1. Reverse Engineering >
  2. Sicherheitslücken >
  3. Open Build Service up to 2.10.4 OBS Package access control


Open Build Service up to 2.10.4 OBS Package access control

Exploits vom | Direktlink: vuldb.com Nachrichten Bewertung

A vulnerability was found in Open Build Service up to 2.10.4. It has been declared as problematic. Affected by this vulnerability is some unknown functionality of the component OBS Package Handler. Upgrading to version 2.10.5 eliminates this vulnerability....

Externe Quelle mit kompletten Inhalt anzeigen

Zur Startseite von Team IT Security

➤ Weitere Beiträge von Team Security | IT Sicherheit

obs-service-source_validator bis 0.6 RPM SPEC File Command Injection erweiterte Rechte

vom 282.63 Punkte ic_school_black_18dp
Eine Schwachstelle wurde in obs-service-source_validator bis 0.6 ausgemacht. Sie wurde als kritisch eingestuft. Davon betroffen ist eine unbekannte Funktion der Komponente RPM SPEC File Handler. Durch Manipulation mit einer unbekannten Eingabe kann eine e

DevAudit - Open-source, Cross-Platform, Multi-Purpose Security Auditing Tool

vom 231.76 Punkte ic_school_black_18dp
DevAudit is an open-source, cross-platform, multi-purpose security auditing tool targeted at developers and teams adopting DevOps and DevSecOps that detects security vulnerabilities at multiple levels of the solution stack. DevAudit provides a wide array

CentOS Blog: CentOS Pulse Newsletter, September 2018 (#1804)

vom 218.83 Punkte ic_school_black_18dp
Dear CentOS enthusiast, Here's what's been happening in the past month at CentOS Releases and Updates The following releases and updates happened in August. For each update, the given URL provides the upstream notes about the change. Releases We're pl

The Evolving Infrastructure of .NET Core

vom 193.84 Punkte ic_school_black_18dp
With .NET Core 3.0 Preview 6 out the door, we thought it would be useful to take a brief look at the history of our infrastructure systems and the significant improvements that have been made in the last year or so. This post will be interesting if yo

RetDec - A Retargetable Machine-Code Decompiler Based On LLVM

vom 193.22 Punkte ic_school_black_18dp
RetDec is a retargetable machine-code decompiler based on LLVM.The decompiler is not limited to any particular target architecture, operating system, or executable file format:Supported file formats: ELF, PE, Mach-O, COFF, AR (archive), Intel HEX, and ra

PMapper - A Tool For Quickly Evaluating IAM Permissions In AWS

vom 187.74 Punkte ic_school_black_18dp
A project to speed up the process of reviewing an AWS account's IAM configuration. Purpose The goal of the AWS IAM auth system is to apply and enforce access controls on actions and resources in AWS. This tool helps identify if the policies in place will ac

AA20-239A: FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks

vom 179.06 Punkte ic_school_black_18dp
Original release date: August 26, 2020SummaryThis Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques. This joint advisory is

Creating and Packaging a .NET Standard library

vom 175.08 Punkte ic_school_black_18dp
In this post we will cover how you can create a .NET Standard library and then share that with other developers via NuGet. We will be demonstrating this with Visual Studio for Mac, but you can also follow along with Visual Studio, or Visual Studio Code

Profiling template metaprograms with C++ Build Insights

vom 168.97 Punkte ic_school_black_18dp
The use of templates in C++ programs can sometimes lead to longer builds. C++ Build Insights puts tools at your disposal for analyzing template usage patterns and their associated impact on build time. In this article, we show you how to use the vcper

Finding build bottlenecks with C++ Build Insights

vom 163.04 Punkte ic_school_black_18dp
C++ Build Insights offers more than one way to investigate your C++ build times. In this article, we discuss two methods that you can use to identify bottlenecks in your builds: manually by using the vcperf analysis tool, or programmatically with the C++ Build Insights SDK. We present a

OBS Studio 25.0 Released with Vulkan-based Games Capture Support + More

vom 155.57 Punkte ic_school_black_18dp
Vulkan-based game capture is among a raft of new features added to OBS Studio. OBS Studio is a powerful open source video streaming and screen recording suite for Windows, macOS and Linux OBS (which stands […] This post, OBS Studio 25.0 Released with Vulkan-based Games Capture Support + More, was written by Joey Sneddon and first appeared on OMG!

Azure.Source – Volume 61

vom 149.98 Punkte ic_school_black_18dp
Microsoft Connect(); 2018 On Tuesday, December 4th, Microsoft Connect(); 2018 provided a full day of developer-focused content—including updates on Azure and Visual Studio, keynotes, demos, and real-time coding with experts. Scott Guthrie’s keyn

Team Security Diskussion über Open Build Service up to 2.10.4 OBS Package access control