Advisories

What Are You Looking For?

Popular Tags


- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2882-1                [email protected]
https://www.debian.org/lts/security/                    Thorsten Alteholz
January 17, 2022                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : sphinxsearch
Version        : 2.2.11-1.1+deb9u1
CVE ID         : CVE-2020-29050


It was discovered that sphinxsearch, a fast standalone full-text SQL 
search engine, could allow arbitrary files to be read by abusing a 
configuration option.


For Debian 9 stretch, this problem has been fixed in version 
2.2.11-1.1+deb9u1.

We recommend that you upgrade your sphinxsearch packages.

For the detailed security status of sphinxsearch please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/sphinxsearch

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-2882-1: sphinxsearch security update

January 16, 2022

It was discovered that sphinxsearch, a fast standalone full-text SQL search engine, could allow arbitrary files to be read by abusing a configuration option

Summary

It was discovered that sphinxsearch, a fast standalone full-text SQL
search engine, could allow arbitrary files to be read by abusing a
configuration option.

For Debian 9 stretch, this problem has been fixed in version
2.2.11-1.1+deb9u1.

We recommend that you upgrade your sphinxsearch packages.

For the detailed security status of sphinxsearch please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/sphinxsearch

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Severity

Package : sphinxsearch

Version : 2.2.11-1.1+deb9u1

CVE ID : CVE-2020-29050

News

Advisories

HOWTOs

About Us

Powered By

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.

Learn More About Our Cookie Policy

Advisories

What Are You Looking For?

Popular Tags

Debian LTS: DLA-2882-1: sphinxsearch security update

Summary

News

Advisories

HOWTOs

Features

What You Need to Know about the Sysrv-K Cryptomining Botnet in Less than a Minute

Strengthen Your Linux Endpoint Security & Zero Trust Strategy with Defense-in-Depth & Endpoint Encryption

Call for Contributors with Knowledge of Linux Firewalls!

How To Create a Transparent Proxy through the Tor Network to Protect Your Privacy Online with archtorify & kalitorify

You are Tracked Online - Why? And How To Avoid Being Tracked Online

About Us

Powered By

Advisories

What Are You Looking For?

Popular Tags

Debian LTS: DLA-2882-1: sphinxsearch security update

Summary

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

What You Need to Know about the Sysrv-K Cryptomining Botnet in Less than a Minute

Strengthen Your Linux Endpoint Security & Zero Trust Strategy with Defense-in-Depth & Endpoint Encryption

Call for Contributors with Knowledge of Linux Firewalls!

How To Create a Transparent Proxy through the Tor Network to Protect Your Privacy Online with archtorify & kalitorify

You are Tracked Online - Why? And How To Avoid Being Tracked Online

About Us

Powered By