1095 matches found
AlmaLinux 8 : sudo (ALSA-2025:10110)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:10110 advisory. sudo: LPE via host option CVE-2025-32462 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that Nessus has...
AlmaLinux 8 : python3.11 (ALSA-2025:10026)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10026 advisory. cpython: Tarfile extracts filtered members when errorlevel=0 CVE-2025-4435 cpython: Bypass extraction filter to modify file metadata outside extraction...
AlmaLinux 8 : firefox (ALSA-2025:10074)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:10074 advisory. firefox: Content-Disposition header ignored when a file is included in an embed or object tag CVE-2025-6430 firefox: Use-after-free in FontFaceSet...
AlmaLinux 8 : libblockdev (ALSA-2025:9878)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9878 advisory. libblockdev: LPE from allowactive to root in libblockdev via udisks CVE-2025-6019 Tenable has extracted the preceding description block directly from the AlmaLinux...
AlmaLinux 8 : kernel-rt (ALSA-2025:9581)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9581 advisory. kernel: cifs: fix double free race when mount fails in cifsgetroot CVE-2022-48919 kernel: security/keys: fix slab-out-of-bounds in keytaskpermission...
AlmaLinux 8 : libvpx (ALSA-2025:9119)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9119 advisory. libvpx: Double-free in libvpx encoder CVE-2025-5283 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that...
AlmaLinux 8 : python3.12 (ALSA-2025:10031)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10031 advisory. cpython: Tarfile extracts filtered members when errorlevel=0 CVE-2025-4435 cpython: Bypass extraction filter to modify file metadata outside extraction...
AlmaLinux 8 : container-tools:4.0 (ALSA-2023:6938)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:6938 advisory. go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents CVE-2022-3064 golang: html/template: improper handlin...
AlmaLinux 8 : xorg-x11-server and xorg-x11-server-Xwayland (ALSA-2025:9305)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9305 advisory. xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175 xorg-x11-server-Xwayland:...
AlmaLinux 8 : gimp:2.8 (ALSA-2025:9165)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9165 advisory. gimp: Multiple use after free in XCF parser CVE-2025-48798 gimp: Multiple heap buffer overflows in TGA parser CVE-2025-48797 gimp: GIMP ICO File Parsing...
AlmaLinux 8 : kernel (ALSA-2025:9580)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9580 advisory. kernel: cifs: fix double free race when mount fails in cifsgetroot CVE-2022-48919 kernel: security/keys: fix slab-out-of-bounds in keytaskpermission...
AlmaLinux 8 : libxml2 (ALSA-2025:8958)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:8958 advisory. libxml2: Out-of-Bounds Read in libxml2 CVE-2025-32414 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note tha...
AlmaLinux 8 : idm:DL1 (ALSA-2025:9188)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9188 advisory. freeIPA: idm: Privilege escalation from host to domain admin in FreeIPA CVE-2025-4404 Tenable has extracted the preceding description block directly from the...
AlmaLinux 8 : osbuild-composer (ALSA-2025:9844)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9844 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly fro...
AlmaLinux 8 : perl-YAML-LibYAML (ALSA-2025:9329)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:9329 advisory. yaml-libyaml: LibYAML Perl File Modification Vulnerability CVE-2025-40908 Tenable has extracted the preceding description block directly from the AlmaLinux securit...
AlmaLinux 8 : weldr-client (ALSA-2025:9845)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:9845 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly fro...
AlmaLinux 8 : perl-File-Find-Rule (ALSA-2025:9605)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:9605 advisory. perl-file-find-rule: File::Find::Rule Arbitrary Code Execution CVE-2011-10007 Tenable has extracted the preceding description block directly from the AlmaLinux...
AlmaLinux 8 : mod_security (ALSA-2025:8844)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:8844 advisory. modsecurity: ModSecurity Has Possible DoS Vulnerability CVE-2025-47947 Tenable has extracted the preceding description block directly from the AlmaLinux security...
AlmaLinux 8 : libjpeg-turbo (ALSA-2025:7540)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7540 advisory. libjpeg-turbo: heap-based buffer over-read in getrgbrow in rdppm.c CVE-2020-13790 Tenable has extracted the preceding description block directly from the AlmaLinux...
AlmaLinux 8 : thunderbird (ALSA-2025:8756)
The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:8756 advisory. thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header in...