4 matches found
Fedora 44 : haveged (2026-02b08daa05)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-02b08daa05 advisory. Update to 1.9.22 fix systemd sandboxing: add ReadWritePaths=/dev/shm for semaphore creation Backport fix for CVE-2026-41054: privilege escalation via command...
Unity Linux 20.1070e Security Update: nekohtml (UTSA-2026-016755)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016755 advisory. org.cyberneko.html is an html parser written in Java. The fork of org.cyberneko.html used by Nokogiri Rubygem raises a java.lang.OutOfMemoryError exception when...
openSUSE 16 Security Update : htmldoc (openSUSE-SU-2026:20219-1)
The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20219-1 advisory. Changes in htmldoc: - CVE-2024-46478: Fixed buffer overflow when handling tabs through the parsepre function bsc1232380. - version update to...
GD Star Rating 1.9.22 XSS / CSRF / SQL Injection
Details ================ Software: GD Star Rating Version: 1.9.22 Homepage: http://wordpress.org/plugins/gd-star-rating/ CVSS: 8.5 High; AV:N/AC:L/Au:S/C:C/I:N/A:C Description ================ XSS, CSRF and blind SQL injection in GD Star Rating 1.9.22 Vulnerability ================ This plugin is...