9 matches found
EulerOS Virtualization 2.13.0 : xz (EulerOS-SA-2026-2422)
According to the versions of the xz packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was us...
Advisory ROSA-SA-2026-3313
Component: xz 5.2.9 OS: ROSA-CHROME Unaffected versions: = xz-5.2.9-2 Affected versions: xz-5.2.9-2 CVE-ID: CVE-2026-34743 BDU-ID: None CVE-Crit: Medium CVE-DESCRIPTION: The buffer overflow vulnerability in XZ Utils allows an attacker to cause memory corruption by using the lzmaindexdecoder...
SUSE SLES15 Security Update : xz (SUSE-SU-2026:2118-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2118-1 advisory. This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzmaindexappend bsc1261280. Tenable has extracted the...
SUSE SLES12 Security Update : xz (SUSE-SU-2026:2052-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:2052-1 advisory. This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzmaindexappend bsc1261280. Tenable has extracted the preceding...
Photon OS 5.0: Xz PHSA-2026-5.0-0830
An update of the xz package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0830. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid310101...
CBL Mariner 2.0 Security Update: CBL-Mariner Releases (CVE-2026-34743)
The version of CBL-Mariner Releases installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-34743 advisory. - XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to...
CVE-2026-34743
XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index that contained no Records, the resulting lzmaindex was left in a state where where a subsequent lzmaindexappend would allocate too little...
Linux Distros Unpatched Vulnerability : CVE-2026-34743
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index tha...
PT-2026-29689
Name of the Vulnerable Software and Affected Versions XZ Utils versions prior to 5.8.3 Description XZ Utils, a data-compression library and command-line tools, had a flaw where the lzma index decoder function, when processing an Index without Records, could leave the lzma index in a state leading...