Vulnerability & Exploit Database

Red Hat OpenShift: CVE-2021-21693: jenkins: When creating temporary files, permission to create files is only checked after they’ve been created.

Red Hat OpenShift: CVE-2021-21685: jenkins: FilePath#mkdirs does not check permission to create parent directories

Red Hat OpenShift: CVE-2021-21698: jenkins-2-plugins/subversion: does not restrict the name of a file when looking up a subversion key

Red Hat OpenShift: CVE-2021-21697: jenkins: Agent-to-controller access control allows reading/writing most content of build directories

Red Hat OpenShift: CVE-2021-21696: jenkins: Agent-to-controller access control allowed writing to sensitive directory used by Pipeline: Shared Groovy Libraries Plugin

Red Hat OpenShift: CVE-2021-21695: jenkins: FilePath#listFiles lists files outside directories with agent read access when following symbolic links.

Red Hat OpenShift: CVE-2021-21692: jenkins: The operations FilePath#renameTo and FilePath#moveAllChildrenTo only check read permission on the source path

Red Hat OpenShift: CVE-2021-21691: jenkins: Creating symbolic links is possible without the symlink permission

Red Hat OpenShift: CVE-2021-21690: jenkins: Agent processes are able to completely bypass file path filtering by wrapping the file operation in an agent file path

Red Hat OpenShift: CVE-2021-21689: jenkins: FilePath#unzip and FilePath#untar were not subject to any access control

Red Hat OpenShift: CVE-2021-21688: jenkins: FilePath#reading(FileVisitor) does not reject any operations allowing users to have unrestricted read access

Red Hat OpenShift: CVE-2021-21694: jenkins: FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize, FilePath#isDescendant, and FilePath#get*DiskSpace do not check any permissions

Red Hat OpenShift: CVE-2021-21687: jenkins: FilePath#untar does not check permission to create symbolic links when unarchiving a symbolic link

Red Hat OpenShift: CVE-2021-21686: jenkins: File path filters do not canonicalize paths, allowing operations to follow symbolic links to outside allowed directories

Red Hat: CVE-2021-43529: CVE-2021-43529 thunderbird: Memory corruption when processing S/MIME messages (Multiple Advisories)

Red Hat: CVE-2021-43389: CVE-2021-43389 kernel: an array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (Multiple Advisories)

Red Hat: CVE-2021-38506: CVE-2021-38506 Mozilla: Firefox could be coaxed into going into fullscreen mode without notification or warning (Multiple Advisories)

Red Hat: CVE-2021-3748: heap use-after-free in virtio_net_receive_rcu (Multiple Advisories)

Red Hat: CVE-2021-38509: CVE-2021-38509 Mozilla: Javascript alert box could have been spoofed onto an arbitrary domain (Multiple Advisories)

Red Hat: CVE-2021-22960: HTTP Request Smuggling when parsing the body of chunked requests (Multiple Advisories)