CentOS 8 : java-11-openjdk (CESA-2019:3135)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3135 advisory. - OpenJDK: Missing restrictions on use of custom SocketImpl Networking, 8218573 CVE-2019-2945 - OpenJDK: Improper handling of Kerberos proxy credential...

CentOS 8 : java-11-openjdk (CESA-2019:1518)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:1518 advisory. - OpenJDK: Slow conversion of BigDecimal to long Libraries, 8211936 CVE-2019-2602 - OpenJDK: Incorrect skeleton selection in RMI registry server-side...

CentOS 8 : firefox (CESA-2019:2663)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:2663 advisory. - firefox: stored passwords in 'Saved Logins' can be copied without master password entry CVE-2019-11733 - Mozilla: Memory safety bugs fixed in Firefox...

CentOS 8 : openssh (CESA-2019:3702)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3702 advisory. - openssh: scp client improper directory name validation CVE-2018-20685 - openssh: Missing character encoding in progress display allows for spoofing o...

CentOS 8 : edk2 (CESA-2019:0968)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:0968 advisory. - edk2: Buffer Overflow in BlockIo service for RAM disk CVE-2018-12180 Note that Nessus has not tested for this issue but has instead relied only on the...

CentOS 8 : kernel (CESA-2019:3871)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3871 advisory. - hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write CVE-2019-0155 Note that Nessus has not tested for this issue but has instead...

CentOS 8 : dovecot (CESA-2019:3467)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3467 advisory. - dovecot: Improper certificate validation CVE-2019-3814 Note that Nessus has not tested for this issue but has instead relied only on the application's...

CentOS 8 : pki-deps:10.6 (CESA-2019:2720)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:2720 advisory. - jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution CVE-2019-12384 Note that Nessus ha...

CentOS 8 : firefox (CESA-2019:0966)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:0966 advisory. - Mozilla: Proxy Auto-Configuration file can define localhost access to be proxied CVE-2018-18506 - Mozilla: Memory safety bugs fixed in Firefox 66 and...

CentOS 8 : php:7.3 (CESA-2019:3736)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3736 advisory. - php: underflow in envpathinfo in fpmmain.c CVE-2019-11043 Note that Nessus has not tested for this issue but has instead relied only on the application's...

CentOS 8 : libtiff (CESA-2019:3419)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3419 advisory. - libtiff: Heap-based buffer overflow in the cpSeparateBufToContigBuf function resulting in a denial of service or possibly code execution CVE-2018-12900 Note...

CentOS 8 : kernel (CESA-2019:2827)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:2827 advisory. - kernel: vhost-net: guest to host kernel escape during migration CVE-2019-14835 Note that Nessus has not tested for this issue but has instead relied only on t...

CentOS 8 : firefox (CESA-2019:4111)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:4111 advisory. - Mozilla: Buffer overflow in plain text serializer CVE-2019-17005 - Mozilla: Use-after-free in worker destruction CVE-2019-17008 - Mozilla:...

CentOS 8 : mod_auth_mellon (CESA-2019:0985)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2019:0985 advisory. - modauthmellon: authentication bypass in ECP flow CVE-2019-3878 Note that Nessus has not tested for this issue but has instead relied only on the application's...

CentOS 8 : thunderbird (CESA-2019:1799)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2019:1799 advisory. - Mozilla: Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8 CVE-2019-11709 - Mozilla: Script injection within domain through inner window...

CentOS 8 : git (CESA-2019:4356)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:4356 advisory. - git: Arbitrary path overwriting via export-marks in-stream command feature CVE-2019-1348 - git: Recursive submodule cloning allows using git director...

CentOS 8 : ghostscript (CESA-2019:0971)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:0971 advisory. - ghostscript: superexec operator is available 700585 CVE-2019-3835 - ghostscript: forceput in DefineResource is still accessible 700576 CVE-2019-3838 ...

CentOS 8 : poppler (CESA-2019:2713)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:2713 advisory. - poppler: memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc CVE-2018-18897 - poppler: NULL pointer dereference in the XRef::getEntry in...

CentOS 8 : nghttp2 (CESA-2019:2692)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:2692 advisory. - HTTP/2: large amount of data requests leads to denial of service CVE-2019-9511 - HTTP/2: flood using PRIORITY frames results in excessive resource...

CentOS 8 : cyrus-imapd (CESA-2019:1771)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:1771 advisory. - cyrus-imapd: buffer overflow in CalDAV request handling triggered by a long iCalendar property name CVE-2019-11356 Note that Nessus has not tested for this...