RHSA-2026:17075 Red Hat Security Advisory: yggdrasil security update

Bulletin has no description...

Oracle Linux 10 : yggdrasil (ELSA-2026-17075)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-17075 advisory. 0.4.8-5 - Bump release for rebuild Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

SUSE CVE-2018-17075

The html package aka x/net/html before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of , , or . This is related to HTMLTreeBuilder.cpp in WebKit...

Ubuntu: Security Advisory (USN-4211-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-17075

Windows USO Core Worker Elevation of Privilege Vulnerability...

CVE-2020-17075

CVE-2020-17075 corresponds to a Windows USO Core Worker elevation-of-privilege vulnerability. According to the linked NVD entry, the vulnerability has a CVSS v3.1 base score of 7.8 (HIGH) with local attack vector, low attack complexity, and privileges required: LOW; no user interaction needed. Th...

KB4586786: Windows 10 Version 1903 and Windows 10 Version 1909 November 2020 Security Update

The Windows installation on the remote host is missing security update 4586781. It is, therefore, affected by multiple vulnerabilities. Please review the vendor advisory for more details. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from t...

KB4586830: Windows 10 Version 1607 and Windows Server 2016 November 2020 Security Update

The Microsoft 4586830 Product is missing security updates. - Remote Desktop Protocol Server Information Disclosure Vulnerability CVE-2020-16997 - DirectX Elevation of Privilege Vulnerability CVE-2020-16998 - Windows WalletService Information Disclosure Vulnerability CVE-2020-16999 - Remote Deskto...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2020-0044)

The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2020-0044 for details. C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security Advisory OVMSA-2020-0044...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-2599)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-17075

A denial of service DoS was found in the writetptentry in drivers/infiniband/hw/cxgb4/mem.c in the cxgb4' Chelsio T4/T5 RDMA Driver. Some of the architectures performing the DMA operation directly from the stack variable instead of the heap allows an attacker in the network to cause some security...

Ubuntu: Security Advisory (USN-4208-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-4210-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4211-2: Linux kernel (Xenial HWE) vulnerabilities

USN-4211-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM. Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kerne...

USN-4211-1: Linux kernel vulnerabilities

Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kernel process scheduler. A local attacker could possibly use this to cause a denial of service. CVE-2018-20784 Nicolas Waisman discovered that the WiFi driver stack in the Linux kernel did not properly validate SSID...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4208-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4208-1 advisory. Jann Horn discovered that the OverlayFS and ShiftFS Drivers in the Linux kernel did not properly handle reference counting during memory mapping operatio...

Slackware 14.2 : Slackware 14.2 kernel (SSA:2019-311-01)

New kernel packages are available for Slackware 14.2 to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2019-311-01. The text itself is copyright C Slackware Linux, Inc. include'compat.inc...

[slackware-security] Slackware 14.2 kernel

New kernel packages are available for Slackware 14.2 to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/linux-4.4.199/: Upgraded. These updates fix various bugs and security issues. Be sure to upgrade your initrd after upgrading the kernel packages. I...

CVE-2019-17075

An issue was discovered in writetptentry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dmamapsingle a DMA function from a stack variable. This could allow an attacker to trigger a Denial of Service, exploitable if this driver is used ...

CVE-2019-17075

An issue was discovered in writetptentry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dmamapsingle a DMA function from a stack variable. This could allow an attacker to trigger a Denial of Service, exploitable if this driver is used ...