VARIoT IoT vulnerabilities database
| VAR-202006-1878 | CVE-2020-1819 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-1877 | CVE-2020-1818 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-1881 | CVE-2020-1821 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-1879 | CVE-2020-1824 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-1876 | CVE-2020-1823 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-1874 | CVE-2020-1820 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-1873 | CVE-2020-1822 | plural Huawei Product out-of-bounds read vulnerability |
CVSS V2: - CVSS V3: 3.7 Severity: LOW |
There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289)
The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824. IPS Module firmware, NGFW Module firmware, NIP6300 firmware etc. Huawei The product contains an out-of-bounds read vulnerability.Service operation interruption (DoS) It may be in a state
| VAR-202006-0115 | CVE-2020-13227 | Codeorigin Sysax Multi Server Path Traversal Vulnerability |
CVSS V2: 5.0 CVSS V3: 5.3 Severity: MEDIUM |
An issue was discovered in Sysax Multi Server 6.90. An attacker can determine the username (under which the web server is running) by triggering an invalid path permission error. This bypasses the fakepath protection mechanism. Codeorigin Sysax Multi Server is an FTP (File Transfer Protocol) server and Shell server for Windows system of American Codeorigin company. The vulnerability stems from network systems or products failing to properly filter special elements in resources or file paths. An attacker could use the vulnerability to access a location outside the restricted directory
| VAR-202006-1807 | CVE-2020-10878 | Perl Input validation error vulnerability |
CVSS V2: 7.5 CVSS V3: 8.6 Severity: HIGH |
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. An input validation error vulnerability exists in Perl versions prior to 5.30.3. The vulnerability is caused by the program's incorrect handling of the \"PL_regkind[OP(n)] == NOTHING\" case. -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
====================================================================
Red Hat Security Advisory
Synopsis: Moderate: perl security and bug fix update
Advisory ID: RHSA-2021:1678-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2021:1678
Issue date: 2021-05-18
CVE Names: CVE-2020-10543 CVE-2020-10878
====================================================================
1. Summary:
An update for perl is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64
Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64
3. Description:
Perl is a high-level programming language that is commonly used for system
administration utilities and web programming.
Security Fix(es):
* perl: heap-based buffer overflow in regular expression compiler leads to
DoS (CVE-2020-10543)
* perl: corruption of intermediate language state of compiled regular
expression due to integer overflow leads to DoS (CVE-2020-10878)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat
Enterprise Linux 8.4 Release Notes linked from the References section.
4. Solution:
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
5. Bugs fixed (https://bugzilla.redhat.com/):
1807120 - perl-5.26.3-416.el8 FTBFS: ../cpan/Time-Local/t/Local.t test fails in year 2020
1837975 - CVE-2020-10543 perl: heap-based buffer overflow in regular expression compiler leads to DoS
1837988 - CVE-2020-10878 perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS
1903503 - perl-libs: Missing dependency on perl-Encode
1913693 - Not strict restrictive permissions in the doc folders: perl-devel
6. Package List:
Red Hat Enterprise Linux AppStream (v. 8):
aarch64:
perl-5.26.3-419.el8.aarch64.rpm
perl-Devel-Peek-1.26-419.el8.aarch64.rpm
perl-Devel-Peek-debuginfo-1.26-419.el8.aarch64.rpm
perl-IO-debuginfo-1.38-419.el8.aarch64.rpm
perl-Time-Piece-1.31-419.el8.aarch64.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.aarch64.rpm
perl-debuginfo-5.26.3-419.el8.aarch64.rpm
perl-debugsource-5.26.3-419.el8.aarch64.rpm
perl-devel-5.26.3-419.el8.aarch64.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.aarch64.rpm
perl-libs-debuginfo-5.26.3-419.el8.aarch64.rpm
perl-tests-5.26.3-419.el8.aarch64.rpm
noarch:
perl-Attribute-Handlers-0.99-419.el8.noarch.rpm
perl-Devel-SelfStubber-1.06-419.el8.noarch.rpm
perl-ExtUtils-Embed-1.34-419.el8.noarch.rpm
perl-ExtUtils-Miniperl-1.06-419.el8.noarch.rpm
perl-Locale-Maketext-Simple-0.21-419.el8.noarch.rpm
perl-Memoize-1.03-419.el8.noarch.rpm
perl-Module-Loaded-0.08-419.el8.noarch.rpm
perl-Net-Ping-2.55-419.el8.noarch.rpm
perl-Pod-Html-1.22.02-419.el8.noarch.rpm
perl-SelfLoader-1.23-419.el8.noarch.rpm
perl-Test-1.30-419.el8.noarch.rpm
perl-libnetcfg-5.26.3-419.el8.noarch.rpm
perl-open-1.11-419.el8.noarch.rpm
perl-utils-5.26.3-419.el8.noarch.rpm
ppc64le:
perl-5.26.3-419.el8.ppc64le.rpm
perl-Devel-Peek-1.26-419.el8.ppc64le.rpm
perl-Devel-Peek-debuginfo-1.26-419.el8.ppc64le.rpm
perl-IO-debuginfo-1.38-419.el8.ppc64le.rpm
perl-Time-Piece-1.31-419.el8.ppc64le.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.ppc64le.rpm
perl-debuginfo-5.26.3-419.el8.ppc64le.rpm
perl-debugsource-5.26.3-419.el8.ppc64le.rpm
perl-devel-5.26.3-419.el8.ppc64le.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.ppc64le.rpm
perl-libs-debuginfo-5.26.3-419.el8.ppc64le.rpm
perl-tests-5.26.3-419.el8.ppc64le.rpm
s390x:
perl-5.26.3-419.el8.s390x.rpm
perl-Devel-Peek-1.26-419.el8.s390x.rpm
perl-Devel-Peek-debuginfo-1.26-419.el8.s390x.rpm
perl-IO-debuginfo-1.38-419.el8.s390x.rpm
perl-Time-Piece-1.31-419.el8.s390x.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.s390x.rpm
perl-debuginfo-5.26.3-419.el8.s390x.rpm
perl-debugsource-5.26.3-419.el8.s390x.rpm
perl-devel-5.26.3-419.el8.s390x.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.s390x.rpm
perl-libs-debuginfo-5.26.3-419.el8.s390x.rpm
perl-tests-5.26.3-419.el8.s390x.rpm
x86_64:
perl-5.26.3-419.el8.x86_64.rpm
perl-Devel-Peek-1.26-419.el8.x86_64.rpm
perl-Devel-Peek-debuginfo-1.26-419.el8.i686.rpm
perl-Devel-Peek-debuginfo-1.26-419.el8.x86_64.rpm
perl-IO-debuginfo-1.38-419.el8.i686.rpm
perl-IO-debuginfo-1.38-419.el8.x86_64.rpm
perl-Time-Piece-1.31-419.el8.x86_64.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.i686.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.x86_64.rpm
perl-debuginfo-5.26.3-419.el8.i686.rpm
perl-debuginfo-5.26.3-419.el8.x86_64.rpm
perl-debugsource-5.26.3-419.el8.i686.rpm
perl-debugsource-5.26.3-419.el8.x86_64.rpm
perl-devel-5.26.3-419.el8.i686.rpm
perl-devel-5.26.3-419.el8.x86_64.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.i686.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.x86_64.rpm
perl-libs-debuginfo-5.26.3-419.el8.i686.rpm
perl-libs-debuginfo-5.26.3-419.el8.x86_64.rpm
perl-tests-5.26.3-419.el8.x86_64.rpm
Red Hat Enterprise Linux BaseOS (v. 8):
Source:
perl-5.26.3-419.el8.src.rpm
aarch64:
perl-Devel-Peek-debuginfo-1.26-419.el8.aarch64.rpm
perl-Errno-1.28-419.el8.aarch64.rpm
perl-IO-1.38-419.el8.aarch64.rpm
perl-IO-debuginfo-1.38-419.el8.aarch64.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.aarch64.rpm
perl-debuginfo-5.26.3-419.el8.aarch64.rpm
perl-debugsource-5.26.3-419.el8.aarch64.rpm
perl-interpreter-5.26.3-419.el8.aarch64.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.aarch64.rpm
perl-libs-5.26.3-419.el8.aarch64.rpm
perl-libs-debuginfo-5.26.3-419.el8.aarch64.rpm
perl-macros-5.26.3-419.el8.aarch64.rpm
noarch:
perl-IO-Zlib-1.10-419.el8.noarch.rpm
perl-Math-Complex-1.59-419.el8.noarch.rpm
ppc64le:
perl-Devel-Peek-debuginfo-1.26-419.el8.ppc64le.rpm
perl-Errno-1.28-419.el8.ppc64le.rpm
perl-IO-1.38-419.el8.ppc64le.rpm
perl-IO-debuginfo-1.38-419.el8.ppc64le.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.ppc64le.rpm
perl-debuginfo-5.26.3-419.el8.ppc64le.rpm
perl-debugsource-5.26.3-419.el8.ppc64le.rpm
perl-interpreter-5.26.3-419.el8.ppc64le.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.ppc64le.rpm
perl-libs-5.26.3-419.el8.ppc64le.rpm
perl-libs-debuginfo-5.26.3-419.el8.ppc64le.rpm
perl-macros-5.26.3-419.el8.ppc64le.rpm
s390x:
perl-Devel-Peek-debuginfo-1.26-419.el8.s390x.rpm
perl-Errno-1.28-419.el8.s390x.rpm
perl-IO-1.38-419.el8.s390x.rpm
perl-IO-debuginfo-1.38-419.el8.s390x.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.s390x.rpm
perl-debuginfo-5.26.3-419.el8.s390x.rpm
perl-debugsource-5.26.3-419.el8.s390x.rpm
perl-interpreter-5.26.3-419.el8.s390x.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.s390x.rpm
perl-libs-5.26.3-419.el8.s390x.rpm
perl-libs-debuginfo-5.26.3-419.el8.s390x.rpm
perl-macros-5.26.3-419.el8.s390x.rpm
x86_64:
perl-Devel-Peek-debuginfo-1.26-419.el8.i686.rpm
perl-Devel-Peek-debuginfo-1.26-419.el8.x86_64.rpm
perl-Errno-1.28-419.el8.x86_64.rpm
perl-IO-1.38-419.el8.x86_64.rpm
perl-IO-debuginfo-1.38-419.el8.i686.rpm
perl-IO-debuginfo-1.38-419.el8.x86_64.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.i686.rpm
perl-Time-Piece-debuginfo-1.31-419.el8.x86_64.rpm
perl-debuginfo-5.26.3-419.el8.i686.rpm
perl-debuginfo-5.26.3-419.el8.x86_64.rpm
perl-debugsource-5.26.3-419.el8.i686.rpm
perl-debugsource-5.26.3-419.el8.x86_64.rpm
perl-interpreter-5.26.3-419.el8.x86_64.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.i686.rpm
perl-interpreter-debuginfo-5.26.3-419.el8.x86_64.rpm
perl-libs-5.26.3-419.el8.i686.rpm
perl-libs-5.26.3-419.el8.x86_64.rpm
perl-libs-debuginfo-5.26.3-419.el8.i686.rpm
perl-libs-debuginfo-5.26.3-419.el8.x86_64.rpm
perl-macros-5.26.3-419.el8.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/
7. References:
https://access.redhat.com/security/cve/CVE-2020-10543
https://access.redhat.com/security/cve/CVE-2020-10878
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/
8. Contact:
The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
Copyright 2021 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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4I2W
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://listman.redhat.com/mailman/listinfo/rhsa-announce
. Summary:
Red Hat Advanced Cluster Management for Kubernetes 2.0.8 General
Availability release, which fixes bugs and security issues. Description:
Red Hat Advanced Cluster Management for Kubernetes 2.0.8 images.
Red Hat Advanced Cluster Management for Kubernetes provides the
capabilities to address common challenges that administrators and site
reliability engineers face as they work across a range of public and
private cloud environments. Clusters and applications are all visible and
managed from a single console—with security policy built in.
Bug fix:
* RHACM 2.0.8 images (BZ #1915461)
3. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied. Bugs fixed (https://bugzilla.redhat.com/):
1915461 - RHACM 2.0.8 images
1921650 - CVE-2021-3121 gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation
5.
Bug Fix(es):
* [perl-net-ping] wrong return value on failing DNS name lookup
(BZ#1973177)
4. Summary:
Openshift Logging Bug Fix Release (5.0.4)
This release includes a security update. Solution:
For OpenShift Container Platform 4.7 see the following documentation, which
will be updated shortly for this release, for important instructions on how
to upgrade your cluster and fully apply this errata update:
https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-rel
ease-notes.html
For Red Hat OpenShift Logging 5.0, see the following instructions to apply
this update:
https://docs.openshift.com/container-platform/4.7/logging/cluster-logging-u
pgrading.html
4. JIRA issues fixed (https://issues.jboss.org/):
LOG-1328 - Port fix to 5.0.z for BZ-1945168
6. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 202006-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Perl: Multiple vulnerabilities
Date: June 12, 2020
Bugs: #723792
ID: 202006-03
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
========
Multiple vulnerabilities have been found in Perl, the worst of which
could result in a Denial of Service condition.
Affected packages
=================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-lang/perl < 5.30.3 >= 5.30.3
Description
===========
Multiple vulnerabilities have been discovered in Perl. Please review
the CVE identifiers referenced below for details.
Impact
======
Please review the referenced CVE identifiers for details.
Workaround
==========
There is no known workaround at this time.
Resolution
==========
All Perl users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-lang/perl-5.30.3"
References
==========
[ 1 ] CVE-2020-10543
https://nvd.nist.gov/vuln/detail/CVE-2020-10543
[ 2 ] CVE-2020-10878
https://nvd.nist.gov/vuln/detail/CVE-2020-10878
[ 3 ] CVE-2020-12723
https://nvd.nist.gov/vuln/detail/CVE-2020-12723
Availability
============
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
https://security.gentoo.org/glsa/202006-03
Concerns?
=========
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
https://bugs.gentoo.org.
License
=======
Copyright 2020 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).
The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
https://creativecommons.org/licenses/by-sa/2.5
. Description:
Security Fix(es):
* Addressed a security issue which can allow a malicious playbook author to
elevate to the awx user from outside the isolated environment:
CVE-2021-20253
* Upgraded to a more recent version of autobahn to address CVE-2020-35678.
* Upgraded to a more recent version of nginx to address CVE-2019-20372.
Bug Fix(es):
* Fixed a bug which can intermittently cause access to encrypted Tower
settings to fail, resulting in failed job launches.
* Improved analytics collection to collect the playbook status for all
hosts in a playbook run
3. Solution:
For information on upgrading Ansible Tower, reference the Ansible Tower
Upgrade and Migration Guide:
https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/
index.html
4. Bugs fixed (https://bugzilla.redhat.com/):
1790277 - CVE-2019-20372 nginx: HTTP request smuggling in configurations with URL redirect used as error_page
1911314 - CVE-2020-35678 python-autobahn: allows redirect header injection
1928847 - CVE-2021-20253 ansible-tower: Privilege escalation via job isolation escape
5. ==========================================================================
Ubuntu Security Notice USN-4602-1
October 26, 2020
perl vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Summary:
Several security issues were fixed in Perl.
Software Description:
- perl: Practical Extraction and Report Language
Details:
ManhND discovered that Perl incorrectly handled certain regular
expressions. In environments where untrusted regular expressions are
evaluated, a remote attacker could possibly use this issue to cause Perl to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2020-10543)
Hugo van der Sanden and Slaven Rezic discovered that Perl incorrectly
handled certain regular expressions. In environments where untrusted
regular expressions are evaluated, a remote attacker could possibly use
this issue to cause Perl to crash, resulting in a denial of service, or
possibly execute arbitrary code. (CVE-2020-10878)
Sergey Aleynikov discovered that Perl incorrectly handled certain regular
expressions. In environments where untrusted regular expressions are
evaluated, a remote attacker could possibly use this issue to cause Perl to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2020-12723)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 20.04 LTS:
perl 5.30.0-9ubuntu0.2
Ubuntu 18.04 LTS:
perl 5.26.1-6ubuntu0.5
Ubuntu 16.04 LTS:
perl 5.22.1-9ubuntu0.9
In general, a standard system update will make all the necessary changes
| VAR-202006-0750 | CVE-2019-16150 | Windows for FortiClient Vulnerability in using hard-coded credentials in |
CVSS V2: 5.0 CVSS V3: 5.5 Severity: MEDIUM |
Use of a hard-coded cryptographic key to encrypt security sensitive data in local storage and configuration in FortiClient for Windows prior to 6.4.0 may allow an attacker with access to the local storage or the configuration backup file to decrypt the sensitive data via knowledge of the hard-coded key. Windows for FortiClient Contains a vulnerability in the use of hard-coded credentials.Information may be obtained. Fortinet FortiClient is a mobile terminal security solution developed by Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to FortiGate firewall appliances. There is a security vulnerability in Fortinet FortiClient versions earlier than 6.4.0 based on the Windows platform. An attacker could exploit this vulnerability to decrypt sensitive information
| VAR-202006-0751 | CVE-2019-17603 | Asus Aura Sync Out-of-bounds write vulnerability in |
CVSS V2: 7.2 CVSS V3: 7.8 Severity: HIGH |
Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, which allows local users to cause a denial of service (system crash) or gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption. Asus Aura Sync Is vulnerable to out-of-bounds writes.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. ASUS Aura Sync is a hardware light synchronization plug-in from Taiwan ASUS Corporation. A security vulnerability exists in the Ene.sys file in ASUS Aura Sync 1.07.71 and earlier. The vulnerability stems from the program failing to properly validate input sent to IOCTL 0x80102044, 0x80102050, and 0x80102054
| VAR-202007-0044 | CVE-2020-10917 | NEC ESMPRO Manager Unreliable data deserialization vulnerability in |
CVSS V2: 7.5 CVSS V3: 9.8 Severity: CRITICAL |
This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-10007. NEC ESMPRO Manager Contains a vulnerability in the deserialization of unreliable data. Zero Day Initiative To this vulnerability ZDI-CAN-10007 Was numbered.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. NEC ESMPRO Manager is a product of NEC Corporation for managing NEC servers. The product supports management and monitoring of server CPU load, memory usage, disk usage, server hard disk protection status and LAN traffic status. The vulnerability stems from the program's failure to correctly verify user data
| VAR-202006-0258 | CVE-2020-10136 | IP-in-IP protocol routes arbitrary traffic by default |
CVSS V2: 5.0 CVSS V3: 5.3 Severity: MEDIUM |
IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing. IP-in-IP encapsulation is a tunneling protocol specified in RFC 2003 that allows for IP packets to be encapsulated inside another IP packets. This is very similar to IPSEC VPNs in tunnel mode, except in the case of IP-in-IP, the traffic is unencrypted. An IP-in-IP device is considered to be vulnerable if it accepts IP-in-IP packets from any source to any destination without explicit configuration between the specified source and destination IP addresses. This unexpected Data Processing Error (CWE-19) by a vulnerable device can be abused to perform reflective DDoS and in certain scenarios used to bypass network access control lists. Because the forwarded network packet may not be inspected or verified by vulnerable devices, there are possibly other unexpected behaviors that can be abused by an attacker on the target device or the target device's network environment. An unauthenticated attacker can route network traffic through a vulnerable device, which may lead to reflective DDoS, information leak and bypass of network access controls. Tunnelling protocols are an essential part of the Internet and form much of the backbone that modern network infrastructure relies on today. One limitation of these protocols is that they do not authenticate and/or encrypt traffic. Though this limitation exists, IPsec can be implemented to help prevent attacks. However, implementation of these protocols have been executed poorly in some areas.CVE-2020-10136 Affected
Vendor Statement:
Cisco has fixed products affected by this CVE in its default configuration and released a security advisory for it at the time of the original disclosure in 2020. Please refer to VU#636397 and to the security advisory link in the References section.
References:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ipip-dos-kCT9X4
CVE-2024-7595 Not Affected
CVE-2024-7596 Not Affected
CVE-2025-23018 Not Affected
CVE-2025-23019 Not AffectedCVE-2020-10136 Affected
Vendor Statement:
Cisco has fixed products affected by this CVE in its default configuration and released a security advisory for it at the time of the original disclosure in 2020. Please refer to VU#636397 and to the security advisory link in the References section.
References:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ipip-dos-kCT9X4
CVE-2024-7595 Not Affected
CVE-2024-7596 Not Affected
CVE-2025-23018 Not Affected
CVE-2025-23019 Not Affected. Cisco NX-OS Software is a data center-level operating system software used by a set of switches of Cisco. A code issue vulnerability exists in Cisco NX-OS Software due to the program decapsulating and processing the IP in an IP packet destined for a locally configured IP address. A remote attacker can exploit this vulnerability to bypass the access control list or cause a denial of service by means of a specially crafted IP in the IP packet. The following products and versions are affected: Nexus 1000 Virtual Edge for VMware vSphere; Nexus 1000V Switch for Microsoft Hyper-V; Nexus 1000V Switch for VMware vSphere; Nexus 3000 Series Switches; Nexus 5500 Platform Switches; Nexus 5600 Platform Switches; Nexus 6000 Switches ; Nexus 7000 Series Switches; Nexus 9000 Series Switches in standalone NX-OS mode; UCS 6200 Series Fabric Interconnects; UCS 6300 Series Fabric Interconnects
| VAR-202006-1915 | No CVE | Beijing Jiekong FameView configuration software has command execution vulnerability |
CVSS V2: 7.2 CVSS V3: - Severity: HIGH |
FameView configuration software is a high-performance configuration monitoring software based on Windows operating system, which is developed by Beijing Jiekong Company based on many years of engineering application and service experience. It provides economical and perfect automation solutions.
Beijing Jiekong FameView configuration software has a command execution loophole, which can be used by attackers to execute arbitrary commands.
| VAR-202006-1196 | CVE-2014-7173 | FarSite Communications FarLinX X25 Gateway operating system command injection vulnerability |
CVSS V2: 7.5 CVSS V3: 9.8 Severity: CRITICAL |
FarLinX X25 Gateway through 2014-09-25 allows command injection via shell metacharacters to sysSaveMonitorData.php, fsx25MonProxy.php, syseditdate.php, iframeupload.php, or sysRestoreX25Cplt.php. FarLinX X25 Gateway To OS A command injection vulnerability exists.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. FarSite Communications FarLinX X25 Gateway is a gateway product of FarSite Communications in the UK. The product has a browser interface, online statistical information set, connection log records, active session display, and status change alerts.
FarSite Communications FarLinX X25 Gateway 2014-09-25 and previous versions of sysSaveMonitorData.php file, fsx25MonProxy.php file, syseditdate.php file, iframeupload.php file and sysRestoreX25Cplt.php file have operating system command injection vulnerabilities, attackers can use Shell metacharacters use this vulnerability to inject commands
| VAR-202006-1195 | CVE-2014-7175 | FarLinX X25 Gateway Out-of-bounds write vulnerability in |
CVSS V2: 7.5 CVSS V3: 9.8 Severity: CRITICAL |
FarLinX X25 Gateway through 2014-09-25 allows attackers to write arbitrary data to fsUI.xyz via fsSaveUIPersistence.php. FarLinX X25 Gateway Is vulnerable to out-of-bounds writes.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. FarSite Communications FarLinX X25 Gateway is a gateway product of FarSite Communications in the UK. The product has a browser interface, online statistical information set, connection log records, active session display, and status change alerts
| VAR-202006-1680 | CVE-2020-6868 | ZTE F680 input validation error vulnerability |
CVSS V2: 3.3 CVSS V3: 6.5 Severity: MEDIUM |
There is an input validation vulnerability in a PON terminal product of ZTE, which supports the creation of WAN connections through WEB management pages. The front-end limits the length of the WAN connection name that is created, but the HTTP proxy is available to be used to bypass the limitation. An attacker can exploit the vulnerability to tamper with the parameter value. This affects: ZTE F680 V9.0.10P1N6. ZTE F680 is a dual-band GPON home gateway device with external antennas from ZTE Corporation of China.
There is a security vulnerability in the ZTE F680 V9.0.10P1N6 version, which stems from incorrect access control. Attackers can use this vulnerability to tamper with the program interface parameters to perform unauthenticated operations
| VAR-202006-1197 | CVE-2014-7174 | FarLinX X25 Gateway Past Traversal Vulnerability in |
CVSS V2: 5.0 CVSS V3: 5.3 Severity: MEDIUM |
FarLinX X25 Gateway through 2014-09-25 allows directory traversal via the log-handling feature. FarSite Communications FarLinX X25 Gateway is a gateway product of FarSite Communications in the UK. The product has a browser interface, online statistical information set, connection log records, active session display, and status change alerts. The vulnerability stems from network systems or products failing to properly filter special elements in resources or file paths. Attackers can use this vulnerability to restrict access Location outside the directory
| VAR-202006-0429 | CVE-2020-13401 | Docker Engine Input verification vulnerability in |
CVSS V2: 6.0 CVSS V3: 6.0 Severity: MEDIUM |
An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service. Docker Engine There is an input verification vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state.
For the stable distribution (buster), this problem has been fixed in
version 18.09.1+dfsg1-7.1+deb10u2.
We recommend that you upgrade your docker.io packages.
For the detailed security status of docker.io please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/docker.io
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----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=vIL3
-----END PGP SIGNATURE-----
. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 202008-15
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Docker: Information disclosure
Date: August 26, 2020
Bugs: #729208
ID: 202008-15
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
========
A flaw in Docker allowed possible information leakage.
Background
==========
Docker is the world’s leading software containerization platform.
Affected packages
=================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 app-emulation/docker < 19.03.12 >= 19.03.12
Description
===========
It was found that Docker created network bridges which by default
accept IPv6 router advertisements.
Workaround
==========
There is no known workaround at this time.
Resolution
==========
All Docker users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-emulation/docker-19.03.12"
References
==========
[ 1 ] CVE-2020-13401
https://nvd.nist.gov/vuln/detail/CVE-2020-13401
Availability
============
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
https://security.gentoo.org/glsa/202008-15
Concerns?
=========
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
https://bugs.gentoo.org.
License
=======
Copyright 2020 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).
The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
https://creativecommons.org/licenses/by-sa/2.5
| VAR-202006-1646 | CVE-2020-9859 | plural Apple Product memory consumption vulnerabilities |
CVSS V2: 7.2 CVSS V3: 7.8 Severity: HIGH |
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.5.1 and iPadOS 13.5.1, macOS Catalina 10.15.5 Supplemental Update, tvOS 13.4.6, watchOS 6.2.6. An application may be able to execute arbitrary code with kernel privileges. Apple iOS, etc. are all products of Apple (Apple). Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. Apple macOS Catalina is a dedicated operating system developed for Mac computers. Kernel is one of the kernel components. Kernel components in several Apple products have security vulnerabilities. The following products and versions are affected: Apple macOS Catalina prior to 10.15.5; tvOS prior to 13.4.6; watchOS prior to 6.2.6; iOS prior to 13.5.1; iPadOS prior to 13.5.1. -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
APPLE-SA-2020-06-01-1 iOS 13.5.1 and iPadOS 13.5.1
iOS 13.5.1 and iPadOS 13.5.1 are now available and address the
following:
Kernel
Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4
and later, and iPod touch 7th generation
Impact: An application may be able to execute arbitrary code with
kernel privileges
Description: A memory consumption issue was addressed with improved
memory handling.
CVE-2020-9859: unc0ver
Installation note:
This update is available through iTunes and Software Update on your
iOS device, and will not appear in your computer's Software Update
application, or in the Apple Downloads site. Make sure you have an
Internet connection and have installed the latest version of iTunes
from https://www.apple.com/itunes/
iTunes and Software Update on the device will automatically check
Apple's update server on its weekly schedule. When an update is
detected, it is downloaded and the option to be installed is
presented to the user when the iOS device is docked. We recommend
applying the update immediately if possible. Selecting Don't Install
will present the option the next time you connect your iOS device.
The automatic update process may take up to a week depending on the
day that iTunes or the device checks for updates. You may manually
obtain the update via the Check for Updates button within iTunes, or
the Software Update on your device.
To check that the iPhone, iPod touch, or iPad has been updated:
* Navigate to Settings
* Select General
* Select About. The version after applying this update
will be "iOS 13.5.1 and iPadOS 13.5.1".
-----BEGIN PGP SIGNATURE-----
Version: BCPG v1.64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=JYpD
-----END PGP SIGNATURE-----
.
Alternatively, on your watch, select "My Watch > General > About"