AlmaLinux 9 : emacs (ALSA-2025:4787)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4787 advisory. emacs: arbitrary code execution via Lisp macro expansion CVE-2024-53920 Tenable has extracted the preceding description block directly from the AlmaLinux security...

AlmaLinux 8 : mod_auth_openidc:2.3 (ALSA-2025:4597)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4597 advisory. modauthopenidc: DoS via Empty POST in modauthopenidc with OIDCPreservePost Enabled CVE-2025-3891 Tenable has extracted the preceding description block directly fro...

AlmaLinux 9 : 389-ds-base (ALSA-2025:4491)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4491 advisory. 389-ds-base: null pointer dereference leads to denial of service CVE-2025-2487 Tenable has extracted the preceding description block directly from the AlmaLinux...

AlmaLinux 8 : nodejs:20 (ALSA-2025:4461)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4461 advisory. c-ares: c-ares has a use-after-free in readanswers CVE-2025-31498 Tenable has extracted the preceding description block directly from the AlmaLinux security...

AlmaLinux 8 : nodejs:22 (ALSA-2025:4459)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4459 advisory. c-ares: c-ares has a use-after-free in readanswers CVE-2025-31498 SQLite: integer overflow in SQLite CVE-2025-3277 Tenable has extracted the preceding...

AlmaLinux 9 : ruby:3.1 (ALSA-2025:4488)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4488 advisory. rexml: DoS vulnerability in REXML CVE-2024-39908 rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace characte...

AlmaLinux 8 : libsoup (ALSA-2025:4560)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4560 advisory. libsoup: Integer overflow in appendparamquoted CVE-2025-32050 libsoup: Heap buffer overflow in sniffunknown CVE-2025-32052 libsoup: Heap buffer overflows ...

AlmaLinux 8 : libtiff (ALSA-2025:4658)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4658 advisory. libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service CVE-2017-17095 Tenable has extracted the preceding description block directly...

AlmaLinux 8 : ghostscript (ALSA-2025:4362)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4362 advisory. ghostscript: heap buffer over write vulnerability in GhostScript's lp8000printpage in gdevlp8k.c CVE-2020-27792 ghostscript: dangling pointer in...

AlmaLinux 9 : php:8.1 (ALSA-2025:4263)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4263 advisory. php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-decod...

AlmaLinux 9 : thunderbird (ALSA-2025:4229)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:4229 advisory. thunderbird: User Interface UI Misrepresentation of attachment URL CVE-2025-3523 thunderbird: Information Disclosure of /tmp directory listing CVE-2025-28...

AlmaLinux 9 : glibc (ALSA-2025:4244)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4244 advisory. glibc: buffer overflow in the GNU C Library's assert CVE-2025-0395 Tenable has extracted the preceding description block directly from the AlmaLinux security...

AlmaLinux 8 : expat (ALSA-2025:3913)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:3913 advisory. libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat CVE-2024-8176 Tenable has extracted the preceding description block directly from t...

AlmaLinux 9 : thunderbird (ALSA-2025:4169)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:4169 advisory. firefox: thunderbird: URL Bar Spoofing via non-BMP Unicode characters CVE-2025-3029 firefox: thunderbird: Use-after-free triggered by XSLTProcessor...

AlmaLinux 8 : thunderbird (ALSA-2025:4170)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:4170 advisory. firefox: thunderbird: URL Bar Spoofing via non-BMP Unicode characters CVE-2025-3029 firefox: thunderbird: Use-after-free triggered by XSLTProcessor...

AlmaLinux 8 : bluez (ALSA-2025:4043)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4043 advisory. BlueZ: Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability CVE-2023-27349 bluez: audio profile avrcp...

AlmaLinux 9 : java-1.8.0-openjdk (ALSA-2025:3845)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:3845 advisory. JDK: Better TLS connection support CVE-2025-21587 JDK: Improve compiler transformations CVE-2025-30691 JDK: Enhance Buffered Image handling CVE-2025-30698...

AlmaLinux 8 : webkit2gtk3 (ALSA-2025:3974)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:3974 advisory. webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash CVE-2024-44192 webkitgtk: A malicious website may exfiltrate...

AlmaLinux 8 : mod_auth_openidc:2.3 (ALSA-2025:3997)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:3997 advisory. modauthopenidc: modauthopenidc allows OIDCProviderAuthRequestMethod POSTs to leak protected data CVE-2025-31492 Tenable has extracted the preceding description blo...

AlmaLinux 9 : libxslt (ALSA-2025:4025)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:4025 advisory. libxslt: Use-After-Free in libxslt xsltGetInheritedNsList CVE-2024-55549 Tenable has extracted the preceding description block directly from the AlmaLinux security...