1866 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-35934
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/smc: reduce rtnl pressure in smcpnetcreatepnetidslist Many syzbot reports show extreme rtnl pressure, and many of them hint that smc acquires rtnl in netns...
Linux Distros Unpatched Vulnerability : CVE-2023-44270
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS i...
Linux Distros Unpatched Vulnerability : CVE-2024-1441
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An off-by-one error flaw was found in the udevListInterfacesByStatus function in libvirt when the number of interfaces exceeds the size of the names array. This...
Linux Distros Unpatched Vulnerability : CVE-2023-36192
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sngrep v1.6.0 was discovered to contain a heap buffer overflow via the function capturewscheckpacket at /src/capture.c. CVE-2023-36192 Note that Nessus relies o...
Linux Distros Unpatched Vulnerability : CVE-2024-47723
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: fix out-of-bounds in dbNextAG and diAlloc In dbNextAG , there is no check for the case where bmp-dbnumag is greater or same than MAXAG due to a polluted...
Linux Distros Unpatched Vulnerability : CVE-2022-47008
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered function maketempdir, and maketempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memo...
Linux Distros Unpatched Vulnerability : CVE-2021-33516
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to...
Linux Distros Unpatched Vulnerability : CVE-2021-32421
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox function in dpic.y. CVE-2021-32421 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2021-4184
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
Linux Distros Unpatched Vulnerability : CVE-2023-25563
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to version 1.2.0, multiple out-of-bounds reads when decoding...
Linux Distros Unpatched Vulnerability : CVE-2023-52926
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - IORINGOPREAD did not correctly consume the provided buffer list when read i/o returned 0 except for -EAGAIN and -EIOCBQUEUED return. This can lead to a potentia...
Linux Distros Unpatched Vulnerability : CVE-2023-26034
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33...
Linux Distros Unpatched Vulnerability : CVE-2022-49599
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: Fix data-races around sysctltcpl3mdevaccept. While reading sysctltcpl3mdevaccept, it can be changed concurrently. Thus, we need to add READONCE to its...
Linux Distros Unpatched Vulnerability : CVE-2021-36370
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Midnight Commander through 4.8.26. When establishing an SFTP connection, the fingerprint of the server is neither checked nor...
Linux Distros Unpatched Vulnerability : CVE-2022-3970
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tifgetimage.c. The...
Linux Distros Unpatched Vulnerability : CVE-2022-48714
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: Use VMMAP instead of VMALLOC for ringbuf After commit 2fd3fb0be1d1 kasan, vmalloc:...
Linux Distros Unpatched Vulnerability : CVE-2024-27397
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use timestamp to check for set element timeout Add a timestamp field at...
Linux Distros Unpatched Vulnerability : CVE-2022-4556
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Alinto SOGo up to 5.7.1 and classified as problematic. Affected by this issue is the function migrateMailIdentities of the file...
Linux Distros Unpatched Vulnerability : CVE-2022-49635
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/i915/selftests: fix subtraction overflow bug On some machines holeend can be small enough to cause subtraction overflow. On the other side addr + 2...
Linux Distros Unpatched Vulnerability : CVE-2021-44223
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WordPress before 5.8 lacks support for the Update URI plugin header. This makes it easier for remote attackers to execute arbitrary code via a supply-chain atta...