CentOS 8 : dpdk (CESA-2020:4806)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4806 advisory. - dpdk: librtevhost Integer overflow in vhostusersetlogbase CVE-2020-10722 - dpdk: librtevhost Integer truncation in vhostusercheckandallocqueuepair...

CentOS 8 : idm:DL1 and idm:client (CESA-2020:4670)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4670 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

CentOS 8 : python38:3.8 (CESA-2020:4641)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4641 advisory. - PyYAML: command execution through python/object/apply constructor in FullLoader CVE-2019-20477 - python: infinite loop in the tarfile module via...

CentOS 8 : sqlite (CESA-2020:1810)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1810 advisory. - sqlite: fts3: improve shadow table corruption detection CVE-2019-13752 - sqlite: fts3: incorrectly removed corruption check CVE-2019-13753 - sqlite:...

CentOS 8 : php:7.3 (CESA-2020:3662)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:3662 advisory. - php: Out-of-bounds read due to integer overflow in iconvmimedecodeheaders CVE-2019-11039 - php: Buffer over-read in exifreaddata CVE-2019-11040 - php...

CentOS 8 : ghostscript (CESA-2019:3890)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3890 advisory. - ghostscript: -dSAFER escape in .charkeys 701841 CVE-2019-14869 Note that Nessus has not tested for this issue but has instead relied only on the application's...

CentOS 8 : firefox (CESA-2019:0966)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:0966 advisory. - Mozilla: Proxy Auto-Configuration file can define localhost access to be proxied CVE-2018-18506 - Mozilla: Memory safety bugs fixed in Firefox 66 and...

CentOS 8 : thunderbird (CESA-2019:1623)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:1623 advisory. - libical: Heap buffer over read in icalparser.c parsergetnextchar CVE-2019-11703 - libical: Heap buffer overflow in icalmemorystrdupanddequote functio...

CentOS 8 : firefox (CESA-2019:3196)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:3196 advisory. - Mozilla: Use-after-free when creating index updates in IndexedDB CVE-2019-11757 - Mozilla: Potentially exploitable crash due to 360 Total Security...

CentOS 8 : python3 (CESA-2019:3520)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3520 advisory. - python: NULL pointer dereference using a specially crafted X509 certificate CVE-2019-5010 - python: CRLF injection via the query part of the url pass...

CentOS 8 : virt:rhel (CESA-2019:1175)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:1175 advisory. - hardware: Microarchitectural Store Buffer Data Sampling MSBDS CVE-2018-12126 - hardware: Micro-architectural Load Port Data Sampling - Information Le...

CentOS 8 : kernel (CESA-2019:3871)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3871 advisory. - hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write CVE-2019-0155 Note that Nessus has not tested for this issue but has instead...

CentOS 8 : java-11-openjdk (CESA-2019:3135)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3135 advisory. - OpenJDK: Missing restrictions on use of custom SocketImpl Networking, 8218573 CVE-2019-2945 - OpenJDK: Improper handling of Kerberos proxy credential...

CentOS 8 : mod_auth_mellon (CESA-2019:3421)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3421 advisory. - modauthmellon: open redirect in logout url when using URLs with backslashes CVE-2019-3877 Note that Nessus has not tested for this issue but has instead relie...

CentOS 8 : container-tools:rhel8 (CESA-2019:4269)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:4269 advisory. - runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc CVE-2019-16884 - podman: resolving symlink in host filesystem lea...

CentOS 8 : container-tools:rhel8 (CESA-2019:0975)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:0975 advisory. - runc: Execution of malicious containers allows for container escape and access to host filesystem CVE-2019-5736 Note that Nessus has not tested for this issue...

CentOS 8 : ghostscript (CESA-2019:0971)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:0971 advisory. - ghostscript: superexec operator is available 700585 CVE-2019-3835 - ghostscript: forceput in DefineResource is still accessible 700576 CVE-2019-3838 ...

CentOS 8 : mysql:8.0 (CESA-2019:2511)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:2511 advisory. - mysql: Server: Optimizer unspecified vulnerability CPU Jan 2019 CVE-2019-2420, CVE-2019-2481, CVE-2019-2507, CVE-2019-2529, CVE-2019-2530 - mysql:...

CentOS 7 : libvirt (RHSA-2020:5040)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5040 advisory. - A double free memory issue was found to occur in the libvirt API, in versions before 6.8.0, responsible for requesting information about network interfaces of...

CentOS 7 : freetype (RHSA-2020:4907)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4907 advisory. - Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...