Lucene search
+L

65 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.3 views

NewStart CGSL MAIN 7.02 : squashfs-tools Multiple Vulnerabilities (NS-SA-2025-0192)

The remote NewStart CGSL host, running version MAIN 7.02, has squashfs-tools packages installed that are affected by multiple vulnerabilities: - squashfsopendir in unsquash-2.c in Squashfs-Tools 4.5 allows Directory Traversal, a different vulnerability than CVE-2021-40153. A squashfs filesystem...

8.1CVSS6.4AI score0.025EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: squashfs-tools (TSSA-2024:0147)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0147 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.1CVSS6.5AI score0.025EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.14 views

Alibaba Cloud Linux 3 : 0129: squashfs-tools (ALINUX3-SA-2024:0129)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0129 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-40153: squashfsopendir in...

8.1CVSS6.5AI score0.025EPSS
Exploits2References3
Rosalinux
Rosalinux
added 2025/04/11 9:55 p.m.10 views

Advisory ROSA-SA-2025-2819

Software: squashfs-tools 4.3 OS: ROSA Virtualization 3.0 packageevrstring: squashfs-tools-4.3-21.rv30 CVE-ID: CVE-2021-40153 BDU-ID: 2021-05217 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the squashfsopendir function of the unsquash-1.c component of the Squashfs Squashfs-Tools file system...

8.1CVSS6.9AI score0.025EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-40153

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - squashfsopendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during...

8.1CVSS6.3AI score0.025EPSS
Exploits1References2
OSV
OSV
added 2024/06/14 1:59 p.m.24 views

RLSA-2024:3139 Moderate: squashfs-tools security update

SquashFS is a highly compressed read-only file system for Linux. These packages contain the utilities for manipulating squashfs file systems. Security Fixes: squashfs-tools: unvalidated filepaths allow writing outside of destination CVE-2021-40153 squashfs-tools: possible Directory Traversal via...

8.1CVSS8.2AI score0.025EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.376 views

squashfs-tools security update

4.3-21 - CVE-2021-41072 squashfs-tools: additional write outside destination directory exploit fix CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination Resolves: rhbz2007303 rhbz2000637...

8.1CVSS7.1AI score0.025EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2024/05/22 9:35 a.m.40 views

Moderate: Red Hat Security Advisory: squashfs-tools security update

An update for squashfs-tools is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

8.1CVSS6.6AI score0.025EPSS
Exploits2References4
AlmaLinux
AlmaLinux
added 2024/05/22 12:0 a.m.28 views

Moderate: squashfs-tools security update

SquashFS is a highly compressed read-only file system for Linux. These packages contain the utilities for manipulating squashfs file systems. Security Fixes: squashfs-tools: unvalidated filepaths allow writing outside of destination CVE-2021-40153 squashfs-tools: possible Directory Traversal via...

8.1CVSS6.8AI score0.025EPSS
Exploits2References6
OSV
OSV
added 2024/05/22 12:0 a.m.20 views

ALSA-2024:3139 Moderate: squashfs-tools security update

SquashFS is a highly compressed read-only file system for Linux. These packages contain the utilities for manipulating squashfs file systems. Security Fixes: squashfs-tools: unvalidated filepaths allow writing outside of destination CVE-2021-40153 squashfs-tools: possible Directory Traversal via...

8.1CVSS8.3AI score0.025EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2024/05/22 12:0 a.m.40 views

CentOS 8 : squashfs-tools (CESA-2024:3139)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2024:3139 advisory. - squashfsopendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new...

8.1CVSS6.5AI score0.025EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2024/04/30 10:42 a.m.228 views

Moderate: Red Hat Security Advisory: squashfs-tools security update

An update for squashfs-tools is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

8.1CVSS6.6AI score0.025EPSS
Exploits2References4
OSV
OSV
added 2024/04/30 12:0 a.m.27 views

ALSA-2024:2396 Moderate: squashfs-tools security update

SquashFS is a highly compressed read-only file system for Linux. These packages contain the utilities for manipulating squashfs file systems. Security Fixes: squashfs-tools: unvalidated filepaths allow writing outside of destination CVE-2021-40153 squashfs-tools: possible Directory Traversal via...

8.1CVSS8.3AI score0.025EPSS
Exploits2References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.50 views

Moderate: squashfs-tools security update

SquashFS is a highly compressed read-only file system for Linux. These packages contain the utilities for manipulating squashfs file systems. Security Fixes: squashfs-tools: unvalidated filepaths allow writing outside of destination CVE-2021-40153 squashfs-tools: possible Directory Traversal via...

8.1CVSS7AI score0.025EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.34 views

RHEL 9 : squashfs-tools (RHSA-2024:2396)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2396 advisory. SquashFS is a highly compressed read-only file system for Linux. These packages contain the utilities for manipulating squashfs file systems...

8.1CVSS6.7AI score0.025EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.26 views

openSUSE: Security Advisory for squashfs (SUSE-SU-2023:4591-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.4AI score0.0691EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/11/28 12:0 a.m.19 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : squashfs (SUSE-SU-2023:4591-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4591-1 advisory. - CVE-2015-4645,CVE-2015-4646: Multiple buffer overflows fixed in squashfs-tools bsc935380 -...

8.1CVSS6.9AI score0.0691EPSS
Exploits2References12
OpenVAS
OpenVAS
added 2023/11/28 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2023:4591-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.0691EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.25 views

SUSE SLES12 Security Update : squashfs (SUSE-SU-2023:4424-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4424-1 advisory. - Integer overflow in the readfragmenttable4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a...

8.1CVSS7AI score0.0691EPSS
Exploits2References14
OpenVAS
OpenVAS
added 2023/11/14 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2023:4424-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.0691EPSS
Exploits2References8
Rows per page
Query Builder