MiracleLinux 8 : samba-4.13.3-5.el8 (AXSA:2021-2516:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2516:05 advisory. samba: Negative idmap cache entries can cause incorrect group entries in the Samba file server process token CVE-2021-20254 Tenable has extracted the precedi...

MiracleLinux 7 : bind-9.11.4-26.P2.16.0.3.el7.AXS7 (AXSA:2024-8880:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8880:04 advisory. CVE-2024-1737: add environment variable DNSRDATASETMAXRECORDS, DNSRBTDBMAXRTYPES to override hardcoded limits DDNSRDATASETMAXRECORDS and DDNSRBTDBMAXRTYPES F...

MiracleLinux 8 : libvpx-1.7.0-10.el8.ML.1 (AXSA:2023-6495:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6495:02 advisory. libvpx: Heap buffer overflow in vp8 encoding in libvpx CVE-2023-5217 libvpx: crash related to VP9 encoding in libvpx CVE-2023-44488 Tenable has...

MiracleLinux 8 : java-11-openjdk-11.0.20.0.8-2.el8 (AXSA:2023-6262:16)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6262:16 advisory. OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 OpenJDK: improper...

MiracleLinux 9 : speex-1.2.0-11.el9 (AXSA:2022-4570:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4570:01 advisory. speex: divide by zero in readsamples via crafted WAV file CVE-2020-23903 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : libgcrypt-1.8.5-6.el8 (AXSA:2021-2604:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2604:02 advisory. libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpipowm CVE-2021-33560 Tenable has...

MiracleLinux 8 : grafana-7.5.11-3.el8 (AXSA:2022-3704:04)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3704:04 advisory. grafana: OAuth account takeover CVE-2022-31107 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note...

MiracleLinux 7 : bind-9.11.4-26.P2.13.0.1.el7.AXS7 (AXSA:2023-4859:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4859:03 advisory. bind: DNS forwarders - cache poisoning vulnerability CVE-2021-25220 bind: processing large delegations may severely degrade resolver performance...

MiracleLinux 8 : tigervnc-1.11.0-6.el8 (AXSA:2021-2102:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2102:03 advisory. tigervnc: certificate exceptions stored as authorities CVE-2020-26117 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : firefox-115.9.1-1.el9.ML.1 (AXSA:2024-7642:12)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7642:12 advisory. nss: timing attack against RSA decryption CVE-2023-5388 Mozilla: Crash in NSS TLS method CVE-2024-0743 Mozilla: JIT code failed to save return...

MiracleLinux 7 : firefox-91.10.0-1.0.1.el7.AXS7 (AXSA:2022-3202:14)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3202:14 advisory. Mozilla: Cross-Origin resource's length leaked CVE-2022-31736 Mozilla: Heap buffer overflow in WebGL CVE-2022-31737 Mozilla: Browser window spoof...

MiracleLinux 4 : firefox-68.10.0-1.0.1.AXS4 (AXSA:2020-213:15)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-213:15 advisory. Mozilla: Information disclosure due to manipulated URL object CVE-2020-12418 Mozilla: Use-after-free in nsGlobalWindowInner CVE-2020-12419 Mozilla:...

MiracleLinux 8 : firefox-91.8.0-1.el8.ML.1 (AXSA:2022-3145:09)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3145:09 advisory. Mozilla: Use-after-free in NSSToken objects CVE-2022-1097 Mozilla: Out of bounds write due to unexpected WebAuthN Extensions CVE-2022-28281 Mozilla:...

MiracleLinux 7 : spice-0.14.0-2.el7.5, spice-gtk-0.34-3.el7.2 (AXSA:2018-3324:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3324:02 advisory. Security Fix - SPICE CVE-2018-10873 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : firefox-68.5.0-2.0.1.el7.AXS7 (AXSA:2020-4469:04)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4469:04 advisory. Mozilla: Missing bounds check on shared memory read in the parent process CVE-2020-6796 Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox...

MiracleLinux 8 : qt5-qtbase-5.15.3-5.el8 (AXSA:2023-7239:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7239:02 advisory. qt: buffer over-read via a crafted reply from a DNS server CVE-2023-33285 qt: allows remote attacker to bypass security restrictions caused by flaw ...

MiracleLinux 8 : tuned-2.22.1-5.el8_10.ML.1 (AXSA:2024-9510:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9510:07 advisory. tuned: improper sanitization of instancename parameter of the instancecreate method CVE-2024-52337 Tenable has extracted the preceding description block...

MiracleLinux 8 : mysql:8.0 (AXSA:2021-2443:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2443:01 advisory. mysql: Server: Stored Procedure multiple vulnerabilities CVE-2020-14672, CVE-2021-2046, CVE-2021-2072, CVE-2021-2081, CVE-2021-2215, CVE-2021-2217,...

MiracleLinux 8 : gnutls-3.6.16-6.el8 (AXSA:2023-5270:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5270:02 advisory. gnutls: timing side-channel in the TLS RSA key exchange code CVE-2023-0361 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 8 : container-tools:4.0 (AXSA:2023-7317:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7317:01 advisory. go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents CVE-2022-3064 golang: html/template: improper...