MiracleLinux 9 : firefox-102.8.0-2.el9.ML.1 (AXSA:2023-5134:09)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5134:09 advisory. Mozilla: Arbitrary memory write via PKCS 12 in NSS CVE-2023-0767 Mozilla: Content security policy leak in violation reports using iframes...

MiracleLinux 7 : rh-postgresql12-postgresql-12.4-1.0.1.el7.AXS7 (AXSA:2020-947:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-947:01 advisory. postgresql: Uncontrolled search path element in logical replication CVE-2020-14349 postgresql: Uncontrolled search path element in CREATE EXTENSION...

MiracleLinux 9 : thunderbird-91.10.0-1.el9.ML.1 (AXSA:2022-4019:18)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4019:18 advisory. Mozilla: Braille space character caused incorrect sender email to be shown for a digitally signed email CVE-2022-1834 Mozilla: Cross-Origin resource...

MiracleLinux 8 : flatpak-1.6.2-6.el8 (AXSA:2021-1632:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1632:06 advisory. flatpak: file forwarding feature can be used to gain unprivileged access to files CVE-2021-21381 Tenable has extracted the preceding description block direct...

MiracleLinux 7 : bind-9.11.4-26.P2.16.0.2.el7.AXS7 (AXSA:2024-8817:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8817:03 advisory. CVE-2024-1737: add a limit to the number of RRs in RRSets and RR types for single name CVE-2024-1975: remove support for SIG0 message verification F...

MiracleLinux 7 : krb5-1.15.1-55.0.1.el7.AXS7 (AXSA:2024-8882:05)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8882:05 advisory. CVE-2024-37370: prevent modification of Extra Count field in GSS krb5 wrap token to avoid appearing truncated to application CVE-2024-37371: fix...

MiracleLinux 9 : libvpx-1.9.0-8.el9_5 (AXSA:2024-9404:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9404:02 advisory. libvpx: Integer overflow in vpximgalloc CVE-2024-5197 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : tigervnc-1.13.1-14.el8_10 (AXSA:2024-9015:15)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9015:15 advisory. xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability CVE-2024-9632 Tenable has extracted the preceding description block...

MiracleLinux 8 : krb5-1.18.2-8.el8 (AXSA:2021-1843:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1843:01 advisory. krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1encode.c may lead to DoS CVE-2020-28196 Tenable has extracted the...

MiracleLinux 8 : nodejs:16 (AXSA:2024-7628:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7628:01 advisory. nodejs: reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks CVE-2024-22019 nodejs: HTTP/2: Multiple HTTP/2 enabled we...

MiracleLinux 8 : python-pillow-5.1.1-18.el8_9.1.ML.1 (AXSA:2024-7539:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7539:03 advisory. pillow: Arbitrary Code Execution via the environment parameter CVE-2023-50447 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : qemu-kvm-8.2.0-11.el9_4.4 (AXSA:2024-8508:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8508:05 advisory. qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write CVE-2024-4467 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : xorg-x11-server-1.20.4-27.el7 (AXSA:2024-7440:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7440:02 advisory. xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer CVE-2023-6816 xorg-x11-server: reattaching to different master devi...

MiracleLinux 9 : varnish-6.6.2-2.el9.1 (AXSA:2023-4930:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4930:01 advisory. varnish: Request Forgery Vulnerability CVE-2022-45060 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 7 : okular-4.10.5-8.el7 (AXSA:2020-4545:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4545:01 advisory. okular: Directory traversal in function unpackDocumentArchive in core/document.cpp CVE-2018-1000801 Tenable has extracted the preceding description block...

MiracleLinux 9 : buildah-1.33.6-2.el9 (AXSA:2024-7786:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7786:03 advisory. golang: net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326 golang: crypto/tls: Timing Side Channel...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2020-275:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-275:01 advisory. golang: HTTP/1.1 headers with a space before the colon leads to filter bypass or request smuggling CVE-2019-16276 golang: invalid public key causes...

MiracleLinux 9 : bash-5.1.8-6.el9 (AXSA:2023-4862:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4862:01 advisory. bash: a heap-buffer-overflow in validparametertransform CVE-2022-3715 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : libpq-13.23-1.el8_10 (AXSA:2026-047:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-047:02 advisory. postgresql: libpq undersizes allocations, via integer wraparound CVE-2025-12818 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : flac-1.3.2-9.el8.1 (AXSA:2023-6402:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6402:03 advisory. flac: Remote Code Execution RCE via the bitwritergrow function, by supplying crafted input to the encoder CVE-2020-22219 Tenable has extracted the preceding...