MiracleLinux 9 : ruby:3.1 (AXSA:2024-8490:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8490:01 advisory. ruby: Buffer overread vulnerability in StringIO CVE-2024-27280 ruby: RCE vulnerability with .rdocoptions in RDoc CVE-2024-27281 ruby: Arbitrary memo...

MiracleLinux 7 : squid-3.5.20-17.el7.8 (AXSA:2022-3878:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3878:02 advisory. squid: buffer-over-read in SSPI and SMB authentication CVE-2022-41318 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : squid-5.5-6.el9_3.5 (AXSA:2024-7340:01)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7340:01 advisory. squid: Denial of Service in SSL Certificate validation CVE-2023-46724 squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728...

MiracleLinux 9 : openssl-3.2.2-6.el9.ML.1 (AXSA:2024-9111:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9111:08 advisory. openssl: Unbounded memory growth with session handling in TLSv1.3 CVE-2024-2511 openssl: Excessive time spent checking DSA keys and parameters...

MiracleLinux 7 : SDL-1.2.15-17.el7 (AXSA:2020-602:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-602:02 advisory. SDL: buffer over-read in IMAADPCMnibble in audio/SDLwave.c CVE-2019-7572 SDL: heap-based buffer overflow in function MSADPCMdecode in audio/SDLwave.c...

MiracleLinux 8 : SDL-1.2.15-38.el8 (AXSA:2021-1321:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1321:01 advisory. SDL: buffer over-read in IMAADPCMnibble in audio/SDLwave.c CVE-2019-7572 SDL: heap-based buffer overflow in MSADPCMdecode in audio/SDLwave.c...

MiracleLinux 9 : dbus-broker-28-5.1.el9 (AXSA:2022-4072:01)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-4072:01 advisory. dbus-broker: a stack buffer over-read if a malicious Exec line is supplied CVE-2022-31212 dbus-broker: null pointer reference when supplying a...

MiracleLinux 8 : vim-8.0.1763-19.el8.2 (AXSA:2022-3678:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3678:04 advisory. vim: heap buffer overflow CVE-2022-1621 vim: buffer over-read CVE-2022-1629 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libsndfile-1.0.28-10.el8 (AXSA:2020-305:02)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-305:02 advisory. libsndfile: stack-based buffer overflow in sndfile-deinterleave utility CVE-2018-13139 libsndfile: buffer over-read in the function i2alawarray in...

CVE-2025-66692

A buffer over-read in the PublicKey::verify method of Binance - Trust Wallet Core before commit 5668c67 allows attackers to cause a Denial of Service DoS via a crafted input...

MiracleLinux 8 : qt5-qtbase-5.15.3-5.el8 (AXSA:2023-7239:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7239:02 advisory. qt: buffer over-read via a crafted reply from a DNS server CVE-2023-33285 qt: allows remote attacker to bypass security restrictions caused by flaw ...

MiracleLinux 8 : tcpdump-4.9.2-6.el8 (AXSA:2020-315:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-315:02 advisory. tcpdump: Stack-based buffer over-read in print-hncp.c:printprefix via crafted pcap CVE-2018-19519 Tenable has extracted the preceding description block direct...

Mageia: Security Advisory (MGASA-2026-0010)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ROS-20260119-7363

A vulnerability in the cacheinfo component of the Linux operating system kernel is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...

ROS-20260119-7343

A vulnerability in the drivers/misc/fastrpc.c component of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

MiracleLinux 7 : tcpdump-4.9.2-4.el7.1 (AXSA:2020-040:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-040:01 advisory. tcpdump: Stack-based buffer over-read in print-hncp.c:printprefix via crafted pcap CVE-2018-19519 Tenable has extracted the preceding description block direct...

CVE-2025-60003

A Buffer Over-read vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. When an affected device receives a BGP update with a set of specific optional transitive...

OESA-2026-1112 libpcap security update

This is the official web site of tcpdump, a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. Security Fixes: pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string...

OESA-2026-1109 libpcap security update

This is the official web site of tcpdump, a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. Security Fixes: pcapetheraton is an auxiliary function in libpcap, it takes a string argument and returns a fixed-size allocated buffer. The string...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000676)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000676 advisory. The ieee80211radiotapiteratorinit function in net/wireless/radiotap.c in the Linux kernel before 3.11.7 does not check whether a frame contains any data outside of t...