similar to: Heads up on local root escalation

On 28 November 2017 at 16:06, Johnny Hughes <johnny at centos.org> wrote: > On 11/28/2017 08:20 AM, James Hogarth wrote: >> On 28 November 2017 at 13:48, Mark Haney <mark.haney at neonova.net> wrote: >>> On 11/28/2017 08:06 AM, Joseph L. Casale wrote: >>>> >>>> With a few exceptions, I see most admins treat CentOS as a single >>>>

On 28 November 2017 at 13:48, Mark Haney <mark.haney at neonova.net> wrote: > On 11/28/2017 08:06 AM, Joseph L. Casale wrote: >> >> With a few exceptions, I see most admins treat CentOS as a single >> rolling release and rely on the ABI commitment assuming things >> just work between point releases. On the other hand I see the >> opposite with RHEL where

Affected product: Dovecot IMAP Server Internal reference: DOV-5320 Vulnerability type: Improper Access Control (CWE-284) Vulnerable version: 2.2 Vulnerable component: submission Report confidence: Confirmed Solution status: Fixed in main Researcher credits: Julian Brook (julezman) Vendor notification: 2022-05-06 CVE reference: CVE-2022-30550 CVSS: 6.8

Affected product: Dovecot IMAP Server Internal reference: DOV-5320 Vulnerability type: Improper Access Control (CWE-284) Vulnerable version: 2.2 Vulnerable component: submission Report confidence: Confirmed Solution status: Fixed in main Researcher credits: Julian Brook (julezman) Vendor notification: 2022-05-06 CVE reference: CVE-2022-30550 CVSS: 6.8

Hello, we are using 3.4.3 from Gitco.de on 64bit Centos 5.8 and we have PV guests 64bit. According to described security bug we are in danger. What do you suggest? Wait for gitco update or build xen own with patch? Br Peter

OS = CentOS-6.4 Uptime = 4 days, 1:31, httpd-2.2.15 SELinux=enforcing audit2why -l -a = nil report Since upgrading a public web service host from dedicated hardware running CentOS-5.x to a KVM virtual host running CentOS-6.3 I have experienced intermittent ( one every couple of months) halts by the Apache web service. There is never any trace left in any of the logs, there are no SELinux

Source: xen Version: 4.1.2-2 Severity: critical Tags: security Justification: allows PV domains to escape into the dom0 context Hi, I realize you're most likely pretty well aware of that problem already, but Debian's Xen versions are vulnerable to a PV privilege escalation [1]. The issue is tracked as CVE-2012-0217 and public as of today. Therefore I am filing this bug for coordination

Hi all! I found this today on FD: http://seclists.org/fulldisclosure/2012/Aug/4

Package: xen-3 Severity: grave Tags: security Justification: user security hole Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for xen-3. CVE-2008-2004[0]: | The drive_init function in QEMU 0.9.1 determines the format of a raw | disk image based on the header, which allows local guest users to read | arbitrary files on the host by modifying the header to identify

Package: xen-unstable Severity: grave Tags: security patch Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for xen-unstable. CVE-2008-0928[0]: | Qemu 0.9.1 and earlier does not perform range checks for block device | read or write requests, which allows guest host users with root | privileges to access arbitrary memory and escape the virtual machine. If you fix

Hi all, I'm doing a very informal and unscientific poll: which kernel do you use on your CentOS machines? Not which version of the CentOS kernel, but which repository. Here are some examples I can think of off the top of my head: ==CentOS stock ==build own from CentOS SRPMs ==kernel-ml (from ELRepo) ==kernel-lt (from ELRepo) ==OpenVZ kernel ==build own from kernel.org ==other? One reason

The following kernel has been built while waiting for upstream to release a new kernel that addresses CVE-2013-2224: http://people.centos.org/hughesjr/c6kernel/2.6.32-358.11.1.el6.cve20132224/ Please see this upstream bug for details: https://bugzilla.redhat.com/show_bug.cgi?id=979936 ========================= Note: This kernel has been minimally tested and is provided as is for people who

Hi all, A year or two ago, I installed CentOS 7.0 (or 7.1) on an old MacBook Pro, and compiled the Broadcom drivers as documented here: https://wiki.centos.org/HowTos/Laptops/Wireless/Broadcom After not using it for a while, I recently resurrected it, and updated to 7.4. Unfortunately that page has not been updated in a while, so only documents compiling for 7.3. When I try the patch, it

Hi all, I recently got a brand new MacBook Pro, replacing one that is over 5.5 years old. I'm trying to think of something to do with the old laptop, and one idea I had was to put CentOS on it. After some initial struggles, I finally found this page, which tells how to tell the installer to find hfsplus-utils: https://bugs.centos.org/view.php?id=7327 Then I got to the point of configuring

tags 446771 + patch thanks Hi, attached is a patch to fix this if you don't already have one. Kind regards Nico -- Nico Golde - http://ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. -------------- next part -------------- A non-text attachment was scrubbed... Name: CVE-2007-4993.patch Type: text/x-diff Size: 4742

On 19/07/2018 15:57, Valeri Galtsev wrote: > <rant> > As far as google anything goes, not everybody volunteers one's > information into paws of google (and quite likely one or more of 3 > letter agencies collecting information that way). I know (call it > educated guess) that about 70% of messages I send are ending up in > google databases whether I want it or not.

Is there a little setup display right on the box? Just asking because I have seen that on some boxes. Cheers, Boris. On Sun, Sep 18, 2016 at 12:15 AM, Keith Keller < kkeller at wombat.san-francisco.ca.us> wrote: > On 2016-09-17, Alice Wonder <alice at domblogger.net> wrote: > > > > Okay if it requires DHCP this might be out, I'm currently out of town > >

Hi all, Is there any way to get a CentOS 7 ISO with the centosplus kernel? I have some very old hardware I'd like to keep going if easy, but it has old NVidia network cards that need the forcedeth driver. Apparently this driver is now in the centosplus kernel, but if I use the default ISO I won't be able to get on the network to get the centosplus kernel. (Of course I can get the kernel

----- Original Message ----- > From: "Keith Keller" <kkeller at wombat.san-francisco.ca.us> > To: centos at centos.org > Sent: Thursday, July 19, 2018 11:33:17 AM > Subject: Re: [CentOS] Which is better? Microsoft Exchange 2016 or Linux-based SMTP Servers? > On 2018-07-19, Mark Rousell <mark.rousell at signal100.com> wrote: >> >> Well said. I feel

Actually, I am not sure if we have a backup, because honestly, I am not that very much familiar with Centos. We use it for our mail sever for zimbra and other web servers but after setting it up, as long it is working just fine we don't do any other thing. Does it have an automatic backup system? And if it does, how can we use it to restore it back? Thanks. Regards, CHRIS ----- Original