351 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-0720
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site request forgery CSRF vulnerability in pcsd web UI in pcs before 0.9.149. CVE-2016-0720 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2018-19432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sfwriteint in sndfile.c, which will lead to a denial of servic...
Linux Distros Unpatched Vulnerability : CVE-2016-9398
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jpcfloorlog2 function in jpcmath.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service assertion failure via unspecified vectors...
Linux Distros Unpatched Vulnerability : CVE-2019-3886
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest agent, which...
Linux Distros Unpatched Vulnerability : CVE-2017-9185
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 has a cannot be represented in type int issue in input-bmp.c:319:7. CVE-2017-9185 Note that Nessus relies on the presence of...
Linux Distros Unpatched Vulnerability : CVE-2017-13050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki- rtr.c:rpkirtrpduprint. CVE-2017-13050 Note that Nessus relies on the presen...
Linux Distros Unpatched Vulnerability : CVE-2016-2371
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds write vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could cause memory...
Linux Distros Unpatched Vulnerability : CVE-2021-20200
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...
Linux Distros Unpatched Vulnerability : CVE-2013-0166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCS...
Linux Distros Unpatched Vulnerability : CVE-2018-5336
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the...
Linux Distros Unpatched Vulnerability : CVE-2017-13165
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Android kernel. Android ID A-31269937. CVE-2017-13165 Note that...
Linux Distros Unpatched Vulnerability : CVE-2018-18849
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Qemu 3.0.0, lsidomsgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msglen value. CVE-2018-18849 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2017-13764
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/packet-mbtcp.c by adding length...
Linux Distros Unpatched Vulnerability : CVE-2017-17513
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TeX Live through 20170524 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attacke...
Linux Distros Unpatched Vulnerability : CVE-2018-11683
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440...
Linux Distros Unpatched Vulnerability : CVE-2015-7810
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libbluray MountManager class has a time-of-check time-of-use TOCTOU race when expanding JAR files CVE-2015-7810 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2012-2934
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen 4.0, and 4.1, when running a 64-bit PV guest on older AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS...
Linux Distros Unpatched Vulnerability : CVE-2014-3007
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Python Image Library PIL 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified...
Linux Distros Unpatched Vulnerability : CVE-2017-12809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU aka Quick Emulator, when built with the IDE disk and CD/DVD-ROM Emulator support, allows local guest OS privileged users to cause a denial of service NULL...
Linux Distros Unpatched Vulnerability : CVE-2014-3004
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a...