Category Archives: Advisories

CVE-2021-3563

Read Time:13 Second

A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity.

Read More

CVE-2021-35939

Read Time:20 Second

It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created. A local unprivileged user who owns another ancestor directory could potentially use this flaw to gain root privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Read More

libtar-1.2.20-25.fc35

Read Time:14 Second

FEDORA-2022-fe1a4e3cf0

Packages in this update:

libtar-1.2.20-25.fc35

Update description:

fix memory leaks through gnu_long{name,link} (CVE-2021-33645 CVE-2021-33646)
fix out-of-bounds read in gnu_long{name,link} (CVE-2021-33643 CVE-2021-33644)

Read More

libtar-1.2.20-25.fc36

Read Time:14 Second

FEDORA-2022-50e8a1b51d

Packages in this update:

libtar-1.2.20-25.fc36

Update description:

fix memory leaks through gnu_long{name,link} (CVE-2021-33645 CVE-2021-33646)
fix out-of-bounds read in gnu_long{name,link} (CVE-2021-33643 CVE-2021-33644)

Read More

libtar-1.2.20-25.fc37

Read Time:14 Second

FEDORA-2022-44a20bba43

Packages in this update:

libtar-1.2.20-25.fc37

Update description:

fix memory leaks through gnu_long{name,link} (CVE-2021-33645 CVE-2021-33646)
fix out-of-bounds read in gnu_long{name,link} (CVE-2021-33643 CVE-2021-33644)

Read More