MiracleLinux 8 : qt5-qtbase-5.15.3-8.el8_10 (AXSA:2024-8583:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8583:03 advisory. qtbase: qtbase: Delay any communication until encrypted can be responded to CVE-2024-39936 Tenable has extracted the preceding description block directly fro...

MiracleLinux 8 : openssl-1.1.1k-6.el8 (AXSA:2022-3132:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3132:04 advisory. openssl: Infinite loop in BNmodsqrt reachable when parsing certificates CVE-2022-0778 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : gcc-8.3.1-5.el8 (AXSA:2020-362:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-362:02 advisory. gcc: POWER9 DARN RNG intrinsic produces repeated output CVE-2019-15847 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : nodejs:18 (AXSA:2023-6295:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6295:01 advisory. nodejs: mainModule.proto bypass experimental policy mechanism CVE-2023-30581 nodejs: process interuption due to invalid Public Key information in x5...

MiracleLinux 8 : thunderbird-78.14.0-1.el8.ML.1 (AXSA:2021-2414:17)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2414:17 advisory. Mozilla: Memory safety bugs fixed in Firefox 92, Firefox ESR 78.14 and Firefox ESR 91.1 CVE-2021-38493 Tenable has extracted the preceding description block...

MiracleLinux 9 : lldpd-1.0.18-4.el9 (AXSA:2024-9355:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9355:03 advisory. lldp/openvswitch: denial of service via externally triggered memory leak CVE-2020-27827 lldpd: out-of-bounds read when decoding SONMP packets...

MiracleLinux 7 : grub2-2.02-0.87.14.0.1.el7.AXS7 (AXSA:2024-7721:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7721:02 advisory. grub2: Buffer overflow in grubfontconstructglyph can lead to out-of-bound write and possible secure boot bypass CVE-2022-2601 Tenable has extracted the...

MiracleLinux 9 : rsync-3.2.3-9.el9.2 (AXSA:2022-4046:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4046:07 advisory. rsync: remote arbitrary files write inside the directories of connecting peers CVE-2022-29154 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : pacemaker-2.0.4-6.el8.1 (AXSA:2021-1439:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1439:03 advisory. pacemaker: ACL restrictions bypass CVE-2020-25654 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Not...

MiracleLinux 9 : rpm-ostree-2024.3-3.el9_4 (AXSA:2024-8423:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8423:04 advisory. rpm-ostree: world-readable /etc/shadow file 9.4.z JIRA:RHEL-31852 CVE-2024-2905 A security vulnerability has been discovered within rpm-ostree, pertaining to...

MiracleLinux 9 : tigervnc-1.12.0-5.el9.1 (AXSA:2023-5025:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5025:04 advisory. xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation CVE-2023-0494 Tenable has extracted the preceding description block...

MiracleLinux 9 : pcs-0.11.4-7.el9.ML.1 (AXSA:2023-6066:10)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6066:10 advisory. pcs: webpack: Regression of CVE-2023-28154 fixes in the MIRACLE LINUX CVE-2023-2319 rubygem-rack: Denial of service in Multipart MIME parsing...

MiracleLinux 9 : thunderbird-115.3.1-1.el9.ML.1 (AXSA:2023-6492:28)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6492:28 advisory. firefox: use-after-free in workers CVE-2023-3600 Mozilla: Out-of-bounds write in PathOps CVE-2023-5169 Mozilla: Use-after-free in Ion Compiler...

MiracleLinux 7 : pesign-0.109-11.el7 (AXSA:2023-5211:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5211:03 advisory. pesign: Local privilege escalation on pesign systemd service CVE-2022-3560 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 7 : libmspack-0.5-0.8.alpha.el7 (AXSA:2020-580:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-580:02 advisory. libmspack: buffer overflow in function chmdreadheaders CVE-2019-1010305 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : systemd-239-74.el8.2 (AXSA:2023-6151:10)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6151:10 advisory. systemd: privilege escalation via the less pager CVE-2023-26604 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : kernel-5.14.0-162.18.1.el9_1 (AXSA:2023-5196:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5196:07 advisory. kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and...

MiracleLinux 8 : nodejs:18 (AXSA:2023-6466:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6466:01 advisory. nodejs: Permissions policies can be bypassed via Module.load CVE-2023-32002 nodejs-semver: Regular expression denial of service CVE-2022-25883 nodej...

MiracleLinux 7 : flatpak-1.0.9-10.el7 (AXSA:2021-1462:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1462:04 advisory. flatpak: sandbox escape via spawn portal CVE-2021-21261 Tenable has extracted the preceding description block directly from the MiracleLinux security advisor...

MiracleLinux 8 : emacs-26.1-11.el8 (AXSA:2023-7128:10)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7128:10 advisory. emacs: command execution via shell metacharacters CVE-2022-48337 emacs: command injection vulnerability in htmlfontify.el CVE-2022-48339 Tenable has...