LumisXP - Cross-site Scripting

A cross-site scripting XSS vulnerability in the XsltResultControllerHtml.jsp component of LumisXP v15.0.x to v16.1.x allows attackers to execute arbitrary web scripts or HTML via the lumPageID parameter. id: CVE-2024-33326 info: name: LumisXP - Cross-site Scripting author: 0xr2r severity: medium...

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2026-127-02)

The version of mozilla-firefox installed on the remote host is prior to 140.10.2esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-127-02 advisory. New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Tenable has...

Slackware Linux 15.0 / current libXpm Vulnerability (SSA:2026-111-01)

The version of libXpm installed on the remote host is prior to 3.5.19. It is, therefore, affected by a vulnerability as referenced in the SSA:2026-111-01 advisory. New libXpm packages are available for Slackware 15.0 and -current to fix a security issue. Tenable has extracted the preceding...

[slackware-security] libpng

New libpng packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libpng-1.6.57-i586-1slack15.0.txz: Upgraded. Fixed a medium severity security issue: Use-after-free in pngsetPLTE, pngsettRNS and...

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2026-098-01)

The version of mozilla-firefox installed on the remote host is prior to 140.9.1esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-098-01 advisory. New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Tenable has...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-140.9.1esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

[slackware-security] krita

New krita packages are available for Slackware 15.0 to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/krita-5.0.2-i586-3slack15.0.txz: Rebuilt. This update fixes a security issue: Heap-based buffer overflow when parsing TGA files. Thanks to pbslxw f...

Slackware Linux 15.0 / current tigervnc Vulnerability (SSA:2026-085-01)

The version of tigervnc installed on the remote host is prior to 1.16.2. It is, therefore, affected by a vulnerability as referenced in the SSA:2026-085-01 advisory. New tigervnc packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-140.9.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

Slackware Linux 15.0 / current expat Multiple Vulnerabilities (SSA:2026-077-01)

The version of expat installed on the remote host is prior to 2.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-077-01 advisory. New expat packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

[slackware-security] libxml2

New libxml2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.9-i586-8slack15.0.txz: Rebuilt. This update fixes security issues: CVE-2026-1757 fix: Memory leak in xmllint Shell -...

Slackware Linux 15.0 / current python3 Vulnerability (SSA:2026-062-01)

The version of python3 installed on the remote host is prior to 3.12.13 / 3.9.25. It is, therefore, affected by a vulnerability as referenced in the SSA:2026-062-01 advisory. New python3 packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the...

Slackware: Security Advisory (SSA:2026-062-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2026-047-04)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Slackware: Security Advisory (SSA:2026-014-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] libpng

New libpng packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libpng-1.6.54-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Heap buffer over-read in the libpng simplified API...

Slackware Linux 15.0 / current mozilla-firefox Multiple Vulnerabilities (SSA:2026-014-02)

The version of mozilla-firefox installed on the remote host is prior to 140.7.0esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-014-02 advisory. New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Tenable has...

CVE-2025-1250

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

Slackware Linux 15.0 / current curl Multiple Vulnerabilities (SSA:2026-007-01)

The version of curl installed on the remote host is prior to 8.17.0 / 8.18.0. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-007-01 advisory. New curl packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the...

Slackware: Security Advisory (SSA:2026-001-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...