41 matches found
MiracleLinux 8 : gegl04-0.4.4-6.el8.2 (AXSA:2022-2998:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-2998:01 advisory. gegl: shell expansion via a crafted pathname CVE-2021-45463 Tenable has extracted the preceding description block directly from the MiracleLinux security...
MiracleLinux 7 : gegl-0.2.0-19.el7.1 (AXSA:2022-2991:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-2991:01 advisory. gegl: shell expansion via a crafted pathname CVE-2021-45463 Tenable has extracted the preceding description block directly from the MiracleLinux security...
Alibaba Cloud Linux 3 : 0192: gegl04 (ALINUX3-SA-2022:0192)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0192 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-45463: loadcache in GEGL before 0.4.34...
Linux Distros Unpatched Vulnerability : CVE-2021-45463
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the...
CentOS 9 : gegl04-0.4.34-1.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the gegl04-0.4.34-1.el9 build changelog. - loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by...
Huawei EulerOS: Security Advisory for gegl (EulerOS-SA-2022-1722)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gegl04 (EulerOS-SA-2022-1344)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : gegl (EulerOS-SA-2022-1321)
According to the versions of the gegl package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by...
Huawei EulerOS: Security Advisory for gegl (EulerOS-SA-2022-1321)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AlmaLinux 8 : gegl04 (ALSA-2022:0177)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:0177 advisory. - loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the...
Important: gegl
Issue Overview: Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able to lead to the execution of arbitrary shell commands that impacts availability, confidentiality and integrity. CVE-2021-45463 Affected Packages: ge...
Amazon Linux 2 : gegl (ALAS-2022-1755)
The version of gegl installed on the remote host is prior to 0.2.0-19. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2022-1755 advisory. Due to the use of the system command in the Magick-Load op used by gegl an attacker is able to craft a command line path that is able...
openSUSE: Security Advisory for gegl (openSUSE-SU-2021:4209-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for gegl (openSUSE-SU-2021:4210-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
gegl04 security update
0.4.4-6.2 - spec bump because of build pipeline issues 0.4.4-6.1 - Fix CVE-2021-45463 2035423...
Important: Red Hat Security Advisory: gegl04 security update
An update for gegl04 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Important: Red Hat Security Advisory: gegl04 security update
An update for gegl04 is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Important: gegl04 security update
GEGL Generic Graphics Library is a graph-based image processing framework. Security Fixes: gegl: shell expansion via a crafted pathname CVE-2021-45463 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE...
gegl04 security update
An update is available for gegl04. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GEGL Generic Graphics Library is a graph-based image processing framework...
RHEL 8 : gegl04 (RHSA-2022:0184)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0184 advisory. GEGL Generic Graphics Library is a graph-based image processing framework. Security Fixes: gegl: shell expansion via a crafted pathname CVE-2021-4546...