RLSA-2026:18479 Important: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: firefox: thunderbird: CSP Bypass and XSS Exposure via Web Compatibility Shi...

RHEL 10 : qemu-kvm (RHSA-2026:18479)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:18479 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide...

CVE-2019-11697

If the ALT and "a" keys are pressed when users receive an extension installation prompt, the extension will be installed without the install prompt delay that keeps the prompt visible in order for users to accept or decline the installation. A malicious web page could use this with spoofing on th...

CVE-2025-11697

creationtimestamp| type| source ---|---|--- 2025-11-11 16:13:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5ejqkfm362x 2025-11-11 17:41:16+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5eomab2j2z2 2025-11-11 18:10:19+00:00| seen|...

Linux Distros Unpatched Vulnerability : CVE-2024-11697

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When handling keypress events, an attacker may have been able to trick a user into bypassing the Open Executable File? confirmation dialog. This could have led ...

Linux Distros Unpatched Vulnerability : CVE-2019-11697

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If the ALT and a keys are pressed when users receive an extension installation prompt, the extension will be installed without the install prompt delay that kee...

Linux Distros Unpatched Vulnerability : CVE-2017-11697

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hashopen function in hash.c:229 in Mozilla Network Security Services NSS allows context-dependent attackers to cause a denial of service floating point...

Fedora 40 : icecat (2024-7f67755963)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-7f67755963 advisory. - Fix CVE-2024-11693 CVE-2024-11697 CVE-2024-11692 Tenable has extracted the preceding description block directly from the Fedora security advisory...

Fedora 41 : icecat (2024-ff0115e6ac)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-ff0115e6ac advisory. - Fix CVE-2024-11693 CVE-2024-11697 CVE-2024-11692 Tenable has extracted the preceding description block directly from the Fedora security advisory...

Oracle Linux 7 : firefox (ELSA-2024-10881)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-10881 advisory. 128.5.1-1.0.1 - Update to 128.5.1 Orabug: 37370369CVE-2024-11692CVE-2024-11694 CVE-2024-11695CVE-2024-11696CVE-2024-11697CVE-2024-11699 Tenable has...

RHEL 8 : firefox (RHSA-2024:10848)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:10848 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

RHEL 8 : firefox (RHSA-2024:10849)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:10849 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

openSUSE Security Advisory (SUSE-SU-2024:4148-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Mageia: Security Advisory (MGASA-2024-0383)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2024-0384)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2024-0384 Updated thunderbird packages fix security vulnerabilities

Select list elements could be shown over another site. CVE-2024-11692 CSP Bypass and XSS Exposure via Web Compatibility Shims. CVE-2024-11694 URL Bar Spoofing via Manipulated Punycode and Whitespace Characters. CVE-2024-11695 Unhandled Exception in Add-on Signature Verification. CVE-2024-11696...