MiracleLinux 8 : kernel-4.18.0-372.32.1.el8_6 (AXSA:2022-3951:15)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3951:15 advisory. A use-after-free in clsroute filter implementation may lead to privilege escalation CVE-2022-2588 Information leak in scsiioctl CVE-2022-0494 A...

MiracleLinux 9 : skopeo-1.13.3-1.el9 (AXSA:2023-6774:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6774:03 advisory. golang: html/template: improper handling of JavaScript whitespace CVE-2023-24540 net/http, golang.org/x/net/http2: avoid quadratic complexity in HPA...

MiracleLinux 7 : openjpeg2-2.3.1-3.el7 (AXSA:2020-4472:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4472:03 advisory. openjpeg: heap-based buffer overflow in pjt1clbldecodeprocessor in openjp2/t1.c CVE-2020-8112 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : dotnet3.1-3.1.113-1.0.1.el8 (AXSA:2021-1570:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1570:04 advisory. dotnet: System.Text.Encodings.Web Remote Code Execution CVE-2021-26701 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : ghostscript-9.54.0-13.el9 (AXSA:2023-6907:05)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6907:05 advisory. ghostscript: buffer overflow in base/sbcp.c leading to data corruption CVE-2023-28879 ghostscript: Out-of-bound read in base/gdevdevn.c:1973 in...

MiracleLinux 8 : unbound-1.7.3-11.el8 (AXSA:2020-594:06)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-594:06 advisory. unbound: amplification of an incoming query into a large number of queries directed to a target CVE-2020-12662 unbound: infinite loop via malformed D...

MiracleLinux 8 : nodejs:18 (AXSA:2024-8777:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8777:01 advisory. node-tar: denial of service while parsing a tar file due to lack of folders depth validation CVE-2024-28863 nodejs: Bypass network import restrictio...

MiracleLinux 7 : openldap-2.4.44-25.el7 (AXSA:2022-3084:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3084:01 advisory. openldap: assertion failure in Certificate List syntax validation CVE-2020-25709 openldap: assertion failure in CSN normalization with invalid input...

MiracleLinux 7 : librabbitmq-0.8.0-3.el7 (AXSA:2020-608:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-608:01 advisory. librabbitmq: integer overflow in amqphandleinput in amqpconnection.c leads to heap-based buffer overflow CVE-2019-18609 Tenable has extracted the preceding...

MiracleLinux 8 : libssh-0.9.6-14.el8 (AXSA:2024-8172:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8172:04 advisory. libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values fo...

MiracleLinux 8 : tpm2-tools-4.1.1-5.el8 (AXSA:2021-2806:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2806:03 advisory. tpm2-tools: fixed AES wrapping key in tpm2import CVE-2021-3565 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : atk-2.28.1-2.el7evolution-data-server-3.28.5-4.el7evolution-ews-3.28.5-5.el7evolution-3.28.5-8.el7 (AXSA:2020-4566:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4566:01 advisory. evolution: specially crafted email leading to OpenPGP signatures being spoofed for arbitrary messages CVE-2018-15587 evolution-ews: all certificate...

MiracleLinux 7 : dhcp-4.2.5-83.1.0.1.el7.AXS7 (AXSA:2021-1902:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1902:02 advisory. dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient CVE-2021-25217 Tenab...

MiracleLinux 9 : expat-2.2.10-12.el9.2 (AXSA:2022-3997:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3997:08 advisory. expat: stack exhaustion in doctype parsing CVE-2022-25313 expat: integer overflow in copyString CVE-2022-25314 Tenable has extracted the preceding...

MiracleLinux 9 : autotrace-0.31.1-65.el9 (AXSA:2023-5497:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5497:01 advisory. autotrace: heap-buffer overflow via the ReadImage at input-bmp.c CVE-2022-32323 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : 389-ds-base-1.3.10.2-16.el7 (AXSA:2022-3281:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3281:02 advisory. 389-ds-base: sending crafted message could result in DoS CVE-2022-0918 389-ds-base: expired password was still allowed to access the database...

MiracleLinux 7 : rh-mariadb103-galera-25.3.31-1.el7, rh-mariadb103-mariadb-10.3.27-1.el7 (AXSA:2021-1598:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1598:01 advisory. mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep CVE-2020-15180 mysql: Server: Replication unspecified...

MiracleLinux 7 : rpm-4.11.3-48.0.1.el7.AXS7 (AXSA:2021-2566:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2566:07 advisory. rpm: Signature checks bypass via corrupted rpm package CVE-2021-20271 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : python-setuptools-53.0.0-10.el9.1 (AXSA:2023-5193:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5193:02 advisory. pypa-setuptools: Regular Expression Denial of Service ReDoS in packageindex.py CVE-2022-40897 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : virt-v2v-2.0.7-6.el9 (AXSA:2023-5038:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5038:01 advisory. libguestfs: Buffer overflow in getkeys leads to DoS CVE-2022-2211 Tenable has extracted the preceding description block directly from the MiracleLinux securi...