MiracleLinux 8 : nss-3.90.0-6.el8_9 (AXSA:2024-7521:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7521:04 advisory. nss: vulnerable to Minerva side-channel information leak CVE-2023-6135 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : usbguard-1.0.0-8.el8.2 (AXSA:2023-4807:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4807:01 advisory. usbguard: Fix unauthorized access via D-Bus CVE-2019-25058 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : libxml2-2.9.7-15.el8.1 (AXSA:2023-4778:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4778:01 advisory. libxml2: integer overflows with XMLPARSEHUGE CVE-2022-40303 libxml2: dict corruption caused by entity reference cycles CVE-2022-40304 Tenable has...

MiracleLinux 9 : python3.9-3.9.14-1.el9.1 (AXSA:2022-4506:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4506:01 advisory. python: local privilege escalation via the multiprocessing forkserver start method CVE-2022-42919 Tenable has extracted the preceding description block...

MiracleLinux 8 : libksba-1.3.5-9.el8 (AXSA:2023-4995:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4995:02 advisory. libksba: integer overflow to code executiona CVE-2022-47629 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : rust-toolset:rhel8 (AXSA:2021-2363:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2363:01 advisory. rust: optimization for joining strings can cause uninitialized bytes to be exposed CVE-2020-36323 rust: heap-based buffer overflow in readtoend...

MiracleLinux 7 : telnet-0.17-65.el7 (AXSA:2020-4688:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4688:01 advisory. telnet-server: no bounds checks in nextitem function allows to remotely execute arbitrary code CVE-2020-10188 Tenable has extracted the preceding description...

MiracleLinux 8 : dotnet3.1-3.1.417-1.el8.ML.1 (AXSA:2022-3098:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3098:04 advisory. dotnet: ASP.NET Denial of Service via FormPipeReader CVE-2022-24464 dotnet: double parser stack buffer overrun CVE-2022-24512 brotli: buffer overflo...

MiracleLinux 8 : vim-8.0.1763-16.el8.12 (AXSA:2022-3106:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3106:02 advisory. vim: Heap-based buffer overflow in blockinsert in src/ops.c CVE-2022-0261 vim: Heap-based buffer overflow in utfheadoff in mbyte.c CVE-2022-0318 vim...

MiracleLinux 7 : libtiff-4.0.3-35.0.2.el7.AXS7 (AXSA:2024-8988:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8988:07 advisory. CVE-2024-7006: check return value of TIFFCreateAnonField CVEs: CVE-2024-7006 A null pointer dereference flaw was found in Libtiff via tifdirinfo.c. This issu...

MiracleLinux 8 : edk2-20220126gitbb1bba3d77-13.el8 (AXSA:2024-8236:06)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8236:06 advisory. edk2: Buffer overflow when handling Server ID option from a DHCPv6 proxy Advertise message CVE-2023-45235 EDK2: heap buffer overflow in...

MiracleLinux 8 : vorbis-tools-1.4.0-29.el8 (AXSA:2024-8310:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8310:01 advisory. vorbis-tools: Buffer Overflow vulnerability CVE-2023-43361 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : curl-7.76.1-23.el9.4 (AXSA:2023-6515:13)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6515:13 advisory. curl: a heap-based buffer overflow in the SOCKS5 proxy handshake CVE-2023-38545 curl: cookie injection with none file CVE-2023-38546 Tenable has...

MiracleLinux 7 : bluez-5.44-6.el7 (AXSA:2020-4538:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4538:01 advisory. bluez: failure in disabling Bluetooth discoverability in certain cases may lead to the unauthorized pairing of Bluetooth devices CVE-2018-10910 Tenable has...

MiracleLinux 8 : ruby:2.7 (AXSA:2021-2407:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2407:01 advisory. rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source CVE-2020-36327 rubygem-rdoc: Command injection...

MiracleLinux 7 : rh-nodejs14-nodejs-14.16.0-1.el7 (AXSA:2021-1590:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1590:02 advisory. nodejs: HTTP2 'unknownProtocol' cause DoS by resource exhaustion CVE-2021-22883 nodejs: DNS rebinding in --inspect CVE-2021-22884 Tenable has...

MiracleLinux 9 : fence-agents-4.10.0-62.el9_4.3 (AXSA:2024-8287:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8287:07 advisory. jinja2: accepts keys containing non-attribute characters CVE-2024-34064 CVE-2024-34064 Jinja is an extensible templating engine. The xmlattr filter in affect...

MiracleLinux 7 : glibc-2.17-322.el7 (AXSA:2021-1374:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1374:01 advisory. glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding CVE-2019-25013 glibc: stack corruption fr...

MiracleLinux 9 : java-11-openjdk-11.0.15.0.10-1.el9 (AXSA:2022-3958:15)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3958:15 advisory. OpenJDK: Defective secure validation in Apache Santuario Libraries, 8278008 CVE-2022-21476 OpenJDK: Unbounded memory allocation when compiling craft...

MiracleLinux 8 : postgresql:12 (AXSA:2022-3939:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3939:01 advisory. postgresql: Extension scripts replace objects not belonging to the extension. CVE-2022-2625 Tenable has extracted the preceding description block directly fr...