Smarthome,HiAPP,HwParentControl,HwParentControlParent,Crowdtest,HiWallet,Huawei Pay,Skytone,HwCloudDrive(EMUI6.0),HwPhoneFinder Security Vulnerabilities

EulerOS Virtualization 3.0.6.0 : openssh (EulerOS-SA-2024-1694)

According to the versions of the openssh packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote...

EulerOS Virtualization 3.0.6.0 : systemd (EulerOS-SA-2024-1707)

According to the versions of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : systemd before 247 does not adequately block local privilege escalation for some Sudo configurations, e.g., plausible sudoers...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2024-1708)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2024-1697)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for gdb (EulerOS-SA-2024-1681)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for compat-openssl10 (EulerOS-SA-2024-1675)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.6 : shim-signed (EulerOS-SA-2024-1667)

According to the versions of the shim-signed package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be...

EulerOS Virtualization 3.0.6.0 : compat-openssl10 (EulerOS-SA-2024-1675)

According to the versions of the compat-openssl10 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may...

EulerOS Virtualization 3.0.6.0 : gdb (EulerOS-SA-2024-1681)

According to the versions of the gdb packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function...

EulerOS Virtualization 3.0.6.6 : procps-ng (EulerOS-SA-2024-1662)

According to the versions of the procps-ng package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Under some circumstances, this weakness allows a user who has access to run the ps utility on a machine, the ability to write...

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2024-1704)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libX11 (EulerOS-SA-2024-1690)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libXpm (EulerOS-SA-2024-1691)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.0 : bind (EulerOS-SA-2024-1673)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : The code that processes control channel messages sent to named calls certain functions recursively during packet parsing....

Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2024-1676)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.0 : curl (EulerOS-SA-2024-1677)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of...

EulerOS Virtualization 3.0.6.0 : shadow-utils (EulerOS-SA-2024-1705)

According to the versions of the shadow-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password...

EulerOS Virtualization 3.0.6.6 : libwebp (EulerOS-SA-2024-1656)

According to the versions of the libwebp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform...

EulerOS Virtualization 3.0.6.0 : python-pip (EulerOS-SA-2024-1702)

According to the versions of the python-pip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cross-origin redirect (i.e., a...

EulerOS Virtualization 3.0.6.0 : flac (EulerOS-SA-2024-1679)

According to the versions of the flac package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via...

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2024-1678)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.0 : dnsmasq (EulerOS-SA-2024-1678)

According to the versions of the dnsmasq packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the default configuration of dnsmasq, as shipped with Fedora versions prior to 31 and in all versions Red...

Huawei EulerOS: Security Advisory for gcc (EulerOS-SA-2024-1680)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.6 : mdadm (EulerOS-SA-2024-1659)

According to the versions of the mdadm package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially...

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2024-1707)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-1698)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2024-1700)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2024-1696)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.6 : vim (EulerOS-SA-2024-1669)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969. (CVE-2023-5344) Note that Tenable Network Security has...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2024-1682)

The remote host is missing an update for the Huawei...

EulerOS Virtualization 3.0.6.6 : zlib (EulerOS-SA-2024-1670)

According to the versions of the zlib packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a...

EulerOS Virtualization 3.0.6.0 : libcap (EulerOS-SA-2024-1686)

According to the versions of the libcap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if...

EulerOS Virtualization 3.0.6.0 : gcc (EulerOS-SA-2024-1680)

According to the versions of the gcc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an...

EulerOS Virtualization 3.0.6.0 : glibc (EulerOS-SA-2024-1682)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed,...

EulerOS Virtualization 3.0.6.0 : xorg-x11-server (EulerOS-SA-2024-1709)

According to the versions of the xorg-x11-server packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be...

EulerOS Virtualization 3.0.6.0 : openssl (EulerOS-SA-2024-1695)

According to the versions of the openssl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very...

EulerOS Virtualization 3.0.6.0 : shim (EulerOS-SA-2024-1706)

According to the versions of the shim package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to...

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1694)

The remote host is missing an update for the Huawei...

Talos releases new macOS open-source fuzzer

Cisco Talos has developed a fuzzer that enables us to test macOS software on commodity hardware. Fuzzer utilizes a snapshot-based fuzzing approach and is based on WhatTheFuzz framework. Support for VM state extraction was implemented and WhatTheFuzz was extended to support the loading of VMWare...

Huawei EulerOS: Security Advisory for mdadm (EulerOS-SA-2024-1659)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2024-1646)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libX11 (EulerOS-SA-2024-1657)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2024-1662)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1655)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for openssl098e (EulerOS-SA-2024-1661)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for shim-signed (EulerOS-SA-2024-1667)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1666)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2024-1650)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for python (EulerOS-SA-2024-1663)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libXpm (EulerOS-SA-2024-1658)

The remote host is missing an update for the Huawei...