Alexander Bergmann
Alexander Bergmann
I'm currently digging into [CVE-2019-1020001](https://nvd.nist.gov/vuln/detail/CVE-2019-1020001) that was assigned to the `yard` security advisory [GHSA-xfhh-rx56-rxcr](https://github.com/lsegal/yard/security/advisories/GHSA-xfhh-rx56-rxcr). Unfortunately I'm unable to identify the commit that can be connected to this arbitrary path traversal...
It came to my attention that the ownership of /var/cache/man is not set correctly inside the official opensuse leap (42.2/42.3) containers that are distributed via hub.docker.com. `#> docker pull opensuse`...
### PR creator: Description The 3 bridged VPN scenarios are currently not explained. ### PR creator: Are there any relevant issues/feature requests? This issue/question came up during a Slack chat...
### Describe the bug There is a public libbpf CVE report [CVE-2025-29481](https://nvd.nist.gov/vuln/detail/CVE-2025-29481) describing a heap-buffer-overflow issue. ### Details See PoC details [here](https://github.com/lmarch2/poc/blob/main/libbpf/libbpf.md). ### Follow up Is there already a bug...