1626 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-7554
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFFVGetField function in tifdir.c in libtiff 4.0.6 allows attackers to cause a denial of service invalid memory write and crash or possibly have unspecifie...
Linux Distros Unpatched Vulnerability : CVE-2017-10971
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack...
Linux Distros Unpatched Vulnerability : CVE-2020-0181
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In exifdataloaddatathumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with ...
Linux Distros Unpatched Vulnerability : CVE-2016-0703
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getclientmasterkey function in s2srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before...
Linux Distros Unpatched Vulnerability : CVE-2018-7225
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage in rfbserver.c does not sanitize msg.cct.length, leading to access to...
Linux Distros Unpatched Vulnerability : CVE-2013-0166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCS...
Linux Distros Unpatched Vulnerability : CVE-2017-11535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage function in coders/ps.c...
Linux Distros Unpatched Vulnerability : CVE-2016-10061
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attacker...
Linux Distros Unpatched Vulnerability : CVE-2015-5312
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers...
Linux Distros Unpatched Vulnerability : CVE-2019-17543
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4write32 related to LZ4compressdestSize, affecting applications that call LZ4compressfast with a large...
Linux Distros Unpatched Vulnerability : CVE-2018-19432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sfwriteint in sndfile.c, which will lead to a denial of servic...
Linux Distros Unpatched Vulnerability : CVE-2016-7879
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when...
Linux Distros Unpatched Vulnerability : CVE-2016-1286
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service assertion failure and daemon exit via a...
Linux Distros Unpatched Vulnerability : CVE-2012-3482
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Fetchmail 5.0.8 through 6.3.21, when using NTLM authentication in debug mode, allows remote NTLM servers to 1 cause a denial of service crash and delayed delive...
Linux Distros Unpatched Vulnerability : CVE-2017-13040
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions. CVE-2017-13040 Note that Nessus relies on the presence of t...
Linux Distros Unpatched Vulnerability : CVE-2019-3886
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest agent, which...
Linux Distros Unpatched Vulnerability : CVE-2017-9193
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input- tga.c:538:33. CVE-2017-9193 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2017-13050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki- rtr.c:rpkirtrpduprint. CVE-2017-13050 Note that Nessus relies on the presen...
Linux Distros Unpatched Vulnerability : CVE-2021-20200
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...
Linux Distros Unpatched Vulnerability : CVE-2017-9310
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU aka Quick Emulator, when built with the e1000e NIC emulation support, allows local guest OS privileged users to cause a denial of service infinite loop via...