Azure Linux 3.0 Security Update: heimdal / krb5 / samba (CVE-2022-42898)

The version of heimdal / krb5 / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-42898 advisory. - PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer...

Azure Linux 3.0 Security Update: etcd / packer (CVE-2022-3064)

The version of etcd / packer installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3064 advisory. - Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory. CVE-2022-306...

Azure Linux 3.0 Security Update: cmake / curl / mysql (CVE-2023-46219)

The version of cmake / curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46219 advisory. - When saving HSTS data to an excessively long file name, curl could end up removing all content...

Azure Linux 3.0 Security Update: cri-tools / docker-buildx / kubernetes / opa / prometheus (CVE-2023-45142)

The version of cri-tools / docker-buildx / kubernetes / opa / prometheus installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45142 advisory. - OpenTelemetry-Go Contrib is a collection of third-party...

Azure Linux 3.0 Security Update: cert-manager / cni-plugins / kubevirt / multus / packer / prometheus-adapter (CVE-2023-3978)

The version of cert-manager / cni-plugins / kubevirt / multus / packer / prometheus-adapter installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3978 advisory. - Text nodes not in the HTML namespace ar...

Azure Linux 3.0 Security Update: httpd (CVE-2024-40898)

The version of httpd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-40898 advisory. - SSRF in Apache HTTP Server on Windows with modrewrite in server/vhost context, allows to potentially leak NTM...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46675)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46675 advisory. - In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Prevent USB core invali...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46725)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46725 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of-bounds write...

Azure Linux 3.0 Security Update: qemu / qemu-kvm (CVE-2021-4206)

The version of qemu / qemu-kvm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4206 advisory. - A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursoralloc...

Ubuntu 16.04 LTS : GNU C Library vulnerability (USN-7259-2)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7259-2 advisory. USN-7259-1 fixed a vulnerability in GNU C Library. This update provides the corresponding update for Ubuntu 16.04 LTS. Tenable has extracted the preceding...

Azure Linux 3.0 Security Update: ntopng / reaper (CVE-2017-18214)

The version of ntopng / reaper installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2017-18214 advisory. - The moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via ...

Azure Linux 3.0 Security Update: python3 / tensorflow (CVE-2024-6232)

The version of python3 / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6232 advisory. - There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42309)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42309 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fix null pointer dereference...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46814)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46814 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check msgid before...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42269)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42269 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential...

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust (CVE-2024-9681)

The version of cmake / curl / mysql / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9681 advisory. - When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent...

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust / tensorflow (CVE-2023-27535)

The version of cmake / curl / mysql / rust / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-27535 advisory. - An authentication bypass vulnerability exists in libcurl 8.0.0 in the FTP...

Azure Linux 3.0 Security Update: postgresql (CVE-2024-10977)

The version of postgresql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10977 advisory. - Client use of server error message in PostgreSQL allows a server not trusted under current SSL or GSS...

Azure Linux 3.0 Security Update: blosc / boost / cloud-hypervisor / cloud-hypervisor-cvm / keras / nmap / rust (CVE-2023-45853)

The version of blosc / boost / cloud-hypervisor / cloud-hypervisor-cvm / keras / nmap / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45853 advisory. - MiniZip in zlib through 1.3 has an...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43854)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43854 advisory. - In the Linux kernel, the following vulnerability has been resolved: block: initialize integrity buffer to ze...