William Hubbs – Gentoo Packages

Security Bug Reports

dev-lang/lua: Multiple vulnerabilities (CVE-2019-6706, CVE-2020-{15945,15888,15889,24342,24369,24370,24371})

717780 - Assigned to security
sys-apps/opentmpfiles: Root privilege escalation (mishandling of 'd' entries) (CVE-2017-18925)

751415 - Assigned to security
<app-admin/helm-3.5.4: insufficient input validation (CVE-2021-21303)

769125 - Assigned to security
<sys-cluster/kube-apiserver-{1.18.19,1.19.11,1.20.7,1.21.1}: host network hijack (CVE-2021-25737)

791256 - Assigned to security
<net-libs/nodejs-{12.22.6, 14.17.6}: multiple vulnerabilities

811273 - Assigned to security
sys-cluster/kube-apiserver: webhook redirect vulnerability

813645 - Assigned to security
<app-containers/docker-20.10.9: multiple vulnerabilities

816273 - Assigned to security
<app-containers/docker-cli-20.10.9: May send credentials to non-chosen registry (CVE-2021-41092)

816321 - Assigned to security
<net-libs/nodejs-{12.22.7,14.18.1,16.13.0}: Multiple vulnerabilities (CVE-2021-{22959,22960})

817938 - Assigned to security
<app-admin/fluentd-1.14.4: ReDoS vulnerability (CVE-2021-41186)

820779 - Assigned to security
<mail-mta/postfix-3.6.3: queue file corruption

822753 - Assigned to security
<app-containers/runc-1.0.2-r1: Access restriction bypass (CVE-2021-43784)

828471 - Assigned to security
sys-cluster/kubectl: lacks escape/meta/control sequence filtering in terminal output

830714 - Assigned to security
<net-libs/nodejs-{12.22.10,14.19.0,16.14.1}: multiple vulnerabilities

831037 - Assigned to security
<dev-lang/lua-5.4.4: Local DoS in Lua 5.4.4 and 5.4.2 (CVE-2021-44647)

831053 - Assigned to security
<app-containers/containerd-{1.4.12,1.5.11}: arbitrary host file read

834689 - Assigned to security
dev-lang/lua: UAF leading to sandbox escape

835340 - Assigned to security
<net-vpn/openvpn-2.5.6: potential authentication by-pass with multiple deferred authentication plug-ins

835514 - Assigned to security
<app-containers/containerd-1.5.11: Default inheritable capabilities for linux container should be empty

835917 - Assigned to security
dev-lang/lua: heap buffer overread

837521 - Assigned to security
sys-cluster/nomad: lacking mTLS certificate validation with agent to agent endpoints

843830 - Assigned to security
<app-containers/runc-1.1.2: incorrect handling of inheritable capabilities

844085 - Assigned to security
sys-cluster/nomad: vulnerability in bundled go-getter leads to client privilege escalation

846629 - Assigned to security
<app-containers/containerd-1.6.8: malicious container memory exhaustion

850124 - Assigned to security
dev-lang/lua: heap buffer overflow in recursive errors

856463 - Assigned to security
<net-libs/nodejs-{14.20.0,16.16.0,18.5.0}: multiple vulnerabilities

857111 - Assigned to security
dev-util/wasmer: 'cargo audit' reports one or more bundled CRATES as vulnerable

864079 - Assigned to security
app-containers/cosign: false positive verification

864436 - Assigned to security

Contact Information

Please file new vulnerability reports on Gentoo Bugzilla and assign them to the Gentoo Security product and Vulnerabilities component.

Gentoo Developer William Hubbs

Security Bug Reports

Contact Information

Gentoo Developer

William Hubbs