105 matches found
FreeBSD : electron32 -- multiple vulnerabilities (cc068959-ce2b-42eb-81ed-055551fe0e51)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the cc068959-ce2b-42eb-81ed-055551fe0e51 advisory. Electron developers report: This update fixes the following vulnerabilities: Tenable has...
Adobe InCopy 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-04)
The version of Adobe InCopy installed on the remote host is prior to 16.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-04 advisory. - Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary...
FreeBSD : oauth2-proxy -- multiple vulnerabilities (dbe8c5bd-8d3f-11ef-8d2e-a04a5edf46d9)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the dbe8c5bd-8d3f-11ef-8d2e-a04a5edf46d9 advisory. The oauth2-proxy project reports: Vulnerabilities have been addressed: Tenable has extracted t...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-43856)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...
Oracle Linux 7 : e2fsprogs (ELSA-2024-12704)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12704 advisory. 1.45.4-3.0.7 - libext2fs: add sanity check to extent manipulation Srivathsa Dara Orabug: 37095032 CVE-2022-1304 Tenable has extracted the preceding description...
FreeBSD : binutils -- Multiple vulnerabilities (943f8915-6c5d-11ef-810a-f8b46a88f42c)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 943f8915-6c5d-11ef-810a-f8b46a88f42c advisory. [email protected] reports PR/281070: A new version of devel/binutils has been released...
FreeBSD : firefox -- multiple vulnerabilities (a3a1caf5-6ba1-11ef-b9e8-b42e991fc52e)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the a3a1caf5-6ba1-11ef-b9e8-b42e991fc52e advisory. [email protected] reports: This entry contains 8 vulnerabilities: Tenable has extracted the...
FreeBSD : chromium -- multiple security fixes (26125e09-69ca-11ef-8a0f-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 26125e09-69ca-11ef-8a0f-a8a1599412c6 advisory. Chrome Releases reports: This update includes 4 security fixes: Tenable has extracted the...
Mattermost Server 9.10.x < 9.10.1 / 9.5.x < 9.5.8 (MMSA-2024-00352)
The version of Mattermost Server installed on the remote host is 9.5.x prior to 9.5.8 or 9.10.0 prior to 9.10.1. It is, therefore, affected by a vulnerability as referenced in the MMSA-2024-00352 advisory. - Mattermost versions 9.5.x = 9.5.7, 9.10.x = 9.10.0 fail to properly enforce permissions...
FreeBSD : chromium -- multiple security fixes (6f2545bb-65e8-11ef-8a0f-a8a1599412c6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 6f2545bb-65e8-11ef-8a0f-a8a1599412c6 advisory. Chrome Releases reports: This update includes 4 security fixes: Tenable has extracted the...
FreeBSD : electron31 -- multiple vulnerabilities (e61af8f4-455d-4f99-8d81-fbb004929dab)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e61af8f4-455d-4f99-8d81-fbb004929dab advisory. Electron developers report: This update fixes the following vulnerabilities: Tenable has...
SUSE SLED12 / SLES12 Security Update : python-urllib3 (SUSE-SU-2024:2879-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2879-1 advisory. - CVE-2024-37891: Fixed proxy-authorization request header is not stripped during cross-origin redirects bsc1226469...
Slackware Linux 15.0 / current aaa_glibc-solibs Multiple Vulnerabilities (SSA:2024-205-02)
The version of aaaglibc-solibs installed on the remote host is prior to 2.33 / 2.40. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-205-02 advisory. New glibc packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted...
AlmaLinux 8 : java-1.8.0-openjdk (ALSA-2024:4563)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:4563 advisory. OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK: Excessive...
SUSE SLES15: xen / xen-devel / xen-libs / xen-tools / xen-tools-domU / etc (SUSE-SU-2024:2533-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2533-1 advisory. - CVE-2024-2201: Mitigation for Native Branch History Injection XSA-456, bsc1222453 - CVE-2024-31143: Fixed double unlock in x86...
SUSE SLES15 / openSUSE 15 Security Update : podofo (SUSE-SU-2024:2281-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2281-1 advisory. - PdfEncrypt: Validate more encrypt dictionary parameters bsc1213720 - PdfXRefStreamParserObject: Fixed handling of invalid XRef stream...
FreeBSD : netatalk3 -- Multiple vulnerabilities (c742dbe8-3704-11ef-9e6e-b42e991fc52e)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the c742dbe8-3704-11ef-9e6e-b42e991fc52e advisory. [email protected] reports: This entry documents the following three vulnerabilities: Tenable has...
F5 Networks BIG-IP : PyYAML vulnerability (K000139901)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000139901 advisory. In PyYAML before 5.1, the yaml.load API could execute arbitrary code if used with untrusted data. The load function ha...
Google Chrome < 125.0.6422.76 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 125.0.6422.76. It is, therefore, affected by multiple vulnerabilities as referenced in the 202405stable-channel-update-for-desktop21 advisory. - Heap buffer overflow in Dawn in Google Chrome prior to 125.0.6422.76 allow...
F5 Networks BIG-IP : libxml2 vulnerability (K000139641)
The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000139641 advisory. In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequent...