NewStart CGSL CORE 5.04 / MAIN 5.04 : rpm Multiple Vulnerabilities (NS-SA-2020-0039)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has rpm packages installed that are affected by multiple vulnerabilities: - RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary...

OracleVM 3.2 : rpm (OVMSA-2016-0077)

The remote OracleVM system is missing necessary patches to address critical security updates : - Add missing files in /usr/share/doc/ - Fix warning when applying the patch for 1163057 - Fix race condidition where unchecked data is exposed in the file system CVE-2013-64351163057 - Fix segfault on...

Oracle: Security Advisory (ELSA-2011-1349)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux: Security Advisory (ALAS-2011-14)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 5 : rhev-hypervisor (RHSA-2011:1408)

An updated rhev-hypervisor package that fixes several security issues is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for each...

openSUSE Security Update : rpm (openSUSE-SU-2011:1203-1)

Specially crafted rpm packages can cause memory corruption in rpm when verifying signatures CVE-2011-3378. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update rpm-5255. The text description of thi...

Amazon Linux AMI : rpm (ALAS-2011-14)

Multiple flaws were found in the way the RPM library parsed package headers. An attacker could create a specially crafted RPM package that, when queried or installed, would cause rpm to crash or, potentially, execute arbitrary code. CVE-2011-3378 C Tenable Network Security, Inc. The descriptive...

Oracle Linux 5 / 6 : rpm (ELSA-2011-1349)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-1349 advisory. 4.8.0-16.1 - fix CVE-2011-3378 742154 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

CentOS Update for popt CESA-2011:1349 centos4 x86_64

Check for the Version of popt OpenVAS Vulnerability Test CentOS Update for popt CESA-2011:1349 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

CentOS Update for popt CESA-2011:1349 centos5 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for rpm FEDORA-2012-5420

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for rpm FEDORA-2012-5420

Check for the Version of rpm OpenVAS Vulnerability Test Fedora Update for rpm FEDORA-2012-5420 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

Fedora Update for rpm FEDORA-2011-13766

Check for the Version of rpm OpenVAS Vulnerability Test Fedora Update for rpm FEDORA-2011-13766 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for rpm FEDORA-2011-13766

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2011-3378

RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to 1 the...

SuSE 10 Security Update : popt (ZYPP Patch Number 7792)

Specially crafted RPM packages could have caused memory corruption in rpm when verifying signatures CVE-2011-3378. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...

SuSE 11.1 Security Update : popt (SAT Patch Number 5256)

Specially crafted RPM packages could have caused memory corruption in rpm when verifying signatures CVE-2011-3378. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The...

CentOS Update for popt CESA-2011:1349 centos4 i386

Check for the Version of popt OpenVAS Vulnerability Test CentOS Update for popt CESA-2011:1349 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

SuSE 10 Security Update : popt (ZYPP Patch Number 7793)

Specially crafted rpm packages could have caused memory corruption in rpm when verifying signatures CVE-2011-3378. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...

rpm (CVE-2011-3378) (important)

Specially crafted rpm packages can cause memory corruption in rpm when verifying signatures CVE-2011-3378...