Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 3: rpm (TSSA-2022:0007)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0007 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

4.9CVSS6.3AI score0.01706EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.24 views

Rocky Linux 8 : rpm (RLSA-2021:4489)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:4489 advisory. - A flaw was found in RPM's hdrblobInit in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat...

4.9CVSS6.3AI score0.01706EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.3 views

SUSE CVE-2021-20266

A flaw was found in RPM's hdrblobInit in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability...

3.1CVSS6.6AI score0.01706EPSS
Exploits0References49
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-5273-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.6AI score0.01706EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/13 12:0 a.m.26 views

SUSE SLES12 Security Update : rpm (SUSE-SU-2022:3939-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3939-1 advisory. - Fixed PGP parsing bugs bsc1185299. - Fixed various format handling bugs bsc996280. - CVE-2021-3421: Fixed vulnerability where...

7CVSS6.7AI score0.01706EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2022/11/11 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2022:3939-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7AI score0.01706EPSS
Exploits0References9
IBM AIX
IBM AIX
added 2022/09/23 9:39 a.m.53 views

AIX is vulnerable to arbitrary code execution and RPM database corruption and denial of service due to RPM.

IBM SECURITY ADVISORY First Issued: Fri Sep 23 09:39:22 CDT 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/rpmadvisory.asc https://aix.software.ibm.com/aix/efixes/security/rpmadvisory.asc...

7CVSS8AI score0.01706EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.63 views

AlmaLinux 8 : rpm (ALSA-2021:4489)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:4489 advisory. - A flaw was found in RPM's hdrblobInit in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat...

4.9CVSS6.3AI score0.01706EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2021-0167)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.6AI score0.01706EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/11/17 12:0 a.m.36 views

Oracle Linux 8 : rpm (ELSA-2021-4489)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-4489 advisory. - Fixes CVE-2021-20266 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested f...

4.9CVSS6.5AI score0.01706EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.99 views

rpm security, bug fix, and enhancement update

4.14.3-19 - Unbreak in-tree kmod strip by reverting brp-strip fix 1967291 4.14.3-18 - Address important covscan issues 1996665, vol. 2 4.14.3-17 - Address important covscan issues 1996665 4.14.3-16 - Add support for read-only sqlite rpmdb 1938928 - Drop compat .decode method from returned Py3...

4.9CVSS6.4AI score0.01706EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.35 views

CentOS 8 : rpm (CESA-2021:4489)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4489 advisory. - rpm: missing length checks in hdrblobInit CVE-2021-20266 Note that Nessus has not tested for this issue but has instead relied only on the application's...

4.9CVSS6.5AI score0.01706EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.31 views

RHEL 8 : rpm (RHSA-2021:4489)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4489 advisory. The RPM Package Manager RPM is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating...

4.9CVSS6.6AI score0.01706EPSS
Exploits0References9
OSV
OSV
added 2021/11/09 9:32 a.m.21 views

ALSA-2021:4489 Low: rpm security, bug fix, and enhancement update

The RPM Package Manager RPM is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Security Fixes: rpm: missing length checks in hdrblobInit CVE-2021-20266 For more details about the security issues, including t...

4.9CVSS6.3AI score0.01706EPSS
Exploits0References1
OSV
OSV
added 2021/11/09 9:32 a.m.31 views

RLSA-2021:4489 Low: rpm security, bug fix, and enhancement update

The RPM Package Manager RPM is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Security Fixes: rpm: missing length checks in hdrblobInit CVE-2021-20266 For more details about the security issues, including t...

3.1CVSS6.4AI score0.01706EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/10/19 12:0 a.m.36 views

openSUSE 15 Security Update : rpm (openSUSE-SU-2021:1366-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1366-1 advisory. - A flaw was found in RPM's hdrblobInit in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds...

7CVSS6.6AI score0.01706EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2021/10/18 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2021:3444-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.4AI score0.01706EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/17 12:0 a.m.22 views

SUSE SLED15: python2-rpm / python3-rpm / rpm / rpm-32bit / rpm-build / rpm-devel / etc (SUSE-SU-2021:3444-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3444-1 advisory. Security issues fixed: - CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements bsc1183543, bsc1183545,...

7CVSS6.8AI score0.01706EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2021/08/18 12:0 a.m.22 views

openSUSE: Security Advisory for rpm (openSUSE-SU-2021:2682-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7CVSS6.8AI score0.01706EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/08/13 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2021:2682-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.4AI score0.01706EPSS
Exploits0References2
Rows per page
Query Builder