293 matches found
CVE-2024-56747 affecting package kernel for versions less than 5.15.176.3-1
CVE-2024-56747 affecting package kernel for versions less than 5.15.176.3-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-56578 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-56578 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-53097 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-53097 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-53099 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-53099 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-50272 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-50272 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-56720 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-56720 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
Slackware Linux 15.0 / current git Multiple Vulnerabilities (SSA:2025-015-01)
The version of git installed on the remote host is prior to 2.46.3 / 2.48.1. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2025-015-01 advisory. New git packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the...
Debian dla-4010 : python-django-doc - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4010 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4010-1 [email protected] https://www.debian.org/lts/security/...
CVE-2024-47696 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-47696 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-47685 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-47685 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-50268 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-50268 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
RHEL 6 : openstack-keystone (RHSA-2014:0580)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0580 advisory. The OpenStack Identity service keystone authenticates and authorizes OpenStack users by keeping track of users and their permitted activities. The...
Malicious code in easy-upgrade (npm)
The package contains code to download and execute an infostealer payload...
[SECURITY] [DSA 5790-1] node-dompurify security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5790-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 13, 2024 https://www.debian.org/security/faq -...
Cleartext Transmission of Sensitive Information
Overview Affected versions of this package are vulnerable to Cleartext Transmission of Sensitive Information via the TlsStream process. An attacker can gain access to sensitive information by intercepting unencrypted data. Remediation Upgrade Microsoft.NETCore.App.Runtime.win-x86 to version 8.0.8...
[slackware-security] htdig
New htdig packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/htdig-3.2.0b6-i586-10slack15.0.txz: Rebuilt. Patch XSS vulnerability. Thanks to jayjwa. Get this out of cgi-bin. Thanks to LuckyCyborg...
Race Condition
Overview Microsoft.AspNetCore.App.Runtime.linux-arm64 is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Race Condition through the...
[slackware-security] expat
New expat packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/expat-2.6.2-i586-1slack15.0.txz: Upgraded. Prevent billion laughs attacks with isolated use of external parsers. For more information,...
MikroTik RouterOS Path Traversal (CVE-2019-3976)
RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgrade package's name field. If an authenticated user installs a malicious package then a directory could be created and the developer shell could be enabled. This...
Slackware Linux 15.0 / current xorg-server Multiple Vulnerabilities (SSA:2024-016-02)
The version of xorg-server installed on the remote host is prior to 1.20.14 / 21.1.11 / 21.1.4 / 23.2.4. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-016-02 advisory. Note that Nessus has not tested for these issues but has instead relied only on the...