35 matches found
Security Bulletin: IBM Cognos Dashboards on Cloud Pak for Data has addressed security vulnerabilities
Summary There are vulnerabilities in Open-Source Software OSS components consumed by IBM Cognos Dashboards on Cloud Pak for Data. Please refer to the Related Information section below for vulnerability impact. This Security Bulletin relates only to the direct usage of third-party components by IB...
CBL Mariner 2.0 Security Update: file (CVE-2022-48554)
The version of file installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-48554 advisory. - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: File is the name of an...
CVE-2022-48554 affecting package file for versions less than 5.40-3
CVE-2022-48554 affecting package file for versions less than 5.40-3. A patched version of the package is available...
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 9.1.1
Summary In addition to updates of open source dependencies, the following security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 9.1.1 Vulnerability Details CVEID:CVE-2024-25062 DESCRIPTION: GNOME libxml2 is vulnerable to a denial of service, caused by a...
Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates
Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 5.0.18 LTS and 11.6.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported vulnerabilities...
Rocky Linux 9 : file (RLSA-2024:2512)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:2512 advisory. - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: File is the name of an Open Source project. CVE-2022-48554 Note that Ness...
RHEL 7 : file (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - file: out-of-bounds read via a crafted ELF file CVE-2018-10360 - File before 5.43 has an stack-based buff...
RLSA-2024:2512 Low: file security update
The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format ELF binary files, system libraries, RPM packages, and different graphics formats. Security Fixes: file:...
Oracle Linux 9 : file (ELSA-2024-2512)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2512 advisory. - Fix stack-based buffer over-read in filecopystr CVE-2022-48554 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Low: Red Hat Security Advisory: file security update
An update for file is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Low: file security update
The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format ELF binary files, system libraries, RPM packages, and different graphics formats. Security Fixes: file:...
ALSA-2024:2512 Low: file security update
The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format ELF binary files, system libraries, RPM packages, and different graphics formats. Security Fixes: file:...
CentOS 9 : file-5.39-16.el9
The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the file-5.39-16.el9 build changelog. - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: File is the name of an Open Source project. CVE-2022-48554 Note...
EulerOS 2.0 SP11 : file (EulerOS-SA-2023-3027)
According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project. CVE-2022-48554...
EulerOS 2.0 SP10 : file (EulerOS-SA-2023-3171)
According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project. CVE-2022-48554...
EulerOS Virtualization 2.10.1 : file (EulerOS-SA-2023-3495)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...
EulerOS 2.0 SP11 : file (EulerOS-SA-2023-3004)
According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project. CVE-2022-48554...
EulerOS Virtualization 2.10.0 : file (EulerOS-SA-2023-3467)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...
EulerOS Virtualization 2.11.1 : file (EulerOS-SA-2023-3356)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...
EulerOS Virtualization 2.11.0 : file (EulerOS-SA-2023-3375)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...