Linux Distros Unpatched Vulnerability : CVE-2022-49385

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - driver: base: fix UAF when driverattach failed When driverattachdrv %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid225451;...

Linux Distros Unpatched Vulnerability : CVE-2022-49474

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix dangling scoconn and use-after-free in scosocktimeout Connecting the same...

Linux Distros Unpatched Vulnerability : CVE-2023-52748

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: avoid format-overflow warning With gcc and W=1 option, there's a warning like this: fs/f2fs/compress.c: In function f2fsinitpagearraycache':...

Linux Distros Unpatched Vulnerability : CVE-2021-33624

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF...

Linux Distros Unpatched Vulnerability : CVE-2022-48735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fix UAF of leds class devs at unbinding The LED class devices that are created by...

Linux Distros Unpatched Vulnerability : CVE-2023-6932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be...

Linux Distros Unpatched Vulnerability : CVE-2022-48834

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: usbtmc: Fix bug in pipe direction for control transfers The syzbot fuzzer reported a...

Linux Distros Unpatched Vulnerability : CVE-2022-3565

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function deltimer of the file...

Linux Distros Unpatched Vulnerability : CVE-2022-48701

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: usb-audio: Fix an out-of-bounds bug in sndusbparseaudiointerface There may be a bad USB audio device with a USB ID of 0x04fa, 0x4201 and the number of it'...

Linux Distros Unpatched Vulnerability : CVE-2022-20566

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional...

Linux Distros Unpatched Vulnerability : CVE-2022-34169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java cla...

Linux Distros Unpatched Vulnerability : CVE-2022-42919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux allows local privilege escalation in a non- default configuration. The Python multiprocessing...

Linux Distros Unpatched Vulnerability : CVE-2022-2122

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemuxinflate function which causes a segfault, or...

Linux Distros Unpatched Vulnerability : CVE-2022-3594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intrcallback of the file...

Linux Distros Unpatched Vulnerability : CVE-2022-2097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. Thi...

Linux Distros Unpatched Vulnerability : CVE-2023-52690

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check to scomdebuginitone kasprintf returns a pointer to...

Linux Distros Unpatched Vulnerability : CVE-2023-0215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The public API function BIOnewNDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL to support the SMIME...

Linux Distros Unpatched Vulnerability : CVE-2023-24539

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Angle brackets are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character can...

Linux Distros Unpatched Vulnerability : CVE-2022-41716

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to unsanitized NUL values, attackers may be able to maliciously set environment variables on Windows. In syscall.StartProcess and os/exec.Cmd, invalid...

Linux Distros Unpatched Vulnerability : CVE-2023-0797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tifunix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to...