MiracleLinux 8 : ksh-20120801-253.el8 (AXSA:2020-169:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-169:04 advisory. ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection CVE-2019-14868 Tenable has extracted the...

MiracleLinux 4 : firefox-68.5.0-2.0.1.AXS4 (AXSA:2020-4471:05)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4471:05 advisory. Mozilla: Missing bounds check on shared memory read in the parent process CVE-2020-6796 Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox...

MiracleLinux 4 : firefox-78.5.0-1.0.1.AXS4 (AXSA:2020-966:26)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-966:26 advisory. Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code CVE-2020-26951 Mozilla: Memory safety bugs fixed i...

MiracleLinux 8 : curl-7.61.1-12.el8 (AXSA:2020-648:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-648:04 advisory. curl: double free due to subsequent call of realloc CVE-2019-5481 curl: heap buffer overflow in function tftpreceivepacket CVE-2019-5482 curl: TFTP...

MiracleLinux 8 : openjpeg2-2.3.1-3.el8 (AXSA:2020-159:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-159:04 advisory. openjpeg: heap-based buffer overflow in pjt1clbldecodeprocessor in openjp2/t1.c CVE-2020-8112 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : sane-backends-1.0.27-19.el8.1 (AXSA:2020-550:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-550:01 advisory. sane-backends: Heap buffer overflow in epsondsnetread in epsonds-net.c CVE-2020-12861 sane-backends: Heap buffer overflow in esci2img CVE-2020-12865...

MiracleLinux 7 : firefox-68.9.0-1.0.1.el7.AXS7 (AXSA:2020-124:13)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-124:13 advisory. Mozilla: Use-after-free in SharedWorkerService CVE-2020-12405 Mozilla: JavaScript Type confusion with NativeTypes CVE-2020-12406 Mozilla: Memory safe...

MiracleLinux 7 : microcode_ctl-2.1-73.2.el7 (AXSA:2020-892:06)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-892:06 advisory. hw: Information disclosure issue in Intel SGX via RAPL interface CVE-2020-8695 hw: Vector Register Leakage-Active CVE-2020-8696 hw: Fast forward stor...

MiracleLinux 7 : kernel-3.10.0-1127.18.2.el7 (AXSA:2020-263:09)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-263:09 advisory. kernel: kernel: DAX hugepages not considered during mremap CVE-2020-10757 kernel: buffer overflow in mwifiexcmdappendvsietlv function in...

MiracleLinux 7 : spice-gtk-0.35-5.el7.1, spice-0.14.0-9.el7.1 (AXSA:2020-682:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-682:05 advisory. spice: multiple buffer overflow vulnerabilities in QUIC decoding code CVE-2020-14355 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : ipa-4.6.5-11.4.0.1.el7.AXS7 (AXSA:2020-4468:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4468:01 advisory. ipa: Denial of service in IPA server due to wrong use of berscanf CVE-2019-14867 ipa: Batch API logging user passwords to /var/log/httpd/errorlog...

MiracleLinux 7 : podman-1.6.4-16.el7 (AXSA:2020-058:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-058:01 advisory. podman: resolving symlink in host filesystem leads to unexpected results of copy operation CVE-2019-18466 containers/image: Container images read...

MiracleLinux 4 : firefox-68.10.0-1.0.1.AXS4 (AXSA:2020-213:15)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-213:15 advisory. Mozilla: Information disclosure due to manipulated URL object CVE-2020-12418 Mozilla: Use-after-free in nsGlobalWindowInner CVE-2020-12419 Mozilla:...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.262.b10-0.el7 (AXSA:2020-221:11)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-221:11 advisory. OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access Libraries, 8238920 CVE-2020-14583 OpenJDK: Incomplete bounds checks in Affine...

MiracleLinux 7 : dpdk-18.11.5-1.el7 (AXSA:2020-4535:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4535:01 advisory. dpdk: possible memory leak leads to denial of service CVE-2019-14818 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : glibc-2.28-101.el8 (AXSA:2020-376:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-376:03 advisory. glibc: LDPREFERMAP32BITEXEC not ignored in setuid binaries CVE-2019-19126 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : firefox-78.6.0-1.0.1.el7.AXS7 (AXSA:2020-1070:27)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-1070:27 advisory. chromium-browser: Uninitialized Use in V8 CVE-2020-16042 Mozilla: Heap buffer overflow in WebGL CVE-2020-26971 Mozilla: CSS Sanitizer performed...

MiracleLinux 4 : tomcat6-6.0.24-115.AXS4 (AXSA:2020-136:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-136:02 advisory. tomcat: deserialization flaw in session persistence storage leading to RCE CVE-2020-9484 Tenable has extracted the preceding description block directly from t...

MiracleLinux 7 : python-flask-0.10.1-5.el7 (AXSA:2020-4499:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4499:01 advisory. python-flask: Denial of Service via crafted JSON file CVE-2018-1000656 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 4 : thunderbird-68.4.1-2.AXS4 (AXSA:2020-4431:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4431:01 advisory. Mozilla: IonMonkey type confusion with StoreElementHole and FallibleStoreElement CVE-2019-17026 Mozilla: Bypass of @namespace CSS sanitization durin...