Amazon Linux 2023 : ghostscript, ghostscript-gtk, ghostscript-tools-dvipdf (ALAS2023-2025-1218)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1218 advisory. Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfwritecmap in devices/vector/gdevpdtw.c. CVE-2025-59798 Artifex Ghostscript through 10.05.1 has a stack-based buffer...

Amazon Linux 2023 : squid (ALAS2023-2025-1219)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1219 advisory. Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asnbuildobjid in lib/snmplib/asn1.c. CVE-2025-59362 Tenable has extracted the preceding description block directly from the...

Amazon Linux 2 : docker, --advisory ALAS2DOCKER-2025-076 (ALASDOCKER-2025-076)

The version of docker installed on the remote host is prior to 25.0.13-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2DOCKER-2025-076 advisory. Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container...

Amazon Linux 2023 : libcusparse-12, libcusparse-devel-12 (ALAS2023NVIDIA-2025-201)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-201 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

Amazon Linux 2023 : libnvjitlink-13, libnvjitlink-devel-13 (ALAS2023NVIDIA-2025-151)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-151 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2023 : libnvfatbin-13, libnvfatbin-devel-13 (ALAS2023NVIDIA-2025-152)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-152 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2023 : libnpp-13, libnpp-devel-13 (ALAS2023NVIDIA-2025-153)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-153 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2023 : cuda-command-line-tools-12 (ALAS2023NVIDIA-2025-236)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-236 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

Amazon Linux 2023 : cuda-nsight-compute-12 (ALAS2023NVIDIA-2025-222)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-222 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

Amazon Linux 2023 : cuda-nvdisasm-12 (ALAS2023NVIDIA-2025-220)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-220 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

Amazon Linux 2 : libtiff, --advisory ALAS2-2025-3019 (ALAS-2025-3019)

The version of libtiff installed on the remote host is prior to 4.0.3-35. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3019 advisory. Multiple potential integer overflow in tiffcp.c in libtiff = 4.5.1 can allow remote attackers to cause a denial of servic...

Amazon Linux 2023 : libcublas-13, libcublas-devel-13 (ALAS2023NVIDIA-2025-158)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-158 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2 : polkit, --advisory ALAS2-2025-3024 (ALAS-2025-3024)

The version of polkit installed on the remote host is prior to 0.112-26. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3024 advisory. A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be...

Amazon Linux 2023 : cuda-gdb-13, cuda-gdb-src-13 (ALAS2023NVIDIA-2025-181)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-181 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2023 : cuda-tools-13 (ALAS2023NVIDIA-2025-161)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-161 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2 : qemu, --advisory ALAS2-2025-3031 (ALAS-2025-3031)

The version of qemu installed on the remote host is prior to 3.1.0-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3031 advisory. A flaw was found in QEMU. An assertion failure was present in the usbepget function in hw/net/core.c when trying to get the USB endpoi...

Amazon Linux 2 : compat-libtiff3, --advisory ALAS2-2025-3021 (ALAS-2025-3021)

The version of compat-libtiff3 installed on the remote host is prior to 3.9.4-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3021 advisory. Write-What-Where in libtiff via TIFFReadRGBAImageOriented CVE-2025-9900 Tenable has extracted the preceding description...

Amazon Linux 2023 : cuda-cuobjdump-13 (ALAS2023NVIDIA-2025-185)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-185 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

Amazon Linux 2023 : cuda (ALAS2023NVIDIA-2025-208)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-208 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

Amazon Linux 2023 : amazon-cloudwatch-agent (ALAS2023-2025-1224)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1224 advisory. go-viper's mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data CVE-2025-11065 Tenable has extracted the preceding description block directly from the tested product...