Difference between revisions of "SVG:Advisories"
Jump to navigation
Jump to search
Line 9: | Line 9: | ||
{| {{egi-table}} | {| {{egi-table}} | ||
!Date !! Title !! Contents/Link !! Risk !! Status !! | !Date !! Title !! Contents/Link !! Risk !! Status !! | ||
|- | |||
| 2017-02-23 || Linux Kernel (DCCP module) privilege escalation vulnerability || [[SVG:Advisory-SVG-CVE-2017-6074 | Advisory-SVG-CVE-2017-6074 ]] || 'Heads up' || Fixed || | |||
|- | |||
|- | |- |
Revision as of 18:11, 27 February 2017
Main page | Software Security Checklist | Issue Handling | Advisories | Notes On Risk | Advisory Template | More |
Advisories
All advisories which are disclosed publicly by SVG are placed on this wiki.
A guide to the risk categories is available at Notes On Risk
Date | Title | Contents/Link | Risk | Status |
|
---|---|---|---|---|---|
2017-02-23 | Linux Kernel (DCCP module) privilege escalation vulnerability | Advisory-SVG-CVE-2017-6074 | 'Heads up' | Fixed | |
2017-02-17 | Singularity container escape vulnerability | Advisory-SVG-2017-12381 | Up to High | Fixed | |
2017-02-13 | Attacks on Hadoop installations - check configuration | Advisory-SVG-2017-12931 | (Check) | ||
2017-02-01 | Ansible input validation vulnerability | Advisory-SVG-CVE-2016-9587 | Up to High | Fixed | |
2016-11-10 updated 2016-12-14, 2017-01-13 | Linux kernel vulnerability | Advisory-SVG-CVE-2016-7117 | High | Fixed | |
2017-01-11 | OpenStack Nova Metadata leak -sites should check | Advisory-SVG-2016-12231 | (check) | ||
2017-01-10 | SLURM vulnerability CVE-2016-10030 | Advisory-SVG-CVE-2016-10030 | High | Fixed |
EGI SVG produces advisories according to the EGI SVG issue handling procedure, which was revised in autumn 2015.
Earlier Advisories: Advisories from 2016
Earlier Advisories: Advisories from 2014 and 2015
In the past (up to the end of 2015) CSIRT also issued general alerts at https://wiki.egi.eu/wiki/EGI_CSIRT:Alerts and EGI SVG advisories primarily concerned gLite Middleware.
Earlier Advisories: Advisories from 2011 to 2013
Advisories from prior to 2011 Gridpp Advisories Archive