MiracleLinux 8 : annobin-9.72-1.el8.2 (AXSA:2022-2958:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-2958:01 advisory. Developer environment: Unicode's bidirectional BiDi override characters can cause trojan source attacks CVE-2021-42574 The following changes were introduced ...

MiracleLinux 9 : freeglut-3.2.1-10.el9 (AXSA:2024-7886:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7886:01 advisory. freeglut: memory leak via glutAddSubMenu function CVE-2024-24258 freeglut: memory leak via glutAddMenuEntry function CVE-2024-24259 Tenable has...

MiracleLinux 7 : xorg-x11-server-1.20.4-29.el7 (AXSA:2024-7672:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7672:03 advisory. xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents CVE-2024-31080 xorg-x11-server: Heap buffer overread/data leakage in...

MiracleLinux 7 : sudo-1.8.23-4.el7.2 (AXSA:2020-4467:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4467:01 advisory. sudo: Stack based buffer overflow when pwfeedback is enabled CVE-2019-18634 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : cups-1.6.3-43.el7 (AXSA:2020-4559:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4559:02 advisory. cups: Local privilege escalation to root due to insecure environment variable handling CVE-2018-4180 cups: Manipulation of cupsd.conf by a local...

MiracleLinux 7 : dpdk-18.11.5-1.el7 (AXSA:2020-4535:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4535:01 advisory. dpdk: possible memory leak leads to denial of service CVE-2019-14818 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : kernel-3.10.0-1160.99.1.el7 (AXSA:2023-6384:24)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6384:24 advisory. kernel: clsflower: out-of-bounds write in flsetgeneveopt CVE-2023-35788 hw: amd: Cross-Process Information Leak CVE-2023-20593 Tenable has extracted...

MiracleLinux 8 : dotnet6.0-6.0.122-1.el8.ML.1 (AXSA:2023-6414:22)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6414:22 advisory. dotnet: Denial of Service with Client Certificates using .NET Kestrel CVE-2023-36799 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : jackson (AXSA:2023-5805:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5805:01 advisory. jackson-databind: denial of service via a large depth of nested objects CVE-2020-36518 Tenable has extracted the preceding description block directly from th...

MiracleLinux 8 : spice-vdagent-0.20.0-3.el8 (AXSA:2021-2117:03)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2117:03 advisory. spice-vdagent: possible file transfer DoS and information leak via activexfers hash map CVE-2020-25651 spice-vdagent: UNIX domain socket peer PID...

MiracleLinux 8 : samba-4.17.5-3.el8.ML.1 (AXSA:2023-6311:09)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6311:09 advisory. samba: SMB2 packet signing is not enforced when server signing = required is set CVE-2023-3347 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : vsftpd-3.0.3-36.el8_10.3 (AXSA:2026-044:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2026-044:01 advisory. vsftpd: vsftpd: Denial of service via integer overflow in ls command parameter parsing CVE-2025-14242 Tenable has extracted the preceding description block...

MiracleLinux 8 : pki-core:10.6 (AXSA:2022-3574:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3574:01 advisory. JSS: memory leak in TLS connection leads to OOM CVE-2021-4213 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : NetworkManager-1.32.10-4.el8.ML.1 (AXSA:2021-2764:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2764:07 advisory. systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured CVE-2020-13529 Tenable ha...

MiracleLinux 9 : podman-4.9.4-5.el9_4 (AXSA:2024-8550:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8550:06 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : bind-9.11.26-6.el8 (AXSA:2021-2830:12)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2830:12 advisory. bind: Broken inbound incremental zone update IXFR can cause named to terminate unexpectedly CVE-2021-25214 Tenable has extracted the preceding description...

MiracleLinux 9 : mod_auth_openidc-2.4.9.4-4.el9 (AXSA:2023-6773:01)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6773:01 advisory. modauthopenidc: Open Redirect in oidcvalidateredirecturl using tab character CVE-2022-23527 modauthopenidc: NULL pointer dereference when...

MiracleLinux 8 : fontforge-20200314-6.el8 (AXSA:2024-8552:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8552:01 advisory. fontforge: command injection via crafted filenames CVE-2024-25081 fontforge: command injection via crafted archives or compressed files CVE-2024-250...

MiracleLinux 7 : libreoffice-5.3.6.1-24.el7 (AXSA:2020-4715:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4715:01 advisory. libreoffice: LibreLogo script can be manipulated into executing arbitrary python commands CVE-2019-9848 libreoffice: Insufficient URL validation...

MiracleLinux 9 : python-jwcrypto-1.5.6-2.el9 (AXSA:2024-9264:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-9264:02 advisory. JWCrypto: denail of service Via specifically crafted JWE CVE-2023-6681 Tenable has extracted the preceding description block directly from the MiracleLinux...