oss-sec: by date
RSS Feed
About List
All Lists
Previous period
193 messages
starting Jul 01 21 and
ending Sep 30 21
Date index |
Thread index |
Author index
Thursday, 01 July
CVE-2021-26920: Apache Druid: The HTTP inputSource allows authenticated users to read data from other sources than intended Jihoon Son
Django: CVE-2021-35042: Potential SQL injection via unsanitized QuerySet.order_by() input Mariusz Felisiak
Sunday, 04 July
CVE-2021-33192: Apache Jena Fuseki: Display information UI XSS Andy Seaborne
Monday, 05 July
Re: Blind in/on-path attacks against VPN-tunneled connections (CVE-2019-14899 follow-up) vpn-research
Tuesday, 06 July
linuxptp: Fixes published for CVE-2021-3570 and CVE-2021-3571 Richard Cochran
xscreensaver 5.45 crash Mustafa Kuscu
CVE-2021-35039: Linux kernel loading unsigned kernel modules via init_module syscall Nayna
Monday, 12 July
CVE-2021-30129: DoS/OOM leak vulnerability in Apache Mina SSHD Server Guillaume Nodet
[OSSA-2021-001] Neutron: Anti-spoofing bypass for Open vSwitch networks (CVE-2021-20267) Jeremy Stanley
Tuesday, 13 July
CVE-2021-35515: Apache Commons Compress 1.6 to 1.20 denial of service vulnerability Stefan Bodewig
CVE-2021-35516: Apache Commons Compress 1.6 to 1.20 denial of service vulnerability Stefan Bodewig
CVE-2021-35517: Apache Commons Compress 1.1 to 1.20 denial of service vulnerability Stefan Bodewig
CVE-2021-36090: Apache Commons Compress 1.0 to 1.20 denial of service vulnerability Stefan Bodewig
CVE-2021-36373: Apache Ant TAR archive denial of service vulnerability Stefan Bodewig
CVE-2021-36374: Apache Ant ZIP, and ZIP based, archive denial of service vulerability Stefan Bodewig
Wednesday, 14 July
[kubernetes] CVE-2021-25740: Endpoint & EndpointSlice permissions allow cross-Namespace forwarding CJ Cullen
Sunday, 18 July
Re: Polipo: denial-of-service using range John Helmert III
Monday, 19 July
Re: Polipo: denial-of-service using range Jeffrey Walton
CVE-2021-32760: containerd archive package allows chmod of file outside of unpack target directory Karp, Samuel
Tuesday, 20 July
CVE-2021-33909: size_t-to-int vulnerability in Linux's filesystem layer Qualys Security Advisory
CVE-2021-33910: Denial of service (stack exhaustion) in systemd (PID 1) Qualys Security Advisory
Re: CVE-2021-33909: size_t-to-int vulnerability in Linux's filesystem layer Petr Matousek
Re: CVE-2021-33910: Denial of service (stack exhaustion) in systemd (PID 1) Mauro Matteo Cascella
Pop!_OS Membership to linux-distros list Jeremy Soller
Wednesday, 21 July
[SECURITY ADVISORY] curl: Wrong content via metalink not discarded Daniel Stenberg
[SECURITY ADVISORY] curl: Metalink download sends credentials Daniel Stenberg
[SECURITY ADVISORY] curl: Bad connection reuse due to flawed path name checks Daniel Stenberg
[SECURITY ADVISORY] curl: TELNET stack contents disclosure again Daniel Stenberg
Thursday, 22 July
CVE-2021-3640: Linux kernel: UAF in sco_send_frame function Lin Horse
ipython3 may execute code from the current working directory Georgi Guninski
CVE-2021-28131: Apache Impala: Impala logs contain secrets Zoltán Borók-Nagy
Re: ipython3 may execute code from the current working directory Jakub Wilk
Prosody XMPP server advisory 2021-07-22 (Remote Information Disclosure) (CVE Request) Jonas Schäfer
Re: ipython3 may execute code from the current working directory Jakub Wilk
Re: CVE-2021-33909: size_t-to-int vulnerability in Linux's filesystem layer Qualys Security Advisory
Friday, 23 July
WebKitGTK and WPE WebKit Security Advisory WSA-2021-0004 Carlos Alberto Lopez Perez
Re: ipython3 may execute code from the current working directory Jakub Wilk
Re: ipython3 may execute code from the current working directory Mats Wichmann
Saturday, 24 July
CVE-2021-33900: Apache Directory Studio: StartTLS and SASL confidentiality protection bypass Stefan Seelmann
Potential symlink attack in python3 __pycache__ Georgi Guninski
Re: Potential symlink attack in python3 __pycache__ Michael Orlitzky
Re: ipython3 may execute code from the current working directory Jakub Wilk
Sunday, 25 July
CVE-2020-28020: Integer overflow in Exim that can lead to RCE: Some questions to the Qualys researchers who designed the exploit Jonas Dellinger
Re: ipython3 may execute code from the current working directory Georgi Guninski
Monday, 26 July
Linux kernel: powerpc: KVM guest to host memory corruption Michael Ellerman
security advisory 2021-01 for PowerDNS Authoritative Server 4.5.0 Peter van Dijk
Re: Potential symlink attack in python3 __pycache__ Georgi Guninski
Re: Potential symlink attack in python3 __pycache__ Santiago Torres
Re: Potential symlink attack in python3 __pycache__ Jakub Wilk
Tuesday, 27 July
replay-sorcery: CVE-2021-36983: kms service in version 0.6.0 allows local root exploit and other local attack vectors Matthias Gerstner
Re: Linux kernel: powerpc: KVM guest to host memory corruption Michael Ellerman
Re: Pop!_OS Membership to linux-distros list Solar Designer
Re: Prosody XMPP server advisory 2021-07-22 (Remote Information Disclosure) (CVE Request) Salvatore Bonaccorso
Wednesday, 28 July
Re: Polipo: denial-of-service using range Alexandr Savca (chinarulezzz)
Re: Prosody XMPP server advisory 2021-07-22 (Remote Information Disclosure) (CVE Request) Jonas Schäfer
Re: Prosody XMPP server advisory 2021-07-22 (Remote Information Disclosure) (CVE-2021-37601) Jonas Schäfer
ANNOUNCE: fetchmail <= 6.4.19 security announcement 2021-01 (CVE-2021-36386) - fetchmail 6.4.20 released. DoS or information disclosure in some configurations Matthias Andree
Thursday, 29 July
[SECURITY] CVE-2021-37578 Apache jUDDI Remote code execution Alex O'Ree
[OSSA-2021-002] Nova: Open Redirect in noVNC proxy (CVE-2021-3654) Jeremy Stanley
Node.js: Security updates for all active release lines, 30 July 2021 Daniel Bevenius
Friday, 30 July
Re: Pop!_OS Membership to linux-distros list Tyler Hicks
Sunday, 01 August
GPSD time will jump back 1024 weeks at after week=2180 (23-October-2021) Bernd Zeimetz
Re: Polipo: denial-of-service using range John Helmert III
[CVE-2021-34556,CVE-2021-35477] Linux kernel BPF protection against Speculative Store Bypass can be bypassed to disclose arbitrary kernel memory Piotr Krysiuk
Monday, 02 August
Re: CVE-2020-28020: Integer overflow in Exim that can lead to RCE: Some questions to the Qualys researchers who designed the exploit Qualys Security Advisory
Tuesday, 03 August
Re: Polipo: denial-of-service using range Alexandr Savca (chinarulezzz)
Wednesday, 04 August
Reminder: QtWebKit known vulnerabilities Alex Xu (Hello71)
Re: Pop!_OS Membership to linux-distros list Jeremy Soller
Re: Pop!_OS Membership to linux-distros list Tyler Hicks
Thursday, 05 August
Fwd: Node.js security updates for all active release lines, August 2021 Michael Dawson
Friday, 06 August
Re: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Axel Beckert
Saturday, 07 August
Re: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Thorsten Glaser
Re: bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Axel Beckert
SNI is a security vulnerability all by itself (was Re: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances)) Thorsten Glaser
Re: bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Thorsten Glaser
Re: Re: bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Stuart Henderson
Re: Re: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Ariadne Conill
Re: SNI is a security vulnerability all by itself (was Re: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances)) Jeffrey Walton
Re: Bug#991971: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Salvatore Bonaccorso
Re: [Lynx-dev] [oss-security] Re: bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Thorsten Glaser
Re: Re: Bug#991971: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Axel Beckert
Re: Re: Bug#991971: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Ariadne Conill
Re: Re: Bug#991971: [Lynx-dev] bug in Lynx' SSL certificate validation -> leaks password in clear text via SNI (under some circumstances) Axel Beckert
Monday, 09 August
fetchmail 6.4.21 released/regression fix for 6.4.20's security fix, and UPDATE: fetchmail <= 6.4.19 security announcement 2021-01 (CVE-2021-36386) Matthias Andree
[SECURITY ADVISORY] c-ares: Missing input validation on hostnames returned by DNS servers Daniel Stenberg
Tuesday, 10 August
STARTTLS vulnerabilities Hanno Böck
CVE-2021-21501: Apache ServiceComb: ServiceComb ServiceCenter Directory Traversal Willem Jiang
Re: STARTTLS vulnerabilities Guido Berhoerster
[OSSA-2021-003] Keystone: Account name and UUID oracles in account locking (CVE-2021-38155) Jeremy Stanley
Re: STARTTLS vulnerabilities Hanno Böck
Wednesday, 11 August
Re: STARTTLS vulnerabilities Matthew Wild
Re: STARTTLS vulnerabilities Hanno Böck
firebase/php-jwt Algorithm Confusion with Key IDs Paragon Initiative Enterprises Security Team
Re: STARTTLS vulnerabilities Matthew Wild
CVE-2021-20314: Remote stack buffer overflow in libspf2 Philipp Jeitner (SIT)
Re: STARTTLS vulnerabilities Eric Blake
Re: STARTTLS vulnerabilities Hanno Böck
[CVE-2021-37608] Arbitrary file upload vulnerability in OFBiz jleroux () apache org
Thursday, 12 August
Re: CVE-2021-20314: Remote stack buffer overflow in libspf2 Sam James
Friday, 13 August
Re: Polipo: denial-of-service using range John Helmert III
Saturday, 14 August
CVE-2021-35936: Apache Airflow: No Authentication on Logging Server Kaxil Naik
kopano-core 11.0.2.43: Remote authenticated DoS with unhandled exception Jan Engelhardt
Monday, 16 August
[CVE-2021-3653, CVE-2021-3656] SVM nested virtualization issues in KVM Mauro Matteo Cascella
Re: STARTTLS vulnerabilities Eric Blake
Tuesday, 17 August
Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname butt3rflyh4ck
Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname Salvatore Bonaccorso
Re: Pop!_OS Membership to linux-distros list Solar Designer
[OSSA-2021-004] Neutron: Linuxbridge ARP filter bypass on Netfilter platforms (CVE-2021-38598) Jeremy Stanley
Re: [OSSA-2021-004] Neutron: Linuxbridge ARP filter bypass on Netfilter platforms (CVE-2021-38598) Jan Engelhardt
Re: [OSSA-2021-004] Neutron: Linuxbridge ARP filter bypass on Netfilter platforms (CVE-2021-38598) Jeremy Stanley
CVE-2021-33580: Apache Roller: regex injection leading to DoS Dave
Wednesday, 18 August
Re: STARTTLS vulnerabilities Eric Blake
ISC has disclosed a vulnerability in BIND (CVE-2021-25218) Michael McNally
Thursday, 19 August
[CVE-2021-22942] Possible Open Redirect in Host Authorization Middleware Aaron Patterson
Friday, 20 August
August BIND maintenance releases contain a defect affecting servers using the map zone file format (was: A vulnerability in BIND (CVE-2021-25218) will be announced 18 August 2021) Michael McNally
Monday, 23 August
CVE-2021-35940: Apache Portable Runtime (APR): Regression of CVE-2017-12613 Joe Orton
Tuesday, 24 August
CVE-2021-33191: Apache NiFi - MiNiFi C++: MiNiFi CPP arbitrary script execution is possible on the agent's host machine through the c2 protocol Arpad Boda
Re: Linux kernel: nfc: null ptr dereference in llcp_sock_getname Mohammad Tausif Siddiqui
Oracle Solaris membership in the distros list Alan Coopersmith
Wednesday, 25 August
Possible memory leak on getspnam / getspnam_r Jean Diogo
Linux kernel: qrtr: another out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c butt3rflyh4ck
Linux kernel: fs/btrfs: null-ptr-dereference bug in btrfs_rm_device in fs/btrfs/volumes.c butt3rflyh4ck
Xen Security Advisory 379 v2 (CVE-2021-28697) - grant table v2 status pages may remain accessible after de-allocation Xen . org security team
Xen Security Advisory 382 v2 (CVE-2021-28699) - inadequate grant-v2 status frames array bounds check Xen . org security team
Xen Security Advisory 383 v2 (CVE-2021-28700) - xen/arm: No memory limit for dom0less domUs Xen . org security team
Xen Security Advisory 380 v2 (CVE-2021-28698) - long running loops in grant table handling Xen . org security team
Xen Security Advisory 378 v2 (CVE-2021-28694,CVE-2021-28695,CVE-2021-28696) - IOMMU page mapping issues on x86 Xen . org security team
Re: Possible memory leak on getspnam / getspnam_r Travis Finkenauer
Re: CVE-2021-33909: size_t-to-int vulnerability in Linux's filesystem layer Qualys Security Advisory
Thursday, 26 August
Re: Possible memory leak on getspnam / getspnam_r Jean D'Elboux
OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712) Mark J Cox
Re: Linux kernel: fs/btrfs: null-ptr-dereference bug in btrfs_rm_device in fs/btrfs/volumes.c butt3rflyh4ck
Re: Linux kernel: qrtr: another out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c John Haxby
libssh: Possible heap-buffer overflow when rekeying (CVE-2021-3634) Marco Benatto
Re: Linux kernel: qrtr: another out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c butt3rflyh4ck
Friday, 27 August
Re: Linux kernel: qrtr: another out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c butt3rflyh4ck
Re: Linux kernel: qrtr: another out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c butt3rflyh4ck
ANNOUNCE: fetchmail security announcement 2021-02 (CVE-2021-39272) - TLS bypass vulnerabilities ("NO STARTTLS") Matthias Andree
Fwd: Node.js security updates for versions 12.x, and 14.x releases lines, August 31 2021 Daniel Bevenius
Monday, 30 August
NTFS3G-SA-2021-0001: Multiple buffer overflows in all versions of NTFS-3G Jussi Hietanen
Tuesday, 31 August
Multiple vulnerabilities in Jenkins plugins Daniel Beck
[OSSA-2021-005] Neutron: Arbitrary dnsmasq reconfiguration via extra_dhcp_opts (CVE-2021-40085) Jeremy Stanley
Fwd: Node.js security updates for versions 12.x, and 14.x releases lines, August 31 2021 Daniel Bevenius
Wednesday, 01 September
Xen Security Advisory 378 v3 (CVE-2021-28694,CVE-2021-28695,CVE-2021-28696) - IOMMU page mapping issues on x86 Xen . org security team
Xen Security Advisory 380 v3 (CVE-2021-28698) - long running loops in grant table handling Xen . org security team
Re: Linux kernel: fs/btrfs: null-ptr-dereference bug in btrfs_rm_device in fs/btrfs/volumes.c butt3rflyh4ck
CVE-2021-3753: A out-of-bounds caused by the race of KDSETMODE in vt for latest Linux Minh Yuan
Re: Xen Security Advisory 378 v3 (CVE-2021-28694,CVE-2021-28695,CVE-2021-28696) - IOMMU page mapping issues on x86 Jason Andryuk
Re: Xen Security Advisory 378 v3 (CVE-2021-28694,CVE-2021-28695,CVE-2021-28696) - IOMMU page mapping issues on x86 Andrew Cooper
Thursday, 02 September
CVE-2019-10095: Apache Zeppelin: bash command injection in spark interpreter Jeff Zhang
CVE-2020-13929: Apache Zeppelin: Notebook permissions bypass Jeff Zhang
CVE-2021-27578: Apache Zeppelin: Cross Site Scripting in markdown interpreter Jeff Zhang
Monday, 06 September
Re: Oracle Solaris membership in the distros list Solar Designer
Re: Possible memory leak on getspnam / getspnam_r Solar Designer
Tuesday, 07 September
CVE-2021-3715 Linux kernel: use-after-free in route4_change() in net/sched/cls_route.c Rohit Keshri
Re: CVE-2021-3715 Linux kernel: use-after-free in route4_change() in net/sched/cls_route.c Greg KH
Re: Pop!_OS Membership to linux-distros list Jeremy Soller
Wednesday, 08 September
Re: CVE-2021-3715 Linux kernel: use-after-free in route4_change() in net/sched/cls_route.c Rohit Keshri
Xen Security Advisory 384 v3 (CVE-2021-28701) - Another race in XENMAPSPACE_grant_table handling Xen . org security team
CVE-2021-3773: Lack of port sanity checking in natd and Netfilter leads to exploit of OpenVPN clients on Linux and FreeBSD platforms Ben
Thursday, 09 September
CVE-2021-38540: Apache Airflow: Variable Import endpoint missed authentication check Kaxil Naik
[OSSA-2021-006] Neutron: Routes middleware memory leak for nonexistent controllers (CVE-2021-40797) Jeremy Stanley
Saturday, 11 September
CVE-2021-38555: An XML external entity (XXE) injection vulnerability exists in Apache Any23 StreamUtils.java lewis john mcgibbney
CVE-2021-40146: A Remote Code Execution (RCE) vulnerability exists in Apache Any23 YAMLExtractor.java lewis john mcgibbney
Tuesday, 14 September
Disclosure: CVE-2021-3744: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd() Marcus Meissner
Re: Oracle Solaris membership in the distros list Alan Coopersmith
[SECURITY ADVISORY] curl: UAF and double-free in MQTT sending Daniel Stenberg
[SECURITY ADVISORY] curl: Protocol downgrade required TLS bypassed Daniel Stenberg
[SECURITY ADVISORY] curl: STARTTLS protocol injection via MITM Daniel Stenberg
Wednesday, 15 September
CVE-2021-3752: Linux kernel: a uaf bug in bluetooth Luo Likang
[CVE-2021-38300] Linux kernel cBPF JIT compiler for MIPS emits incorrect branches leading to execution of arbitrary Kernel code Piotr Krysiuk
CVE-2021-41079: Apache Tomcat DoS with unexpected TLS packet Mark Thomas
[kubernetes] CVE-2021-25741: Symlink Exchange Can Allow Host Filesystem Access CJ Cullen
[kubernetes] CVE-2020-8561: Webhook redirect in kube-apiserver Hausler, Micah
Thursday, 16 September
CVE-2021-39239: Apache Jena: XML External Entity (XXE) vulnerability Andy Seaborne
CVE-2021-41303: Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass Brian Demers
Containers-optimized OS (COS) membership in the linux-distros list Oleksandr Tymoshenko
Friday, 17 September
CVE-2021-40690: Apache Santuario: Bypass of the secureValidation property Colm O hEigeartaigh
Re: Containers-optimized OS (COS) membership in the linux-distros list Solar Designer
Re: Oracle Solaris membership in the distros list Solar Designer
Saturday, 18 September
Re: Containers-optimized OS (COS) membership in the linux-distros list Kees Cook
Linux Kernel: Exploitable vulnerability in io_uring Valentina Palmiotti
Monday, 20 September
WebKitGTK and WPE WebKit Security Advisory WSA-2021-0005 Carlos Alberto Lopez Perez
Tuesday, 21 September
Re: Containers-optimized OS (COS) membership in the linux-distros list Oleksandr Tymoshenko
CVE-2021-38153: Timing Attack Vulnerability for Apache Kafka Connect and Clients Randall Hauch
Re: Containers-optimized OS (COS) membership in the linux-distros list Solar Designer
Thursday, 23 September
CVE-2021-36749: Apache Druid: The HTTP inputSource allows authenticated users to read data from other sources than intended (incomplete fix of CVE-2021-26920) Clint Wylie
Sunday, 26 September
Announce: OpenSSH 8.8 released Damien Miller
Monday, 27 September
[OSSA-2021-002] Nova: Open Redirect in noVNC proxy (CVE-2021-3654) Jeremy Stanley
Wednesday, 29 September
CVE-2021-41616: Apache ddlutils 1.0 readobject vulnerability Bryan Pendleton
CVE-2021-3762 quay/claircore: directory traversal when scanning crafted container image Przemyslaw Roguski
Thursday, 30 September
security issues in Litex IP stack Philipp Takacs
3 new CVE's in vim Alan Coopersmith