Download
| Alert*
oval:org.secpod.oval:def:2108026
Oracle Solaris 11 - ( CVE-2021-3618 ) oval:org.secpod.oval:def:708449 vsftpd: FTP server written for security vsftpd could allow unintended access to network services. oval:org.secpod.oval:def:88461 nginx: small, powerful, scalable web/proxy server Several security issues were fixed in nginx. oval:org.secpod.oval:def:79072 nginx: small, powerful, scalable web/proxy server Several security issues were fixed in nginx. oval:org.secpod.oval:def:706440 nginx: small, powerful, scalable web/proxy server Details: USN-5371-1 fixed several vulnerabilities in nginx. This update provides the fix for CVE-2021-3618 for Ubuntu 22.04 LTS. Original advisory nginx could be made to redirect network traffic. oval:org.secpod.oval:def:89047749 This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack . Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled . - Allowed wait4 to be called so that the broker can wait for its child processes . - Allowed sendto syscall whe ... oval:org.secpod.oval:def:89047009 This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack . - Added hardening to systemd services . Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled . - Allowed wait4 to be called so that the broker can wait for its child ... oval:org.secpod.oval:def:89047988 This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed . oval:org.secpod.oval:def:95022 vsftpd: FTP server written for security vsftpd could allow unintended access to network services. oval:org.secpod.oval:def:120897 vsftpd is a Very Secure FTP daemon. It was written completely from scratch. oval:org.secpod.oval:def:120413 Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage. oval:org.secpod.oval:def:89047844 This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack . Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled . - Allowed wait4 to be called so that the broker can wait for its child processes . - Allowed sendto syscall whe ... oval:org.secpod.oval:def:88516 nginx: small, powerful, scalable web/proxy server Details: USN-5371-1 fixed several vulnerabilities in nginx. This update provides the fix for CVE-2021-3618 for Linux Mint 21.x LTS. Original advisory nginx could be made to redirect network traffic. oval:org.secpod.oval:def:1701762 ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from ... oval:org.secpod.oval:def:706405 nginx: small, powerful, scalable web/proxy server Several security issues were fixed in nginx. oval:org.secpod.oval:def:89047020 This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack . Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled . - Allowed wait4 to be called so that the broker can wait for its child processes . - Allowed sendto syscall whe ... oval:org.secpod.oval:def:3300930 SUSE Security Update: Security update for nginx oval:org.secpod.oval:def:19500152 ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from ... oval:org.secpod.oval:def:19500130 ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from ... oval:org.secpod.oval:def:120417 Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage. oval:org.secpod.oval:def:89047948 This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed . oval:org.secpod.oval:def:89047999 This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed . oval:org.secpod.oval:def:89047954 This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed . oval:org.secpod.oval:def:89047015 This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack . - Added hardening to systemd services . Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled . - Allowed wait4 to be called so that the broker can wait for its child ... oval:org.secpod.oval:def:3301037 SUSE Security Update: Security update for vsftpd oval:org.secpod.oval:def:97617 [CLSA-2022:1649695619] Fixed CVE-2021-3618 in nginx oval:org.secpod.oval:def:1702056 ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from ... |