Fedora 43 : gnutls (2026-d5f140eb90)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d5f140eb90 advisory. Update to 3.8.13, fixes, like 13 CVEs. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

gnutls-3.8.13-1.1 on GA media (moderate)

gnutls-3.8.13-1.1 on GA media Announcement ID: openSUSE-SU-2026:10691-1 Rating: moderate Cross-References: CVE-2026-33845 CVE-2026-33846 CVE-2026-3832 CVE-2026-3833 CVE-2026-42009 CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013 CVE-2026-42014 CVE-2026-42015 CVE-2026-5260 CVE-2026-5419...

OPENSUSE-SU-2026:10691-1 gnutls-3.8.13-1.1 on GA media

These are all security issues fixed in the gnutls-3.8.13-1.1 package on the GA media of openSUSE Tumbleweed...

PT-2026-37365

These are all security issues fixed in the gnutls-3.8.13-1.1 package on the GA media of openSUSE Tumbleweed...

PT-2026-37378

Name of the Vulnerable Software and Affected Versions gnutls versions prior to 3.8.13-1.1 Description A flaw exists where permitted name constraints are incorrectly ignored when previous Certificate Authorities CAs only have excluded name constraints. A remote attacker can exploit this to bypass...

PT-2026-37380

Name of the Vulnerable Software and Affected Versions gnutls versions prior to 3.8.13-1.1 Description No detailed information was provided regarding the nature of the security issues fixed in this package. Recommendations Update to version 3.8.13-1.1...

PT-2026-37434

Name of the Vulnerable Software and Affected Versions gnutls versions prior to 3.8.13-1.1 Description No detailed information was provided regarding the nature of the security issues fixed in this package. Recommendations Update to version 3.8.13-1.1...

PT-2026-37433

Name of the Vulnerable Software and Affected Versions gnutls versions prior to 3.8.13-1.1 Description No detailed information was provided regarding the nature of the security issues fixed in this package. Recommendations Update to version 3.8.13-1.1...

PT-2026-37382

Name of the Vulnerable Software and Affected Versions gnutls versions prior to 3.8.13-1.1 Description No detailed information was provided regarding the nature of the security issues fixed in this package. Recommendations Update to version 3.8.13-1.1...

CVE-2022-0350

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.13...

EUVD-2022-1645

Malicious code in bioql PyPI...

OPENSUSE-SU-2024:12300-1 python38-3.8.13-4.1 on GA media

These are all security issues fixed in the python38-3.8.13-4.1 package on the GA media of openSUSE Tumbleweed...

CVE-2024-0200

An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. This vulnerability could lead to the execution of user-controlled methods and remote code execution. To exploit this bug, an actor would need to be logged into an account on the...

CVE-2024-0200

An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. This vulnerability could lead to the execution of user-controlled methods and remote code execution. To exploit this bug, an actor would need to be logged into an account on the...

CVE-2022-0350

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.13...

CVE-2022-0350 Cross-site Scripting (XSS) - Stored in vanessa219/vditor

Cross-site Scripting XSS - Stored in GitHub repository vanessa219/vditor prior to 3.8.13...

PT-2022-13122 · Vditor · Vditor

Name of the Vulnerable Software and Affected Versions: vditor versions prior to 3.8.13 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject malicious...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.44.1 - net: qlogic: Fix memory leak in qlalloclargebuffers Navid Emamdoost Orabug: 31055328 CVE-2019-18806 - swiotlb: clean up reporting Kees Cook Orabug: 31085018 CVE-2018-5953...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.36.1 - tun: call devgetvalidname before registernetdevice Cong Wang Orabug: 29925557 CVE-2018-7191...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.33.2 - x86/speculation/mds: Make cpumatches cpuinit Patrick Colp Orabug: 29751729 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 - x86/speculation/mds: Only worry about firmware loaded microcode Patrick Colp Orabug: 29641784 CVE-2018-12126 CVE-2018-12130...