MiracleLinux 9 : libvirt-9.5.0-7.el9.ML.1 (AXSA:2023-7009:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7009:11 advisory. libvirt: improper locking in virStoragePoolObjListSearch may lead to denial of service CVE-2023-3750 Tenable has extracted the preceding description block...

MiracleLinux 7 : cpio-2.11-28.el7 (AXSA:2020-579:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-579:01 advisory. CVE-2019-14866 In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archiv...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8567:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8567:02 advisory. qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write CVE-2024-4467 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : e2fsprogs-1.42.9-19.el7 (AXSA:2020-637:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-637:03 advisory. e2fsprogs: Crafted ext4 partition leads to out-of-bounds write CVE-2019-5094 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c CVE-2019-5188 Tenable...

MiracleLinux 9 : bind-9.16.23-11.el9 (AXSA:2023-5457:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5457:04 advisory. bind: processing large delegations may severely degrade resolver performance CVE-2022-2795 bind: flooding with UPDATE requests may lead to DoS...

MiracleLinux 7 : python-2.7.5-94.0.2.el7.AXS7 (AXSA:2024-8864:47)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8864:47 advisory. Bugfix for CVE-2023-27043, use str instead of unicode, adjust tests according to python2 specification. CVEs: CVE-2023-27043 The email module of Python throu...

MiracleLinux 9 : procps-ng-3.3.17-13.el9 (AXSA:2023-6724:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6724:03 advisory. procps: ps buffer overflow CVE-2023-4016 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2023-6206:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6206:01 advisory. golang: cmd/go: go command may generate unexpected code at build time when using cgo CVE-2023-29402 golang: cmd/go: go command may execute arbitrary...

MiracleLinux 9 : postgresql-13.14-1.el9_3 (AXSA:2024-7559:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7559:01 advisory. postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL CVE-2024-0985 Tenable has extracted the preceding description block...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.402.b06-1.el7 (AXSA:2024-7425:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7425:01 advisory. OpenJDK: array out-of-bounds access due to missing range check in C1 compiler 8314468 CVE-2024-20918 OpenJDK: RSA padding issue and timing...

MiracleLinux 7 : python3-3.6.8-21.0.1.el7.AXS7 (AXSA:2024-8626:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8626:04 advisory. CVE-2023-6597: prevent tempfile.TemporaryDirectory class dereference symlinks CVEs: CVE-2023-6597 Tenable has extracted the preceding description block...

MiracleLinux 4 : sudo-1.8.6p3-29.3.0.1.AXS4 (AXSA:2021-1331:03)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1331:03 advisory. sudo: Heap buffer overflow in argument parsing CVE-2021-3156 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : thunderbird-102.13.0-2.el9.ML.1 (AXSA:2023-6243:21)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6243:21 advisory. Mozilla: Use-after-free in WebRTC certificate generation CVE-2023-37201 Mozilla: Potential use-after-free from compartment mismatch in SpiderMonkey...

MiracleLinux 8 : linuxptp-2.0-5.el8.1 (AXSA:2021-2195:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2195:03 advisory. linuxptp: missing length check of forwarded messages CVE-2021-3570 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : mingw components (AXSA:2024-7928:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7928:01 advisory. binutils: Heap-buffer-overflow binutils-gdb/bfd/libbfd.c in bfdgetl64 CVE-2023-1579 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : zlib-1.2.11-18.el8 (AXSA:2022-3166:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3166:01 advisory. zlib: A flaw found in zlib when compressing not decompressing certain inputs CVE-2018-25032 Tenable has extracted the preceding description block directly fr...

MiracleLinux 7 : libreoffice-5.3.6.1-26.el7 (AXSA:2024-7745:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7745:03 advisory. libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution CVE-2023-6185 Tenable has extracted the preceding description block...

MiracleLinux 7 : unbound-1.6.6-5.0.3.el7.AXS7 (AXSA:2024-8987:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8987:07 advisory. CVE-2023-50868: avoid availabiluty of the remote attackers to cause a denial of service using DNSSEC CVE-2023-50868 The Closest Encloser Proof aspect of the...

MiracleLinux 7 : python-2.7.5-94.0.3.el7.AXS7 (AXSA:2024-8926:48)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8926:48 advisory. CVE-2024-6232: fixed regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via...

MiracleLinux 7 : rh-postgresql12-postgresql-12.5-1.el7 (AXSA:2020-964:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-964:02 advisory. postgresql: Reconnection can downgrade connection security settings CVE-2020-25694 postgresql: Multiple features escape security restricted operation...