1866 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-1555
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When opening a website using the firefox:// protocol handler, SameSite cookies were not properly respected. This vulnerability affects Firefox 123. CVE-2024-155...
Linux Distros Unpatched Vulnerability : CVE-2019-11751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Logging-related command line parameters are not properly sanitized when Firefox is launched by another program, such as when a user clicks on malicious links in...
Linux Distros Unpatched Vulnerability : CVE-2025-21960
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: do not update checksum in bnxtxdpbuildskb The bnxtrxpkt updates ipsummed value at...
Linux Distros Unpatched Vulnerability : CVE-2021-47456
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: peakpci: peakpciremove: fix UAF When remove the module peekpci, referencing 'chan' again after releasing 'dev' will cause UAF. Fix this by releasing 'dev'...
Linux Distros Unpatched Vulnerability : CVE-2025-22005
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix memleak of nhcpcpurthoutput in fibchecknhv6gw. fibchecknhv6gw expects that...
Linux Distros Unpatched Vulnerability : CVE-2022-49753
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dmaengine: Fix double increment of clientcount in dmachanget The first time dmachanget is called for a channel the channel clientcount is incorrectly incremente...
Linux Distros Unpatched Vulnerability : CVE-2022-49834
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix use-after-free bug of nswriter on remount If a nilfs2 filesystem is downgraded to read-only due to metadata corruption on disk and is remounted...
Linux Distros Unpatched Vulnerability : CVE-2022-48963
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: fix memory leak in ipcmuxinit When failed to alloc ipcmux-uladb.ppqlt in...
Linux Distros Unpatched Vulnerability : CVE-2025-21500
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.40 and prior, 8.4.3 and pri...
Linux Distros Unpatched Vulnerability : CVE-2024-26697
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix data corruption in dsync block recovery for small block sizes The helper function nilfsrecoverycopyblock of nilfsrecoverydsyncblocks, which recovers...
Linux Distros Unpatched Vulnerability : CVE-2025-4476
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial-of-service vulnerability has been identified in the libsoup HTTP client library. This flaw can be triggered when a libsoup client receives a 401...
Linux Distros Unpatched Vulnerability : CVE-2022-50232
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64: set UXN on swapper page tables This issue was fixed upstream by accident in c3cee924bd85 arm64: head: cover entire kernel image in initial ID map as part...
Linux Distros Unpatched Vulnerability : CVE-2021-4140
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox. This vulnerability affects Firefox ESR 91.5, Firefox 96, and...
Linux Distros Unpatched Vulnerability : CVE-2023-25733
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The return value from gfx::SourceSurfaceSkia::Map wasn't being verified which could have potentially lead to a null pointer dereference. This vulnerability...
Linux Distros Unpatched Vulnerability : CVE-2025-38359
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/mm: Fix inatomic handling in dosecurestorageaccess Kernel user spaces accesses to not exported pages in atomic context incorrectly try to resolve the page...
Oracle Linux 9 : kernel (ELSA-2025-12746)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12746 advisory. - netsched: hfsc: Address reentrant enqueue adding class to eltree twice Davide Caratti RHEL-97522 CVE-2025-38001 CVE-2025-37890 - schhfsc: Fix qlen...
Oracle Linux 8 : kernel (ELSA-2025-12752)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12752 advisory. - netsched: hfsc: Address reentrant enqueue adding class to eltree twice Xin Long RHEL-105415 CVE-2025-38001 - schhfsc: Fix qlen accounting bug when...
Linux Distros Unpatched Vulnerability : CVE-2025-5994
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet ECS. Unbound is...
Linux Distros Unpatched Vulnerability : CVE-2024-42144
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/mediatek/lvtsthermal: Check NULL ptr on lvtsdata Verify that lvtsdata is not...
Linux Distros Unpatched Vulnerability : CVE-2023-46589
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82...