EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-2559)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A race condition was found in the Linux kernel's net/bluetooth in sniffmin,maxintervalset function. This can result in a bluetooth sniffing...

[SECURITY] [DLA 3912-1] linux security update

Debian LTS Advisory DLA-3912-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings October 07, 2024 https://wiki.debian.org/LTS Package : linux Version : 5.10.226-1 CVE ID : CVE-2021-3669 CVE-2022-48733 CVE-2023-31083 CVE-2023-52889 CVE-2024-27397 CVE-2024-38577...

[SECURITY] [DSA 5782-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5782-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 03, 2024 https://www.debian.org/security/faq -...

The vulnerability of the RDMA/hns component of the Linux operating system allows for a malfunction to occur, leading to service failure.

The vulnerability of the RDMA/hns component of the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

GLSA-202409-27 : tmux: Null Pointer Dereference

The remote host is affected by the vulnerability described in GLSA-202409-27 tmux: Null Pointer Dereference A null pointer dereference issue was discovered in function windowpanesetevent in window.c in which allows attackers to cause denial of service or other unspecified impacts. Tenable has...

Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6999-2)

The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6999-2 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to caus...

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7029-1)

"The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7029-1 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cau...

GLSA-202409-03 : GPL Ghostscript: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202409-03 GPL Ghostscript: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in GPL Ghostscript. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description...

CVE-2024-46713

creationtimestamp| type| source ---|---|--- 2024-09-13 17:58:03+00:00| seen| https://t.me/cvedetector/5616 2024-11-14 23:00:00+00:00| seen| https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html 2024-11-20 18:54:01+00:00| published-proof-of-concept|...

RHEL 8 : kpatch-patch-4_18_0-305_120_1 and kpatch-patch-4_18_0-305_138_1 (RHSA-2024:6663)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6663 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch...

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7005-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7005-2 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to caus...

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7008-1)

"The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7008-1 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cau...

Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-7004-1)

The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7004-1 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to caus...

Photon OS 4.0: Linux PHSA-2024-4.0-0687

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0687. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Partnering for Security: Qualys Solutions for Microsoft Azure Linux in AKS

As customers transition from traditional workloads to containerized environments, they face significant challenges. Containers introduce a level of complexity that traditional security measures often fail to address, primarily due to their ephemeral nature and the shared responsibility model...

AZL-48474 CVE-2024-44944 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete expectation path is missing a call to the nfexpectgetid helper function to calculate the expectation ID, otherwise LSB of the expectation object address is...

SUSE-SU-2024:3034-1 Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059153 fixes several issues. The following security issues were fixed: - CVE-2021-47402: Fixed use-after-free in flwalk bsc1225301 - CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp bsc1225202. - CVE-2024-27398: Fixed...

CVE-2022-48889

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof-nau8825: fix module alias overflow The maximum name length for a platformdeviceid entry is 20 characters including the trailing NUL byte. The sofnau8825.c file exceeds that, which causes an obscure error message:...

LSN-0106-1 Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow timeout for anonymous sets Never used from userspace, disallow these parameters.CVE-2023-52620 In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work...

GLSA-202408-02 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202408-02 Mozilla Firefox: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description...