Questions tagged [cve]
Common Vulnerabilities and Exposures
20 questions
1 vote
1 answer
315 views
Is using a custom MariaDB docker image advisable?
I found that the official mariadb images on Docker Hub have larger amounts of vulnerabilities (even 3 with severity critical). Most of them are caused by the package golang / stdlib / 1.18.2. I ...
- 375
2 votes
1 answer
1k views
Debsecan showing deprecated linux-libc-dev
I am hardening a debian 12 server right now and I am trying to find and patch CVEs using debsecan. When I run debsecan --suite bookworm I get a list of CVEs with most of them being related to linux-...
- 51
0 votes
1 answer
518 views
How to determine what CVE is back ported to what version of package?
I'm trying to determine what version of apache is backported for CVE-2021-40438. I'm very confused as to how to find out. Our spacewalk server has multiple apache versions of 2.4.37 from -10 to -56 ...
- 1
0 votes
1 answer
1k views
How to perform security updates of Docker Alpine
I stumbled upon a tricky situation: I read on the Docker Alpine main page that the image is getting updated every month for minor versions/security fixes. Packages with CVE are not updated for the ...
- 243
0 votes
1 answer
74 views
Infinite loop of BN_mod_sqrt not resolved after updating openssl in Ubuntu
as I mentioned; I updated my openssl version to 1.1.1-1ubuntu2.1~18.04.15 and followed the code mentioned in github.com/drago-96/CVE-2022-0778 to verify if it is fixed. But it's going into an infinite ...
- 101
1 vote
3 answers
4k views
How can I reliably discover CVEs relating to installed packages
I have a web application running on Ubuntu Server 18. One of its dependencies is Ghostscript. The latest version I'm able to install via apt-get is 9.26, but I've learned that this version has a ...
- 125
-3 votes
1 answer
3k views
CVE-2021-26855 Explanation
I patched on 3/3 This just looks like we were probed and not compromised, can some one please confirm? I'm not sure how to interpret this. Ran Test-Hafnium.ps1 Contents of CVE-2021-26855.log #TYPE ...
- 77
1 vote
0 answers
293 views
Is there any command in Debian and Ubuntu similar to Red Hat sudo yum updateinfo list cves?
in Red Hat, I'm used to: Check which cve currently affect the system and the severity: sudo yum updateinfo list cves Get more details about that CVE: sudo yum updateinfo <CVE_NAME> Install all ...
- 27
1 vote
1 answer
3k views
How to protect against sudo vulnerability CVE-2021-3156
I tried to patch the new sudo vulnerability as described in https://access.redhat.com/security/vulnerabilities/RHSB-2021-002 I'm getting the following error. # stap -g sudoedit-block.stap Checking &...
- 113
0 votes
1 answer
58 views
SpectreV1 Mitigation Performance profiling
I am trying to measure the system performance when spectreV1 mitigation is on. I am using stress-ng for that. So far I have tested the system with various stressors like cpu, qsort, str, matrix, ...
- 111
4 votes
2 answers
5k views
How to determine if my CentOS 8 is vulnerable to CVE-2019-18348
I am a long-time linux sysadmin, but new to CentOS. I just need to determine if this CentOS server is vulnerable to CVE-2019-18348. To do that, I have to either verify the packages installed are ...
- 79
4 votes
3 answers
10k views
RDP from linux to windows
Many users in our office use a Linux VM to connect to the office's RDP server to work remotely. From March 2018 onwards a patch was progressively put out by Microsoft to address CVE-2018-0886, ...
0 votes
0 answers
295 views
Windows Server CVE-1999-0527: Fix?
Anyone know why I am getting this on a server Win 2012 R2? FTP is not an enabled feature, on the server. It's a very old CVE and very (no) info about it on searching.
- 125
6 votes
1 answer
12k views
Upgrading nginx 1.10.3 on Debian 9 (stretch) to avoid CVE-2017-7529 vulnerability
As of right now Debian 9 (stretch) installs nginx version 1.10.3 which is vulnerable to CVE-2017-7529: Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow ...
- 532
1 vote
0 answers
125 views
If I have a kernel version, can I get a list of CVEs it's vulnerable to?
So say I have a kernel version. Something like one of these: 3.10.0-229.el7.x86_64 2.6.32-220.el6.x86_64 3.10.0-514.26.2.el7.x86_64 3.10.35-43.137.amzn1.x86_64 2.6.32-358.14.1.el6.x86_64 Is there a ...
- 266
1 vote
3 answers
2k views
Why there are so many vulnerable Nginx images on Docker Hub?
Currently, all of them seem to have unpatched components and marked red https://hub.docker.com/r/library/nginx/tags/
- 285
1 vote
0 answers
5k views
CVE-2007-289 MS-DOS device name on IIS 8.5 & ASP.NET 4.5
our security team has recently scanned 1 of our server and the specific vulnerability detected: CVE-2007-2897 Microsoft ASP.NET MS-DOS Device Name DoS (PCI-DSS check) Did some search and found several ...
- 132
1 vote
1 answer
4k views
Is sshd UseLogin enabled or disabled by default?
This question relates to CVE-2015-8325. https://access.redhat.com/security/cve/CVE-2015-8325
- 622
1 vote
0 answers
336 views
How do I solve cve-2015-3183 without updating Apache
During the latest app scan in my project, CVE-2015-3183 has popped up. I have looked everywhere on the net for solution. Solution is simple: update your Apache. The problem is we cannot update our ...
- 11
2 votes
1 answer
1k views
How can I use openscap to do an offline OVAL scan of a Cisco router?
This doc describes a process of scanning a router's "show tech" file with a joval utility. I downloaded joval's trial, but didn't see that utility. Can openscap do offline OVAL scans of Cisco ...
- 4,393