all InfoSec news
USN-6731-1: YARD vulnerabilities
April 15, 2024, 10:27 a.m. |
Ubuntu security notices ubuntu.com
with an initial ../ sequence, which allows attackers to conduct
directory traversal attacks and read arbitrary files. This issue only
affected Ubuntu 16.04 LTS. (CVE-2017-17042)
It was discovered that yard before 0.9.20 is affected by a path
traversal vulnerability, allowing HTTP requests to access arbitrary
files under certain conditions. This issue only affected Ubuntu 18.04
LTS. (CVE-2019-1020001)
Aviv Keller discovered that the "frames.html" file within the Yard
Doc's …
access arbitrary files attackers attacks block cve directory directory traversal files http http requests issue lts path path traversal path traversal vulnerability relative requests ubuntu ubuntu 16.04 usn vulnerabilities vulnerability
More from ubuntu.com / Ubuntu security notices
USN-6778-1: Linux kernel vulnerabilities
2 days, 13 hours ago |
ubuntu.com
USN-6777-1: Linux kernel vulnerabilities
2 days, 13 hours ago |
ubuntu.com
USN-6776-1: Linux kernel vulnerabilities
2 days, 14 hours ago |
ubuntu.com
USN-6775-1: Linux kernel vulnerabilities
2 days, 15 hours ago |
ubuntu.com
USN-6774-1: Linux kernel vulnerabilities
2 days, 16 hours ago |
ubuntu.com
USN-6773-1: .NET vulnerabilities
2 days, 17 hours ago |
ubuntu.com
USN-6766-2: Linux kernel vulnerabilities
3 days, 15 hours ago |
ubuntu.com
USN-6772-1: strongSwan vulnerability
4 days, 19 hours ago |
ubuntu.com
USN-6767-2: Linux kernel (BlueField) vulnerabilities
4 days, 21 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Sr. Staff Firmware Engineer – Networking & Firewall
@ Axiado | Bengaluru, India
Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)
@ SAP | Walldorf, DE, 69190
SAP Security Administrator
@ FARO Technologies | EMEA-Portugal