: PySAML2 vulnerability Brian Wolff discovered that PySAML2 incorrectly validated cryptographic signatures. A remote attacker could possibly use this issue to alter SAML documents. Source: USN-5066-1: PySAML2 vulnerability

No Image

USN-5065-1: Open vSwitch vulnerability

2021-09-08 KENNETH 0

USN-5065-1: Open vSwitch vulnerability It was discovered that Open vSwitch incorrectly handled decoding RAW_ENCAP actions. A remote attacker could use this issue to cause Open vSwitch to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5065-1: Open vSwitch vulnerability

No Image

USN-5064-1: GNU cpio vulnerability

2021-09-08 KENNETH 0

USN-5064-1: GNU cpio vulnerability Maverick Chung and Qiaoyi Fang discovered that cpio incorrectly handled certain pattern files. A remote attacker could use this issue to cause cpio to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5064-1: GNU cpio vulnerability

No Image

USN-5063-1: HAProxy vulnerabilities

2021-09-08 KENNETH 0

USN-5063-1: HAProxy vulnerabilities Ori Hollander discovered that HAProxy incorrectly handled HTTP header name length encoding. A remote attacker could possibly use this issue to inject a duplicate content-length header and perform request smuggling attacks. Source: USN-5063-1: HAProxy vulnerabilities