1626 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-17527
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - While investigating bug 64830 it was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request...
Linux Distros Unpatched Vulnerability : CVE-2015-7313
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF before 4.0.7 allows remote attackers to cause a denial of service memory consumption and crash via a crafted tiff file. CVE-2015-7313 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2016-1234
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the glob implementation in GNU C Library aka glibc before 2.24, when GLOBALTDIRFUNC is used, allows context-dependent attackers t...
Linux Distros Unpatched Vulnerability : CVE-2018-7436
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function. CVE-2018-7436 Note tha...
Linux Distros Unpatched Vulnerability : CVE-2017-16650
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The qmiwwanbind function in drivers/net/usb/qmiwwan.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service divide-by-zero error a...
Linux Distros Unpatched Vulnerability : CVE-2014-3007
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Python Image Library PIL 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified...
Linux Distros Unpatched Vulnerability : CVE-2020-11762
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the...
Linux Distros Unpatched Vulnerability : CVE-2016-9536
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tools/tiff2pdf.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers in t2pprocessjpegstrip. Reported as MSVR 35098, aka...
Linux Distros Unpatched Vulnerability : CVE-2017-14977
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability due to lack of validation of a table...
Linux Distros Unpatched Vulnerability : CVE-2017-8105
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1decoderparsecharstrings function in...
Linux Distros Unpatched Vulnerability : CVE-2016-5321
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service invalid read and crash via a crafted tiff image...
Linux Distros Unpatched Vulnerability : CVE-2014-0230
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the readi...
Linux Distros Unpatched Vulnerability : CVE-2018-11683
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440...
Linux Distros Unpatched Vulnerability : CVE-2015-7810
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libbluray MountManager class has a time-of-check time-of-use TOCTOU race when expanding JAR files CVE-2015-7810 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2017-7157
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTun...
Linux Distros Unpatched Vulnerability : CVE-2019-12529
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the...
Linux Distros Unpatched Vulnerability : CVE-2014-3004
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity XXE attacks via a...
Linux Distros Unpatched Vulnerability : CVE-2014-5461
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the vararg functions in ldo.c in Lua 5.1 through 5.2.x before 5.2.3 allows context- dependent attackers to cause a denial of service crash vi...
Linux Distros Unpatched Vulnerability : CVE-2016-8862
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact via a crafted image,...
Linux Distros Unpatched Vulnerability : CVE-2019-6465
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Controls for zone transfers may not be properly applied to Dynamically Loadable Zones DLZs if the zones are writable Versions affected: BIND 9.9.0 - 9.10.8-P1,...