CentOS 9 : kernel-5.14.0-601.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-601.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix potential memory corruption in childcfsrqonlist...

CentOS 9 : libxml2-2.9.13-10.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the libxml2-2.9.13-10.el9 build changelog. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issu...

CentOS 9 : bzip2-1.0.8-10.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the bzip2-1.0.8-10.el9 build changelog. - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-12900 Note that Nessus has...

CentOS 9 : ncurses-6.2-12.20210508.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ncurses-6.2-12.20210508.el9 build changelog. - ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security- relevant memory corruptio...

CentOS 9 : libarchive-3.5.3-5.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libarchive-3.5.3-5.el9 build changelog. - listitemverbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of service or...

CentOS 9 : kernel-5.14.0-585.el9

"The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-585.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: ext4: fix OOB read when checking dotdot dir Mounting a corrupted...

CentOS 9 : kernel-5.14.0-575.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-575.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: vrf: use RCU protection in l3mdevl3out l3mdevl3out can be called...

CentOS 9 : kernel-5.14.0-572.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-572.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array The...

CentOS 9 : microcode_ctl-20250211-1.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the microcodectl-20250211-1.el9 build changelog. - Improper input validation in UEFI firmware for some IntelR processors may allow a privileged user to potentially enable escalatio...

CentOS 9 : libxml2-2.9.13-9.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the libxml2-2.9.13-9.el9 build changelog. - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD...

CentOS 9 : kernel-5.14.0-542.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-542.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsdshrinkerwork using sync mode in nfs4stateshutdownn...

CentOS 9 : tuned-2.24.0-2.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the tuned-2.24.0-2.el9 build changelog. - A script injection vulnerability was identified in the Tuned package. The instancecreate D-Bus function can be called by locally logged-in...

CentOS 9 : kernel-5.14.0-536.el9

"The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-536.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix potential null- ptr-deref Fix potential...

CentOS 9 : pam-1.5.1-23.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the pam-1.5.1-23.el9 build changelog. - A flaw was found in pamaccess, where certain rules in its configuration file are mistakenly treated as hostnames. This vulnerability allows attackers...

CentOS 9 : kernel-5.14.0-533.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-533.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput syzbot reported...

CentOS 9 : kernel-5.14.0-529.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-529.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: ipvs: properly dereference pe in ipvsaddservice Use pe directly to...

CentOS 9 : kernel-5.14.0-516.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-516.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: r8169: Fix possible ring buffer corruption on fragmented Tx packets...

CentOS 9 : microcode_ctl-20240910-1.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the microcodectl-20240910-1.el9 build changelog. - Observable discrepancy in RAPL interface for some IntelR Processors may allow a privileged user to potentially enable information...

CentOS 9 : kernel-5.14.0-513.el9

"The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-513.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Fix potential null pointer dereference In...

CentOS 9 : kernel-5.14.0-508.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the kernel-5.14.0-508.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: lib: objagg: Fix general protection fault The library supports aggregation o...