Read Time:8 Second
俞晨东 discovered that Git incorrectly handled certain repository paths
in platforms with multiple users support. An attacker could possibly use
this issue to run arbitrary commands.
Category Archives: Advisories
pdns-4.6.2-1.fc36
Read Time:17 Second
FEDORA-2022-ccfd5d1045
Packages in this update:
pdns-4.6.2-1.fc36
Update description:
Update to 4.6.2
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.2
Update to 4.6.1
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.1
pdns-4.6.2-1.fc35
Read Time:17 Second
FEDORA-2022-8367cefdea
Packages in this update:
pdns-4.6.2-1.fc35
Update description:
Update to 4.6.2
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.2
Update to 4.6.1
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.1
CVE-2021-28544
Read Time:23 Second
Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal ‘copyfrom’ paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, users with access to the copy can see the ‘copyfrom’ path of the original. This also reveals the fact that the node was copied. Only the ‘copyfrom’ path is revealed; not its contents. Both httpd and svnserve servers are vulnerable.
pdns-4.6.2-1.fc34
Read Time:17 Second
FEDORA-2022-6e19acf414
Packages in this update:
pdns-4.6.2-1.fc34
Update description:
Update to 4.6.2
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.2
Update to 4.6.1
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.1
pdns-4.6.2-1.el9
Read Time:17 Second
FEDORA-EPEL-2022-72a7426715
Packages in this update:
pdns-4.6.2-1.el9
Update description:
Update to 4.6.2
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.2
Update to 4.6.1
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.1
pdns-4.6.2-1.el8
Read Time:17 Second
FEDORA-EPEL-2022-7aca455c41
Packages in this update:
pdns-4.6.2-1.el8
Update description:
Update to 4.6.2
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.2
Update to 4.6.1
Release notes: https://doc.powerdns.com/authoritative/changelog/4.6.html#change-4.6.1
CVE-2021-0694
Read Time:15 Second
In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-183147114
CVE-2021-0707
Read Time:15 Second
In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-155756045References: Upstream kernel
USN-5372-1: Subversion vulnerabilities
Read Time:21 Second
Evgeny Kotkov discovered that Subversion servers did not properly follow
path-based authorization rules in certain cases. An attacker could
potentially use this issue to retrieve information about private paths.
(CVE-2021-28544)
Thomas Weißschuh discovered that Subversion servers did not properly handle
memory in certain configurations. A remote attacker could potentially use
this issue to cause a denial of service or other unspecified impact.
(CVE-2022-24070)