Category Archives: Advisories

CVE-2021-20290

Read Time:20 Second

An improper authorization handling flaw was found in Foreman. The OpenSCAP plugin for the smart-proxy allows foreman clients to execute actions that should be limited to the Foreman Server. This flaw allows an authenticated local attacker to access and delete limited resources and also causes a denial of service on the Foreman server. The highest threat from this vulnerability is to integrity and system availability.

Read More

CVE-2021-22100

Read Time:16 Second

In cloud foundry CAPI versions prior to 1.122, a denial-of-service attack in which a developer can push a service broker that (accidentally or maliciously) causes CC instances to timeout and fail is possible. An attacker can leverage this vulnerability to cause an inability for anyone to push or manage apps.

Read More

CVE-2020-21554

Read Time:10 Second

A File Deletion vulnerability exists in TinyShop 3.1.1 in the back_list parameter in controllersadmin.php, which could let a malicious user delete any file such as install.lock to reinstall cms.

Read More

skopeo-1.7.0-1.fc36

Read Time:10 Second

FEDORA-2022-5f253807ce

Packages in this update:

skopeo-1.7.0-1.fc36

Update description:

Security fix for CVE-2022-21698, skopeo likely not directly impacted

tests subpackage depends on /usr/sbin/unsquashfs

Read More

skopeo-1.7.0-1.fc35

Read Time:10 Second

FEDORA-2022-eda0e65b01

Packages in this update:

skopeo-1.7.0-1.fc35

Update description:

Security fix for CVE-2022-21698, skopeo likely not directly impacted.

tests subpackage depends on /usr/sbin/unsquashfs

Read More