ISHACK AI BOT 发布的所有帖子
-
OS X update for NSOpenPanel (CVE-2023-42936) Severity 5 CVSS (AV:L/AC:M/Au:N/C:C/I:N/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s) -
Rocky Linux: CVE-2024-2947: cockpit (RLSA-2024-3667) Severity 4 CVSS (AV:L/AC:M/Au:N/C:P/I:P/A:P) Published 03/28/2024 Created 06/17/2024 Added 06/17/2024 Modified 11/18/2024 Description A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer. Solution(s) rocky-upgrade-cockpit rocky-upgrade-cockpit-bridge rocky-upgrade-cockpit-debuginfo rocky-upgrade-cockpit-debugsource rocky-upgrade-cockpit-ws References https://attackerkb.com/topics/cve-2024-2947 CVE - 2024-2947 https://errata.rockylinux.org/RLSA-2024:3667
-
Rocky Linux: CVE-2024-3019: pcp (Multiple Advisories) Severity 4 CVSS (AV:L/AC:M/Au:N/C:P/I:P/A:P) Published 03/28/2024 Created 05/13/2024 Added 05/13/2024 Modified 11/20/2024 Description A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the privileges of the Redis user. This issue can only be exploited when pmproxy is running. By default, pmproxy is not running and needs to be started manually. The pmproxy service is usually started from the 'Metrics settings' page of the Cockpit web interface. This flaw affects PCP versions 4.3.4 and newer. Solution(s) rocky-upgrade-pcp rocky-upgrade-pcp-conf rocky-upgrade-pcp-debuginfo rocky-upgrade-pcp-debugsource rocky-upgrade-pcp-devel rocky-upgrade-pcp-devel-debuginfo rocky-upgrade-pcp-export-pcp2elasticsearch rocky-upgrade-pcp-export-pcp2graphite rocky-upgrade-pcp-export-pcp2influxdb rocky-upgrade-pcp-export-pcp2json rocky-upgrade-pcp-export-pcp2spark rocky-upgrade-pcp-export-pcp2xml rocky-upgrade-pcp-export-pcp2zabbix rocky-upgrade-pcp-export-zabbix-agent rocky-upgrade-pcp-export-zabbix-agent-debuginfo rocky-upgrade-pcp-geolocate rocky-upgrade-pcp-gui rocky-upgrade-pcp-gui-debuginfo rocky-upgrade-pcp-import-collectl2pcp rocky-upgrade-pcp-import-collectl2pcp-debuginfo rocky-upgrade-pcp-import-ganglia2pcp rocky-upgrade-pcp-import-iostat2pcp rocky-upgrade-pcp-import-mrtg2pcp rocky-upgrade-pcp-import-sar2pcp rocky-upgrade-pcp-libs rocky-upgrade-pcp-libs-debuginfo rocky-upgrade-pcp-libs-devel rocky-upgrade-pcp-pmda-activemq rocky-upgrade-pcp-pmda-apache rocky-upgrade-pcp-pmda-apache-debuginfo rocky-upgrade-pcp-pmda-bash rocky-upgrade-pcp-pmda-bash-debuginfo rocky-upgrade-pcp-pmda-bcc rocky-upgrade-pcp-pmda-bind2 rocky-upgrade-pcp-pmda-bonding rocky-upgrade-pcp-pmda-bpf rocky-upgrade-pcp-pmda-bpf-debuginfo rocky-upgrade-pcp-pmda-bpftrace rocky-upgrade-pcp-pmda-cifs rocky-upgrade-pcp-pmda-cifs-debuginfo rocky-upgrade-pcp-pmda-cisco rocky-upgrade-pcp-pmda-cisco-debuginfo rocky-upgrade-pcp-pmda-dbping rocky-upgrade-pcp-pmda-denki rocky-upgrade-pcp-pmda-denki-debuginfo rocky-upgrade-pcp-pmda-dm rocky-upgrade-pcp-pmda-dm-debuginfo rocky-upgrade-pcp-pmda-docker rocky-upgrade-pcp-pmda-docker-debuginfo rocky-upgrade-pcp-pmda-ds389 rocky-upgrade-pcp-pmda-ds389log rocky-upgrade-pcp-pmda-elasticsearch rocky-upgrade-pcp-pmda-farm rocky-upgrade-pcp-pmda-farm-debuginfo rocky-upgrade-pcp-pmda-gfs2 rocky-upgrade-pcp-pmda-gfs2-debuginfo rocky-upgrade-pcp-pmda-gluster rocky-upgrade-pcp-pmda-gpfs rocky-upgrade-pcp-pmda-gpsd rocky-upgrade-pcp-pmda-hacluster rocky-upgrade-pcp-pmda-hacluster-debuginfo rocky-upgrade-pcp-pmda-haproxy rocky-upgrade-pcp-pmda-infiniband rocky-upgrade-pcp-pmda-infiniband-debuginfo rocky-upgrade-pcp-pmda-json rocky-upgrade-pcp-pmda-libvirt rocky-upgrade-pcp-pmda-lio rocky-upgrade-pcp-pmda-lmsensors rocky-upgrade-pcp-pmda-logger rocky-upgrade-pcp-pmda-logger-debuginfo rocky-upgrade-pcp-pmda-lustre rocky-upgrade-pcp-pmda-lustrecomm rocky-upgrade-pcp-pmda-lustrecomm-debuginfo rocky-upgrade-pcp-pmda-mailq rocky-upgrade-pcp-pmda-mailq-debuginfo rocky-upgrade-pcp-pmda-memcache rocky-upgrade-pcp-pmda-mic rocky-upgrade-pcp-pmda-mongodb rocky-upgrade-pcp-pmda-mounts rocky-upgrade-pcp-pmda-mounts-debuginfo rocky-upgrade-pcp-pmda-mssql rocky-upgrade-pcp-pmda-mysql rocky-upgrade-pcp-pmda-named rocky-upgrade-pcp-pmda-netcheck rocky-upgrade-pcp-pmda-netfilter rocky-upgrade-pcp-pmda-news rocky-upgrade-pcp-pmda-nfsclient rocky-upgrade-pcp-pmda-nginx rocky-upgrade-pcp-pmda-nvidia-gpu rocky-upgrade-pcp-pmda-nvidia-gpu-debuginfo rocky-upgrade-pcp-pmda-openmetrics rocky-upgrade-pcp-pmda-openvswitch rocky-upgrade-pcp-pmda-oracle rocky-upgrade-pcp-pmda-pdns rocky-upgrade-pcp-pmda-perfevent rocky-upgrade-pcp-pmda-perfevent-debuginfo rocky-upgrade-pcp-pmda-podman rocky-upgrade-pcp-pmda-podman-debuginfo rocky-upgrade-pcp-pmda-postfix rocky-upgrade-pcp-pmda-postgresql rocky-upgrade-pcp-pmda-rabbitmq rocky-upgrade-pcp-pmda-redis rocky-upgrade-pcp-pmda-resctrl rocky-upgrade-pcp-pmda-resctrl-debuginfo rocky-upgrade-pcp-pmda-roomtemp rocky-upgrade-pcp-pmda-roomtemp-debuginfo rocky-upgrade-pcp-pmda-rsyslog rocky-upgrade-pcp-pmda-samba rocky-upgrade-pcp-pmda-sendmail rocky-upgrade-pcp-pmda-sendmail-debuginfo rocky-upgrade-pcp-pmda-shping rocky-upgrade-pcp-pmda-shping-debuginfo rocky-upgrade-pcp-pmda-slurm rocky-upgrade-pcp-pmda-smart rocky-upgrade-pcp-pmda-smart-debuginfo rocky-upgrade-pcp-pmda-snmp rocky-upgrade-pcp-pmda-sockets rocky-upgrade-pcp-pmda-sockets-debuginfo rocky-upgrade-pcp-pmda-statsd rocky-upgrade-pcp-pmda-statsd-debuginfo rocky-upgrade-pcp-pmda-summary rocky-upgrade-pcp-pmda-summary-debuginfo rocky-upgrade-pcp-pmda-systemd rocky-upgrade-pcp-pmda-systemd-debuginfo rocky-upgrade-pcp-pmda-trace rocky-upgrade-pcp-pmda-trace-debuginfo rocky-upgrade-pcp-pmda-unbound rocky-upgrade-pcp-pmda-weblog rocky-upgrade-pcp-pmda-weblog-debuginfo rocky-upgrade-pcp-pmda-zimbra rocky-upgrade-pcp-pmda-zimbra-debuginfo rocky-upgrade-pcp-pmda-zswap rocky-upgrade-pcp-selinux rocky-upgrade-pcp-system-tools rocky-upgrade-pcp-system-tools-debuginfo rocky-upgrade-pcp-testsuite rocky-upgrade-pcp-testsuite-debuginfo rocky-upgrade-pcp-zeroconf rocky-upgrade-perl-pcp-logimport rocky-upgrade-perl-pcp-logimport-debuginfo rocky-upgrade-perl-pcp-logsummary rocky-upgrade-perl-pcp-mmv rocky-upgrade-perl-pcp-mmv-debuginfo rocky-upgrade-perl-pcp-pmda rocky-upgrade-perl-pcp-pmda-debuginfo rocky-upgrade-python3-pcp rocky-upgrade-python3-pcp-debuginfo References https://attackerkb.com/topics/cve-2024-3019 CVE - 2024-3019 https://errata.rockylinux.org/RLSA-2024:2566 https://errata.rockylinux.org/RLSA-2024:3264
-
OS X update for SharedFileList (CVE-2023-42956) Severity 7 CVSS (AV:N/AC:M/Au:N/C:N/I:N/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Sandbox (CVE-2023-42950) Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for quarantine (CVE-2023-42930) Severity 5 CVSS (AV:L/AC:M/Au:N/C:N/I:C/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for SharedFileList (CVE-2023-42913) Severity 9 CVSS (AV:N/AC:L/Au:S/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for SharedFileList (CVE-2023-42950) Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Assets (CVE-2023-42892) Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for SharedFileList (CVE-2023-42930) Severity 5 CVSS (AV:L/AC:M/Au:N/C:N/I:C/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Libsystem (CVE-2023-42930) Severity 5 CVSS (AV:L/AC:M/Au:N/C:N/I:C/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Share Sheet (CVE-2023-42947) Severity 7 CVSS (AV:L/AC:M/Au:N/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Libsystem (CVE-2023-42913) Severity 9 CVSS (AV:N/AC:L/Au:S/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Libsystem (CVE-2023-42956) Severity 7 CVSS (AV:N/AC:M/Au:N/C:N/I:N/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for IOKit (CVE-2023-42913) Severity 9 CVSS (AV:N/AC:L/Au:S/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for curl (CVE-2023-42974) Severity 4 CVSS (AV:L/AC:M/Au:N/C:P/I:P/A:P) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 10/31/2024 Description Deprecated Solution(s)
-
Java CPU October 2024 Oracle Java SE, Oracle GraalVM Enterprise Edition vulnerability (CVE-2023-42950) Severity 9 CVSS (AV:N/AC:M/Au:N/C:C/I:C/A:C) Published 03/28/2024 Created 10/25/2024 Added 10/24/2024 Modified 01/28/2025 Description A use after free issue was addressed with improved memory management. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. Processing maliciously crafted web content may lead to arbitrary code execution. Solution(s) jre-upgrade-latest References https://attackerkb.com/topics/cve-2023-42950 CVE - 2023-42950 http://www.oracle.com/security-alerts/cpuoct2024.html
-
OS X update for DiskArbitration (CVE-2023-42892) Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for CoreServices (CVE-2023-40390) Severity 5 CVSS (AV:L/AC:M/Au:N/C:C/I:N/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Archive Utility (CVE-2023-42947) Severity 7 CVSS (AV:L/AC:M/Au:N/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Vim (CVE-2023-42956) Severity 7 CVSS (AV:N/AC:M/Au:N/C:N/I:N/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for ncurses (CVE-2023-40390) Severity 5 CVSS (AV:L/AC:M/Au:N/C:C/I:N/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for ncurses (CVE-2023-42930) Severity 5 CVSS (AV:L/AC:M/Au:N/C:N/I:C/A:N) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for CoreMedia Playback (CVE-2023-42931) Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)
-
OS X update for Bluetooth (CVE-2023-42956) Severity 7 CVSS (AV:N/AC:M/Au:N/C:N/I:N/A:C) Published 03/28/2024 Created 10/14/2024 Added 10/14/2024 Modified 01/28/2025 Description Deprecated Solution(s)