[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 80658 Download | Alert*

A issue has been discovered in the PostgreSQL database system, which could result in privilege escalation. For additional information please refer to the upstream announcement at https://www.postgresql.org/about/news/1960/

Dominik Penner discovered that Kconfig, the KDE configuration settings framework, supported a feature to define shell command execution in .desktop files. If a user is provided with a malformed .desktop file arbitrary commands could get executed. This update removes this feature.

Netanel reported that the .buildfont1 procedure in Ghostscript, the GPL PostScript/PDF interpreter, does not properly restrict privileged calls, which could result in bypass of file system restrictions of the dSAFER sandbox.

It was discovered that the code fixes to address CVE-2018-16858 and CVE-2019-9848 were not complete.

tmpreaper: cleans up files in directories based on their age tmpreaper could be made to overwrite files as the administrator.

subversion: Advanced version control system Subversion could be made to crash if it received specially crafted network traffic.

sigil: multi-platform ebook editor Sigil could be made to overwrite files.

ruby-rack: modular Ruby webserver interface Rack could allow cross-site scripting attacks.

postgresql-11: Object-relational SQL database - postgresql-10: Object-relational SQL database - postgresql-9.5: Object-relational SQL database Several security issues were fixed in PostgreSQL.

ghostscript: PostScript and PDF interpreter Ghostscript could be made to access files if it opened a specially crafted file.


Pages:      Start    3164    3165    3166    3167    3168    3169    3170    3171    3172    3173    3174    3175    3176    3177    ..   8065

© SecPod Technologies