» 2018 » 6월

CVE-2018-12578

Posted on 2018년 6월 20일2018년 6월 20일 by admin

CVE-2018-12578

There is a heap-based buffer overflow in bmp_compress1_row in appliers.cpp in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.

Source: CVE-2018-12578

CVE-2018-1061

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-1061

python before versions 2.7.15, 3.4.9, 3.5.6 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

Source: CVE-2018-1061

CVE-2018-1073

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-1073

The web console login form in ovirt-engine before version 4.2.3 returned different errors for non-existent users and invalid passwords, allowing an attacker to discover the names of valid user accounts.

Source: CVE-2018-1073

CVE-2018-12563

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12563

An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for file: URLs, a user can force lava-server-gunicorn to download any file from the filesystem if it’s readable by lavaserver and valid yaml.

Source: CVE-2018-12563

CVE-2018-12564

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12564

An issue was discovered in Linaro LAVA before 2018.5.post1. Because of support for URLs in the submit page, a user can forge an HTTP request that will force lava-server-gunicorn to return any file on the server that is readable by lavaserver and valid yaml.

Source: CVE-2018-12564

CVE-2018-12561

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12561

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. A regular user can inject additional mount options such as file_mode= by manipulating (for example) the domain parameter of the samba URL.

Source: CVE-2018-12561

CVE-2018-12565

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12565

An issue was discovered in Linaro LAVA before 2018.5.post1. Because of use of yaml.load() instead of yaml.safe_load() when parsing user data, remote code execution can occur.

Source: CVE-2018-12565

CVE-2018-12560

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12560

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. Arbitrary unmounts can be performed by regular users via directory traversal sequences such as a home/../sys/kernel substring.

Source: CVE-2018-12560

CVE-2018-12557

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12557

An issue was discovered in Zuul 3.x before 3.1.0. If nodes become offline during the build, the no_log attribute of a task is ignored. If the unreachable error occurred in a task used with a loop variable (e.g., with_items), the contents of the loop items would be printed in the console. This could lead to accidentally leaking credentials or secrets.

Source: CVE-2018-12557

CVE-2018-12559

Posted on 2018년 6월 19일2018년 6월 19일 by admin

CVE-2018-12559

An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1. The mount target path check in mounter.cpp `mpOk()` is insufficient. A regular user can consequently mount a CIFS filesystem anywhere (e.g., outside of the /home directory tree) by passing directory traversal sequences such as a home/../usr substring.

Source: CVE-2018-12559