MiracleLinux 9 : unbound-1.16.2-8.el9_5.1 (AXSA:2024-9491:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9491:08 advisory. unbound: Unbounded name compression could lead to Denial of Service CVE-2024-8508 CVEs: CVE-2024-8508 NLnet Labs Unbound up to and including version 1.21.0...

MiracleLinux 8 : cockpit-composer-41-1.el8, osbuild-composer-62-1.el8.ML.1, osbuild-65-1.el8.ML.2, weldr-client-35.5-4.el8 (AXSA:2023-4757:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4757:01 advisory. golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service CVE-2022-32189...

MiracleLinux 9 : zlib-1.2.11-31.el9.1 (AXSA:2022-3946:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3946:07 advisory. zlib: A flaw found in zlib when compressing not decompressing certain inputs CVE-2018-25032 Tenable has extracted the preceding description block directly fr...

MiracleLinux 9 : vim-8.2.2637-16.el9.3 (AXSA:2022-4032:06)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4032:06 advisory. vim: Out-of-bounds Write CVE-2022-1785 vim: out-of-bounds write in vimregsubboth in regexp.c CVE-2022-1897 vim: buffer over-read in utfptr2char in...

MiracleLinux 9 : ignition-2.14.0-1.el9 (AXSA:2023-4920:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4920:01 advisory. ignition: configs are accessible from unprivileged containers in VMs running on VMware products CVE-2022-1706 Tenable has extracted the preceding description...

MiracleLinux 8 : thunderbird-91.9.1-1.el8.ML.2 (AXSA:2022-3714:08)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3714:08 advisory. Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level...

MiracleLinux 8 : python-pillow-5.1.1-20.el8 (AXSA:2024-8290:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8290:04 advisory. python-pillow: uncontrolled resource consumption when textlength in an ImageDraw instance operates on a long text argument CVE-2023-44271 Tenable has extract...

MiracleLinux 8 : libexif-0.6.22-4.el8 (AXSA:2021-1093:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1093:01 advisory. libexif: out of bounds write in exif-data.c CVE-2019-9278 libexif: out of bounds read due to a missing bounds check in exifdatasavedataentry functio...

MiracleLinux 8 : postgresql:12 (AXSA:2021-2347:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2347:01 advisory. postgresql: Buffer overrun from integer overflow in array subscripting calculations CVE-2021-32027 postgresql: Memory disclosure in INSERT ... ON...

MiracleLinux 8 : grafana-9.2.10-8.el8_9.ML.1 (AXSA:2024-7660:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7660:04 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 CVE-2024-1394 A memory leak flaw was found in Golang in the RS...

MiracleLinux 7 : wpa_supplicant-2.6-12.el7.2 (AXSA:2021-1602:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1602:02 advisory. wpasupplicant: Use-after-free in P2P provision discovery processing CVE-2021-27803 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : runc-1.1.12-1.el9_3 (AXSA:2024-7505:01)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7505:01 advisory. runc: file descriptor leak CVE-2024-21626 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 8 : ruby:3.1 (AXSA:2024-9395:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9395:01 advisory. rexml: REXML ReDoS vulnerability CVE-2024-49761 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note...

MiracleLinux 8 : dotnet3.1-3.1.108-2.0.1.el8 (AXSA:2020-740:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-740:02 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New...

MiracleLinux 9 : yajl-2.1.0-22.el9 (AXSA:2023-6753:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6753:01 advisory. yajl: Memory leak in yajltreeparse function CVE-2023-33460 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : python3.12-PyMySQL-1.1.0-3.el9 (AXSA:2024-9377:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9377:02 advisory. python-pymysql: SQL injection if used with untrusted JSON input CVE-2024-36039 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : qt5-qtbase-5.15.9-9.el9 (AXSA:2024-8076:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8076:01 advisory. qt: incorrect integer overflow check CVE-2023-51714 qtbase: potential buffer overflow when reading KTX images CVE-2024-25580 Tenable has extracted t...

MiracleLinux 9 : redis:7 (AXSA:2025-9608:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9608:01 advisory. redis: Redis' Lua library commands may lead to remote code execution CVE-2024-46981 redis: Redis allows denial-of-service due to malformed ACL...

MiracleLinux 8 : dhcp-4.3.6-44.el8.1 (AXSA:2021-2197:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2197:04 advisory. dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient CVE-2021-25217 Tenab...

MiracleLinux 8 : dpdk-19.11-4.el8 (AXSA:2020-542:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-542:03 advisory. dpdk: possible memory leak leads to denial of service CVE-2019-14818 Tenable has extracted the preceding description block directly from the MiracleLinux...