CentOS 8 : openjpeg2 (CESA-2020:0274)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:0274 advisory. - openjpeg: Heap-based buffer overflow in opjt1clbldecodeprocessor CVE-2020-6851 Note that Nessus has not tested for this issue but has instead relied only on t...

CentOS 8 : libxslt (CESA-2020:4464)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4464 advisory. - libxslt: xsltCheckRead and xsltCheckWrite routines security bypass by crafted URL CVE-2019-11068 - libxslt: use after free in xsltCopyText in...

CentOS 8 : rsyslog (CESA-2020:1702)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1702 advisory. - rsyslog: heap-based overflow in contrib/pmaixforwardedfrom/pmaixforwardedfrom.c CVE-2019-17041 - rsyslog: heap-based overflow in...

CentOS 8 : varnish:6 (CESA-2020:4756)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4756 advisory. - varnish: denial of service handling certain crafted HTTP/1 requests CVE-2019-15892 - varnish: not clearing pointer between two client requests leads ...

CentOS 8 : libreoffice (CESA-2020:1598)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1598 advisory. - libreoffice: Remote resources protection module not applied to bullet graphics CVE-2019-9849 - libreoffice: Insufficient URL validation allowing...

CentOS 8 : libexif (CESA-2020:2550)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:2550 advisory. - libexif: several buffer over-reads in EXIF MakerNote handling can lead to information disclosure and DoS CVE-2020-13112 Note that Nessus has not tested for th...

CentOS 8 : librepo (CESA-2020:3658)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:3658 advisory. - librepo: missing path validation in repomd.xml may lead to directory traversal CVE-2020-14352 Note that Nessus has not tested for this issue but has instead...

CentOS 8 : librsvg2 (CESA-2020:4709)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:4709 advisory. - librsvg: Resource exhaustion via crafted SVG file with nested patterns CVE-2019-20446 Note that Nessus has not tested for this issue but has instead relied on...

CentOS 8 : python-pillow (CESA-2020:3185)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:3185 advisory. - python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2 CVE-2020-11538 - python-pillow: out-of-bounds rea...

CentOS 8 : unzip (CESA-2020:1787)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2020:1787 advisory. - unzip: overlapping of files in ZIP container leads to denial of service CVE-2019-13232 Note that Nessus has not tested for this issue but has instead relied...

CentOS 8 : firefox (CESA-2020:2379)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:2379 advisory. - Mozilla: Use-after-free in SharedWorkerService CVE-2020-12405 - Mozilla: JavaScript Type confusion with NativeTypes CVE-2020-12406 - Mozilla: Memory...

CentOS 8 : container-tools:2.0 (CESA-2020:1931)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:1931 advisory. - buildah: Crafted input tar file may lead to local file overwrite during image build process CVE-2020-10696 Note that Nessus has not tested for this issue but...

CentOS 8 : thunderbird (CESA-2020:0577)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:0577 advisory. - Mozilla: Message ID calculation was based on uninitialized data CVE-2020-6792 - Mozilla: Out-of-bounds read when processing certain email messages...

CentOS 8 : sqlite (CESA-2020:1810)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1810 advisory. - sqlite: fts3: improve shadow table corruption detection CVE-2019-13752 - sqlite: fts3: incorrectly removed corruption check CVE-2019-13753 - sqlite:...

CentOS 8 : libvncserver (CESA-2020:0920)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:0920 advisory. - libvncserver: HandleCursorShape integer overflow resulting in heap-based buffer overflow CVE-2019-15690 - libvncserver: integer overflow and heap-bas...

CentOS 8 : libreoffice (CESA-2020:4628)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4628 advisory. - libreoffice: 'stealth mode' remote resource restrictions bypass CVE-2020-12802 - libreoffice: forms allowed to be submitted to any URI could result i...

CentOS 8 : .NET Core 3.1 on Red Hat Enterprise Linux 8 (CESA-2020:2450)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:2450 advisory. - dotnet: Denial of service via untrusted input CVE-2020-1108 Note that Nessus has not tested for this issue but has instead relied only on the application's...

CentOS 8 : firefox (CESA-2020:3241)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:3241 advisory. - Mozilla: Potential leak of redirect targets when loading scripts in a worker CVE-2020-15652 - Mozilla: Memory safety bugs fixed in Firefox 79 and...

CentOS 8 : glibc (CESA-2020:1828)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:1828 advisory. - glibc: LDPREFERMAP32BITEXEC not ignored in setuid binaries CVE-2019-19126 Note that Nessus has not tested for this issue but has instead relied only on the...

CentOS 8 : microcode_ctl (CESA-2020:5085)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:5085 advisory. - hw: Information disclosure issue in Intel SGX via RAPL interface CVE-2020-8695 - hw: Vector Register Leakage-Active CVE-2020-8696 - hw: Fast forward...