MiracleLinux 8 : postgresql:15 (AXSA:2024-7391:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7391:01 advisory. postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls...

MiracleLinux 8 : glibc-2.28-164.el8 (AXSA:2021-2585:08)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2585:08 advisory. glibc: Arbitrary read in wordexp CVE-2021-35942 glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c CVE-2021-27645 glibc: mqnotify...

MiracleLinux 8 : mod_auth_openidc:2.3 (AXSA:2023-7316:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7316:01 advisory. modauthopenidc: Open Redirect in oidcvalidateredirecturl using tab character CVE-2022-23527 modauthopenidc: NULL pointer dereference when...

MiracleLinux 9 : firefox-102.8.0-2.el9.ML.1 (AXSA:2023-5134:09)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5134:09 advisory. Mozilla: Arbitrary memory write via PKCS 12 in NSS CVE-2023-0767 Mozilla: Content security policy leak in violation reports using iframes...

MiracleLinux 8 : c-ares-1.13.0-8.el8 (AXSA:2023-7091:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7091:05 advisory. c-ares: buffer overflow in configsortlist due to missing string length check CVE-2022-4904 Tenable has extracted the preceding description block directly fro...

MiracleLinux 8 : flatpak-1.6.2-6.el8 (AXSA:2021-1632:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1632:06 advisory. flatpak: file forwarding feature can be used to gain unprivileged access to files CVE-2021-21381 Tenable has extracted the preceding description block direct...

MiracleLinux 8 : dbus-1.12.8-24.el8.1 (AXSA:2023-6317:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6317:06 advisory. dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered CVE-2023-34969 CVEs: CVE-2023-34969 Tenable h...

MiracleLinux 8 : tracker-miners-2.1.5-2.el8_9.1 (AXSA:2024-7359:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7359:01 advisory. tracker-miners: sandbox escape CVE-2023-5557 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note tha...

MiracleLinux 8 : postgresql:13 (AXSA:2024-7390:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7390:01 advisory. postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls...

MiracleLinux 7 : 389-ds-base-1.3.10.2-17.el7 (AXSA:2022-3917:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3917:03 advisory. 389-ds-base: SIGSEGV in syncrepl CVE-2022-2850 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note...

MiracleLinux 8 : sqlite-3.26.0-19.el8_9 (AXSA:2024-7420:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7420:01 advisory. sqlite: heap-buffer-overflow at sessionfuzz CVE-2023-7104 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : thunderbird-128.3.1-1.el8_10.ML.1 (AXSA:2024-8910:25)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8910:25 advisory. firefox: Use-after-free in Animation timeline 128.3.1 ESR Chemspill CVE-2024-9680 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : libvirt-8.5.0-7.el9 (AXSA:2023-4911:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4911:01 advisory. libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service CVE-2022-0897 Tenable has extracted the preceding description block...

MiracleLinux 9 : runc-1.1.4-1.el9 (AXSA:2023-4702:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4702:01 advisory. runc: incorrect handling of inheritable capabilities CVE-2022-29162 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : thunderbird-115.9.0-1.el9_3.ML.1 (AXSA:2024-7671:09)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7671:09 advisory. nss: timing attack against RSA decryption CVE-2023-5388 Mozilla: Crash in NSS TLS method CVE-2024-0743 Mozilla: Leaking of encrypted email subjects ...

MiracleLinux 9 : python3.11-3.11.7-1.el9_4.1 (AXSA:2024-8483:16)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8483:16 advisory. python: Path traversal on tempfile.TemporaryDirectory CVE-2023-6597 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : krb5-1.18.2-22.el8 (AXSA:2022-4355:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4355:04 advisory. krb5: integer overflow vulnerabilities in PAC parsing CVE-2022-42898 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : subversion:1.10 (AXSA:2021-1466:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1466:01 advisory. subversion: remotely triggerable DoS vulnerability in svnserve 'get-deleted-rev' CVE-2018-11782 Tenable has extracted the preceding description block directl...

MiracleLinux 9 : gimp-2.99.8-3.el9 (AXSA:2023-4967:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4967:01 advisory. gimp: buffer overflow through a crafted XCF file CVE-2022-30067 gimp: unhandled exception via a crafted XCF file may lead to DoS CVE-2022-32990...

MiracleLinux 8 : sudo-1.8.25p1-8.el8.1 (AXSA:2020-117:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-117:04 advisory. sudo: Stack based buffer overflow when pwfeedback is enabled CVE-2019-18634 Tenable has extracted the preceding description block directly from the MiracleLin...