Debian Security Update DSA-3942 supervisor - security update

Thread starter LinuxBot
Start date Aug 14, 2017

LinuxBot

Member

Aug 14, 2017

#1

Calum Hutton reported that the XML-RPC server in supervisor, a system for controlling process state, does not perform validation on requested XML-RPC methods, allowing an authenticated client to send a malicious XML-RPC request to supervisord that will run arbitrary shell commands on the server as the same user as supervisord.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6182-1 libxml-parser-perl - security update

Replies: 0

Views: 125

Mar 29, 2026

LinuxBot

Debian Security Update DSA-6155-1 spip - security update

Replies: 0

Views: 111

Mar 3, 2026

LinuxBot

Ubuntu Security Update USN-8283-1: rsync vulnerabilities

Replies: 0

Views: 137

May 20, 2026

LinuxBot

Debian Security Update DSA-6279-1 redis - security update

Replies: 0

Views: 103

May 19, 2026

LinuxBot

Debian Security Update DSA-6160-1 netty - security update

Replies: 0

Views: 113

Mar 12, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

piorunz

Total: 2,533 (members: 1, guests: 2,532)

Latest posts

MX23 boot options glitch
- Latest: Alexzee
- Yesterday at 11:58 PM
Debian and derivatives
D
Recording and transcribing a meeting to create meeting minutes
- Latest: deb_user
- Yesterday at 9:44 PM
Linux Audio / Video
D
How a USB-connected speaker can infect a PC without ever being touched
- Latest: deb_user
- Yesterday at 7:55 PM
General Computing
Hellooooo
- Latest: VP9KS
- Yesterday at 5:15 PM
Member Introductions
S
How to Revert back my Live into regular drive?
- Latest: SEAPOPSICLE
- Yesterday at 3:54 PM
General Linux Topics

Top