MiracleLinux 9 : kernel-5.14.0-570.33.2.el9_6 (AXSA:2025-10783:60)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10783:60 advisory. kernel: crypto: algifhash - fix double free in hashaccept CVE-2025-38079 kernel: wifi: ath12k: fix invalid access to memory CVE-2025-38292 Tenable...

MiracleLinux 9 : java-17-openjdk-17.0.15.0.6-2.el9.ML.1 (AXSA:2025-9865:06)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9865:06 advisory. JDK: Better TLS connection support CVE-2025-21587 JDK: Improve compiler transformations CVE-2025-30691 JDK: Enhance Buffered Image handling...

MiracleLinux 9 : java-21-openjdk-21.0.6.0.7-1.el9.ML.1 (AXSA:2025-9590:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9590:02 advisory. JDK: Enhance array handling CVE-2025-21502 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 9 : krb5-1.21.1-6.el9 (AXSA:2025-10061:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10061:04 advisory. krb5: overflow when calculating ulog block size CVE-2025-24528 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : tomcat-7.0.76-16.0.3.el7.AXS7 (AXSA:2025-10787:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10787:07 advisory. CVE-2025-24813: fix path equivalence vulnerability leading to remote code execution and information disclosure CVEs: CVE-2025-24813 Path Equivalence:...

MiracleLinux 9 : webkit2gtk3-2.46.5-1.el9_5 (AXSA:2025-9538:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9538:01 advisory. WebKitGTK: Processing maliciously crafted web content may lead to an unexpected process crash CVE-2024-54479 webkit: Processing maliciously crafted...

MiracleLinux 9 : kernel-5.14.0-570.60.1.el9_6 (AXSA:2025-11090:87)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11090:87 advisory. kernel: ipv6: sr: Fix MAC comparison to be constant-time CVE-2025-39702 kernel: fs: fix UAF/GPF bug in nilfsmdtdestroy CVE-2022-50367 kernel: crypt...

MiracleLinux 8 : tigervnc-1.13.1-15.el8_10 (AXSA:2025-9756:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9756:02 advisory. X.Org: Xwayland: Use-after-free of the root cursor CVE-2025-26594 xorg: xwayland: Use-after-free in SyncInitTrigger CVE-2025-26601 xorg: xwayland:...

MiracleLinux 9 : postgresql:16 (AXSA:2025-9703:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9703:01 advisory. postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation CVE-2025-1094 Tenable has extracted the preceding...

MiracleLinux 9 : kernel-5.14.0-570.44.1.el9_6 (AXSA:2025-10900:71)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10900:71 advisory. kernel: ipv6: mcast: Delay put pmc-idev in mlddeldelrec CVE-2025-38550 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : firefox-128.9.0-2.el8_10.ML.1 (AXSA:2025-9836:11)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9836:11 advisory. firefox: thunderbird: URL Bar Spoofing via non-BMP Unicode characters CVE-2025-3029 firefox: thunderbird: Use-after-free triggered by XSLTProcessor...

MiracleLinux 9 : golang-1.24.4-1.el9_6 (AXSA:2025-10627:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10627:03 advisory. net/http: Sensitive headers not cleared on cross-origin redirect in net/http CVE-2025-4673 Tenable has extracted the preceding description block directly fr...

MiracleLinux 8 : thunderbird-128.9.2-1.el8_10.ML.1 (AXSA:2025-9932:09)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9932:09 advisory. thunderbird: User Interface UI Misrepresentation of attachment URL CVE-2025-3523 thunderbird: Information Disclosure of /tmp directory listing...

MiracleLinux 7 : postgresql-9.2.24-9.0.2.el7.AXS7 (AXSA:2025-9551:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9551:01 advisory. CVE-2024-10979: Prevent trusted PL/Perl code from changing environment variables CVEs: CVE-2024-10979 Incorrect control of environment variables in PostgreSQ...

MiracleLinux 8 : gdk-pixbuf2-2.36.12-7.el8_10 (AXSA:2025-10715:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10715:02 advisory. gdk?pixbuf: Heap?buffer?overflow in gdk?pixbuf CVE-2025-7345 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : mod_proxy_cluster-1.3.22-1.el9_6.1 (AXSA:2025-10590:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10590:02 advisory. modproxycluster: modproxycluster unauthorized MCMP requests CVE-2024-10306 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : postgresql:16 (AXSA:2025-10816:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10816:01 advisory. postgresql: PostgreSQL executes arbitrary code in restore operation CVE-2025-8715 postgresql: PostgreSQL code execution in restore operation...

MiracleLinux 8 : dotnet8.0-8.0.117-1.el8_10.ML.1 (AXSA:2025-10024:11)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10024:11 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New...

MiracleLinux 9 : aide-0.16-103.el9_6.2 (AXSA:2025-10782:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10782:02 advisory. aide: improper output neutralization enables bypassing CVE-2025-54389 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : rpm-ostree-2025.5-1.el9 (AXSA:2025-10337:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10337:01 advisory. rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 Tenable has extracted the preceding description block directly from the...