A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pamenv's userreadenv option, which leads to a denial of service (DoS) attack.
{ "binaries": [ { "binary_version": "164-1", "binary_name": "cockpit" }, { "binary_version": "164-1", "binary_name": "cockpit-bridge" }, { "binary_version": "164-1", "binary_name": "cockpit-dashboard" }, { "binary_version": "164-1", "binary_name": "cockpit-docker" }, { "binary_version": "164-1", "binary_name": "cockpit-machines" }, { "binary_version": "164-1", "binary_name": "cockpit-networkmanager" }, { "binary_version": "164-1", "binary_name": "cockpit-packagekit" }, { "binary_version": "164-1", "binary_name": "cockpit-storaged" }, { "binary_version": "164-1", "binary_name": "cockpit-system" }, { "binary_version": "164-1", "binary_name": "cockpit-tests" }, { "binary_version": "164-1", "binary_name": "cockpit-ws" } ] }
{ "binaries": [ { "binary_version": "215-1", "binary_name": "cockpit" }, { "binary_version": "215-1", "binary_name": "cockpit-bridge" }, { "binary_version": "215-1", "binary_name": "cockpit-dashboard" }, { "binary_version": "215-1", "binary_name": "cockpit-machines" }, { "binary_version": "215-1", "binary_name": "cockpit-networkmanager" }, { "binary_version": "215-1", "binary_name": "cockpit-packagekit" }, { "binary_version": "215-1", "binary_name": "cockpit-pcp" }, { "binary_version": "215-1", "binary_name": "cockpit-storaged" }, { "binary_version": "215-1", "binary_name": "cockpit-system" }, { "binary_version": "215-1", "binary_name": "cockpit-tests" }, { "binary_version": "215-1", "binary_name": "cockpit-ws" } ] }
{ "binaries": [ { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-bridge" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-networkmanager" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-packagekit" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-pcp" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-sosreport" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-storaged" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-system" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-tests" }, { "binary_version": "264-1ubuntu0.22.04.1", "binary_name": "cockpit-ws" } ] }
{ "binaries": [ { "binary_version": "314-1", "binary_name": "cockpit" }, { "binary_version": "314-1", "binary_name": "cockpit-bridge" }, { "binary_version": "314-1", "binary_name": "cockpit-networkmanager" }, { "binary_version": "314-1", "binary_name": "cockpit-packagekit" }, { "binary_version": "314-1", "binary_name": "cockpit-pcp" }, { "binary_version": "314-1", "binary_name": "cockpit-sosreport" }, { "binary_version": "314-1", "binary_name": "cockpit-storaged" }, { "binary_version": "314-1", "binary_name": "cockpit-system" }, { "binary_version": "314-1", "binary_name": "cockpit-tests" }, { "binary_version": "314-1", "binary_name": "cockpit-ws" } ] }