7041 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-43999
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Guacamole 1.2.0 and 1.3.0 do not properly validate responses received from a SAML identity provider. If SAML support is enabled, this may allow a malicio...
Linux Distros Unpatched Vulnerability : CVE-2020-23312
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an Assertion 'context.statusflags & PARSERSCANNINGSUCCESSFUL' failed at js-parser.c:2185 in parserparsesource in JerryScript 2.2.0. CVE-2020-23312 Note...
Linux Distros Unpatched Vulnerability : CVE-2020-6619
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - stb stbtruetype.h through 1.22 has an assertion failure in stbttbufseek. CVE-2020-6619 Note that Nessus relies on the presence of the package as reported by the...
RHEL 8 : httpd:2.4 (RHSA-2025:15619)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15619 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: insufficient...
Linux Distros Unpatched Vulnerability : CVE-2023-34867
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jerryscript 3.0 commit 05dbbd1 was discovered to contain an Assertion Failure via the ecmapropertyhashmapcreate at jerry-core/ecma/base/ecma-property-hashmap.c...
Shibboleth Service Provider 安全漏洞
Shibboleth Service Provider is a single sign-on framework from Shibboleth UK. A security vulnerability exists in Shibboleth Service Provider 3.5.0 and earlier versions, which stems from a SQL injection in the ID attribute of a SAML response, which could lead to the disclosure of database...
Linux Distros Unpatched Vulnerability : CVE-2023-31913
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jerryscript 3.0 commit 1a2c047 was discovered to contain an Assertion Failure via the component parserparseclass at jerry-core/parser/js/js-parser-expr.c...
CVE-2025-52288
Assertion failure in function ngapbuilddownlinknastransport in file src/amf/ngap-build.c, the Access and Mobility Management Function AMF component, in Open5GS thru 2.7.5 allowing attackers to cause a denial of service or other unspecified impacts via repeated UE connect and disconnect message...
Reachable Assertion
Overview Affected versions of this package are vulnerable to Reachable Assertion via the ngapbuilddownlinknastransport function in the Access and Mobility Management Function AMF component. An attacker can cause the process to terminate unexpectedly by repeatedly sending UE connect and disconnect...
httpd: mod_proxy_http2: untrusted input from a client causes an assertion to fail in the Apache mod_proxy_http2 module
An assertion failure flaw was found in Apache httpd. Untrusted clients can send inputs that trigger an assertion failure in the modproxyhttp2 module, which likely results in an Apache HTTP server crash or denial of service DoS...
Open5GS 安全漏洞
Open5GS is an Open5GS open source C open source implementation of 5G Core and Epc, the core network of the Lte/Nr network. A security vulnerability exists in Open5GS version 2.7.5 and earlier, which stems from an assertion failure in the ngapbuilddownlinknastransport function in the AMF component...
CVE-2025-52288
Assertion failure in function ngapbuilddownlinknastransport in file src/amf/ngap-build.c, the Access and Mobility Management Function AMF component, in Open5GS thru 2.7.5 allowing attackers to cause a denial of service or other unspecified impacts via repeated UE connect and disconnect message...
RockyLinux 8 : httpd:2.4 (RLSA-2025:15123)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:15123 advisory. httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TL...
php-saml
This is a PHP library for implementing SAML Security Assertion Markup Language authentication and authorization. It is a toolkit for adding SAML support to PHP software. The library is compatible with PHP 5.3.2 and later versions, and it uses the xmlseclibs library for XML encryption and...
OESA-2025-2148 cmake security update
CMake is used to control the software compilation process using simple platform and compiler independent configuration files. CMake generates native makefiles and workspaces that can be used in the compiler environment of your choice. CMake is quite sophisticated: it is possible to support comple...
OESA-2025-2145 cmake security update
CMake is used to control the software compilation process using simple platform and compiler independent configuration files. CMake generates native makefiles and workspaces that can be used in the compiler environment of your choice. CMake is quite sophisticated: it is possible to support comple...
In iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt.
...
Qemu-kvm: usb: assertion failure in usb_ep_get()
...
A possible assertion failure when 'stale-answer-client-timeout' is set to '0'
...
btrfs: fix assertion when building free space tree
...