1822 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-1439
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yum-rhn-plugin in Red Hat Network Client Tools aka rhn-client-tools on Red Hat Enterprise Linux RHEL 5 and Fedora uses world-readable permissions for the...
Linux Distros Unpatched Vulnerability : CVE-2006-0040
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNOME Evolution 2.4.2.1 and earlier allows remote attackers to cause a denial of service CPU and memory consumption via a text e-mail with a large number of URL...
Linux Distros Unpatched Vulnerability : CVE-2011-0900
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the tsclaunchremote function src/support.c in Terminal Server Client tsclient 0.150, and possibly other versions, allows...
Linux Distros Unpatched Vulnerability : CVE-2010-2432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cupsDoAuthentication function in auth.c in the client in CUPS before 1.4.4, when HAVEGSSAPI is omitted, does not properly handle a demand for authorization,...
Linux Distros Unpatched Vulnerability : CVE-2010-2621
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The QSslSocketBackendPrivate::transmit function in srcnetworksslqsslsocketopenssl.cpp in Qt 4.6.3 and earlier allows remote attackers to cause a denial of servi...
Linux Distros Unpatched Vulnerability : CVE-2011-4693
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as...
Linux Distros Unpatched Vulnerability : CVE-2009-3897
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user...
Linux Distros Unpatched Vulnerability : CVE-2011-3105
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the Cascading Style Sheets CSS implementation in Google Chrome before 19.0.1084.52 allows remote attackers to cause a denial of...
Linux Distros Unpatched Vulnerability : CVE-2008-7293
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox before 4 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite ...
Linux Distros Unpatched Vulnerability : CVE-2011-0058
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, on Windows allows remote attackers to execute arbitrary...
Linux Distros Unpatched Vulnerability : CVE-2011-4116
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - issafe in the File::Temp module for Perl does not properly handle symlinks. CVE-2011-4116 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2010-1761
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote...
Linux Distros Unpatched Vulnerability : CVE-2009-2688
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in glyphs-eimage.c in XEmacs 21.4.22, when running on Windows, allow remote attackers to cause a denial of service crash or execute...
Azure Linux 3.0 Security Update: ant / javapackages-bootstrap (CVE-2021-36373)
The version of ant / javapackages-bootstrap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-36373 advisory. - When reading a specially crafted TAR archive an Apache Ant build can be made to alloca...
[SECURITY] [DLA 4076-1] linux-6.1 security update
Debian LTS Advisory DLA-4076-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings March 01, 2025 https://wiki.debian.org/LTS Package : linux-6.1 Version : 6.1.6.1.128-1deb11u1 CVE ID : CVE-2022-49034 CVE-2023-52916 CVE-2023-52926 CVE-2024-26595 CVE-2024-27407...
DLA-4075-1 linux - security update
Bulletin has no description...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libX11 (SUSE-SU-2025:0739-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:0739-1 advisory. - CVE-2025-26597: improper resizing of key actions when nGroups is 0 can lead to buffer overflows in...
Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-28757)
The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28757 advisory. - libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external...
CVE-2022-49470
CVE-2022-49470 concerns the Linux kernel Bluetooth subsystem, specifically the btmtksdio driver. The provided sources confirm a concrete issue: use-after-free involving the skb/data in btmtksdio_recv_event after hci_recv_frame is called, leading to a KASAN report. The impact is high (CVE score 7....
CVE-2022-49088
CVE-2022-49088 affects the Linux kernel: a refcount leak in dpaa2_ptp_probe where the of_find_compatible_node() result is returned with an incremented refcount. The fix is to call of_node_put() to release the reference and avoid the leak. References point to kernel patches that implement this cor...