MiracleLinux 7 : qt-4.8.7-8.el7 (AXSA:2020-4554:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4554:01 advisory. qt5-qtbase: Double free in QXmlStreamReader CVE-2018-15518 qt: Malformed PPM image causing division by zero and crash in qppmhandler.cpp...

MiracleLinux 9 : libreoffice-7.1.8.1-12.el9_4.ML.1 (AXSA:2024-8408:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8408:04 advisory. libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution CVE-2023-6185 libreoffice: Insufficient macro permission...

MiracleLinux 7 : binutils-2.27-44.base.el7.1 (AXSA:2021-2508:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2508:04 advisory. Developer environment: Unicode's bidirectional BiDi override characters can cause trojan source attacks CVE-2021-42574 The following changes were introduced ...

MiracleLinux 8 : thunderbird-115.7.0-1.el8_9.ML.1 (AXSA:2024-7501:04)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7501:04 advisory. Mozilla: Out of bounds write in ANGLE CVE-2024-0741 Mozilla: Failure to update user input timestamp CVE-2024-0742 Mozilla: Crash when listing printe...

MiracleLinux 9 : java-1.8.0-openjdk-1.8.0.372.b07-1.el9 (AXSA:2023-5314:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5314:08 advisory. OpenJDK: improper connection handling during TLS handshake 8294474 CVE-2023-21930 OpenJDK: Swing HTML parsing issue 8296832 CVE-2023-21939 OpenJDK:...

MiracleLinux 8 : libssh-0.9.4-3.el8 (AXSA:2021-2641:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2641:02 advisory. libssh: NULL pointer dereference in sftpserver.c if sshbuffernew returns NULL CVE-2020-16135 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : grafana-pcp-5.1.1-1.el9 (AXSA:2023-5597:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5597:02 advisory. golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 7 : openjpeg2-2.3.1-2.el7 (AXSA:2020-4445:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4445:02 advisory. openjpeg: Heap-based buffer overflow in opjt1clbldecodeprocessor CVE-2020-6851 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : perl-5.32.1-481.el9 (AXSA:2024-7769:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7769:02 advisory. perl: Write past buffer end via illegal user-defined Unicode property CVE-2023-47038 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : curl-7.61.1-25.el8.3 (AXSA:2023-5217:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5217:05 advisory. curl: HTTP multi-header compression denial of service CVE-2023-23916 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : zlib-1.2.11-18.el8 (AXSA:2022-3166:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3166:01 advisory. zlib: A flaw found in zlib when compressing not decompressing certain inputs CVE-2018-25032 Tenable has extracted the preceding description block directly fr...

MiracleLinux 8 : mingw-glib2-2.66.7-2.el8 (AXSA:2021-2771:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2771:01 advisory. glib: integer overflow in gbytesnew function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits CVE-2021-27219 glib: integer overfl...

MiracleLinux 7 : rh-nodejs14-nodejs-nodemon-2.0.20-2.el7, rh-nodejs14-nodejs-14.21.1-3.el7 (AXSA:2023-4997:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4997:01 advisory. glob-parent: Regular Expression Denial of Service CVE-2021-35065 minimist: prototype pollution CVE-2021-44906 node-fetch: exposure of sensitive...

MiracleLinux 9 : libssh-0.10.4-13.el9 (AXSA:2024-7773:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7773:03 advisory. libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values fo...

MiracleLinux 9 : java-21-openjdk-21.0.2.0.13-1.el9.ML.1 (AXSA:2024-7447:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7447:04 advisory. OpenJDK: array out-of-bounds access due to missing range check in C1 compiler 8314468 CVE-2024-20918 OpenJDK: RSA padding issue and timing...

MiracleLinux 8 : evolution-mapi-3.28.3-7.el8, openchange-2.3-31.el8 (AXSA:2023-6022:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6022:03 advisory. samba: GnuTLS gnutlsrnd can fail and give predictable random values CVE-2022-1615 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : python3.9-3.9.19-8.el9 (AXSA:2024-9269:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9269:08 advisory. python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service CVE-2024-8088 Tenable has extracted the preceding description block direct...

MiracleLinux 8 : openssl-1.1.1k-14.el8_6 (AXSA:2024-8893:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8893:07 advisory. openssl: SSLselectnextproto buffer overread CVE-2024-5535 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : python-requests-2.25.1-7.el9 (AXSA:2023-6284:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6284:01 advisory. python-requests: Unintended leak of Proxy-Authorization header CVE-2023-32681 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : dotnet6.0-6.0.126-1.el9_3.ML.1 (AXSA:2024-7413:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7413:03 advisory. dotnet: Information Disclosure: MD.SqlClientMDS & System.data.SQLClient SDS CVE-2024-0056 dotnet: X509 Certificates - Validation Bypass across Azure...