72 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-26948
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Add a dcstate NULL check in dcstaterelease How Check wheather state is NULL before releasing it. CVE-2024-26948 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2017-11144
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM sealing code did not check the return value of the OpenSSL sealing...
ROS-20250220-01
Vulnerability of tunfreenetdev function of virtual network drivers TUN/TAP of kernel operating systems Linux is related to repeated freeing of previously freed memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service or escalate privileges A vulnerability in...
The vulnerability of the zram_meta_alloc() function in the zram module of Linux operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the zrammetaalloc function in the zram module of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...
Moderate: toolbox security update
Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI. Security Fixes: golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in...
Exploit for Argument Injection in Linuxmint Xreader
CVE-2023-44452, CVE-2023-51698: Linux Mint Xreader/MATE Atril...
Critical: Red Hat Security Advisory: toolbox security update
An update for toolbox is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
ALSA-2023:4412 Important: openssh security update
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Remote code execution in ssh-agent PKCS11 support CVE-2023-38408 For more details...
CVE-2023-28365
A backup file vulnerability found in UniFi applications Version 7.3.83 and earlier running on Linux operating systems allows application administrators to execute malicious commands on the host device being restored...
The vulnerability of the ksmbd module in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the ksmbd module in Linux operating systems is related to the improper release of resources during TCP connection processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
The vulnerability of the lib/nlattr.c component in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the lib/nlattr.c component in Linux operating systems is related to an uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...
[SECURITY] Fedora 36 Update: toolbox-0.0.99.3-6.fc36
Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI...
GLSA-202202-03 : Mozilla Firefox: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202202-03 Mozilla Firefox: Multiple vulnerabilities - A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. This bug could only be triggered when accessibility was...
SUSE SLES15: MozillaFirefox / MozillaFirefox-branding-SLE / MozillaFirefox-devel / etc (SUSE-SU-2021:3331-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3331-1 advisory. This update contains the Firefox Extended Support Release 91.2.0 ESR. Firefox Extended Support Release 91.2.0 ESR Fixed: Various...
CVE-2021-29986
A suspected race condition when calling getaddrinfo led to memory corruption and a potentially exploitable crash. Note: This issue only affected Linux operating systems. Other operating systems are unaffected. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and...
Debian DSA-4956-1 : firefox-esr - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4956 advisory. - Mozilla developers reported memory safety bugs present in Firefox 90 and Firefox ESR 78.12. Some of these bugs showed evidence of memory corruption and we presu...
Debian DLA-2740-1 : firefox-esr - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2740 advisory. - Mozilla developers reported memory safety bugs present in Firefox 90 and Firefox ESR 78.12. Some of these bugs showed evidence of memory corruption and we presum...
CVE-2021-33910: Denial of Service (Stack Exhaustion) in systemd (PID 1)
The Qualys Research Team has discovered a stack exhaustion denial-of-service vulnerability in systemd, a near-ubiquitous utility available on major Linux operating systems. Any unprivileged user can exploit this vulnerability to crash systemd and hence the entire operating system a kernel panic...
The vulnerability of the Network File System (NFS) on Linux operating systems, which allows attackers to increase their privileges
The vulnerability of the Network File System NFS on Linux operating systems is related to a validation error. Exploiting this vulnerability can allow an attacker to increase their privileges or execute arbitrary code...
The vulnerability of the i915 module in Linux operating systems allows attackers to gain access to protected information.
The vulnerability of the i915 module in Linux operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...