Linux Distros Unpatched Vulnerability : CVE-2014-8117

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service CPU consumption or crash via...

Linux Distros Unpatched Vulnerability : CVE-2017-11409

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was addressed in epan/dissectors/packet-gprs-llc.c by using a different...

Linux Distros Unpatched Vulnerability : CVE-2017-5506

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file. CVE-2017-5506 Note that Ness...

Linux Distros Unpatched Vulnerability : CVE-2015-3253

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial o...

Linux Distros Unpatched Vulnerability : CVE-2016-5483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-3600. Reason: This candidate is a reservation duplicate of CVE-2017-3600. Notes: All CVE...

Linux Distros Unpatched Vulnerability : CVE-2013-1670

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Chrome Object Wrapper COW implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x...

Linux Distros Unpatched Vulnerability : CVE-2016-10058

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick before 6.9.6-3 allows remote attackers to cause a denial of service memory consumption...

Linux Distros Unpatched Vulnerability : CVE-2016-7931

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mplsprint. CVE-2016-7931 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2017-5459

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 52.1, Firefox ESR...

Linux Distros Unpatched Vulnerability : CVE-2020-9893

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2...

Linux Distros Unpatched Vulnerability : CVE-2016-5407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 XvQueryAdaptors and 2 XvQueryEncodings functions in X.org libXv before 1.0.11 allow remote X servers to trigger out-of-bounds memory access operations via...

Linux Distros Unpatched Vulnerability : CVE-2015-3255

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The polkitbackendactionpoolinit function in polkitbackend/polkitbackendactionpool.c in PolicyKit aka polkit before 0.113 might allow local users to gain...

Linux Distros Unpatched Vulnerability : CVE-2016-5037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dwarfloadsection function in libdwarf before 20160923 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...

Linux Distros Unpatched Vulnerability : CVE-2020-15653

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An iframe sandbox element with the allow-popups flag could be bypassed when using noopener links. This could have led to security issues for websites relying on...

Linux Distros Unpatched Vulnerability : CVE-2016-7116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Directory traversal vulnerability in hw/9pfs/9p.c in QEMU aka Quick Emulator allows local guest OS administrators to access host files outside the export path v...

Linux Distros Unpatched Vulnerability : CVE-2019-12482

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GPAC 0.7.1. There is a NULL pointer dereference in the function gfisomgetoriginalformattype at isomedia/drmsample.c in libgpac.a, as...

Linux Distros Unpatched Vulnerability : CVE-2019-19204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Oniguruma 6.x before 6.9.4rc2. In the function fetchintervalquantifier formerly known as fetchrangequantifier in regparse.c, PFETCH i...

Linux Distros Unpatched Vulnerability : CVE-2019-13509

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Docker CE and EE before 18.09.8 as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10, Docker Engine in debug mode may sometimes add secret...

Linux Distros Unpatched Vulnerability : CVE-2015-8158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service infinite loop via...

Linux Distros Unpatched Vulnerability : CVE-2018-4700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-4300. Reason: This candidate is a duplicate of CVE-2018-4300. Notes: All CVE users shoul...