192 matches found
EulerOS 2.0 SP5 : xorg-x11-server (EulerOS-SA-2024-2079)
According to the versions of the xorg-x11-server packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the X.Org server. The GLX PBuffer code does not call the XACE hook when creating the buffer, leaving it unlabeled. Wh...
EulerOS 2.0 SP5 : openssl (EulerOS-SA-2024-1155)
According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck,...
EulerOS 2.0 SP5 : libXpm (EulerOS-SA-2024-1151)
According to the versions of the libXpm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer function. This flaw allows a local attack...
EulerOS 2.0 SP5 : openssl098e (EulerOS-SA-2024-1156)
According to the versions of the openssl098e package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck...
EulerOS 2.0 SP5 : curl (EulerOS-SA-2024-1136)
According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met. libcurl...
EulerOS 2.0 SP5 : ppp (EulerOS-SA-2023-2165)
According to the versions of the ppp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability classified as problematic has been found in ppp. Affected is the function dumpppp of the file pppdump/pppdump.c of the component...
EulerOS 2.0 SP5 : sqlite (EulerOS-SA-2023-2171)
According to the versions of the sqlite packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In SQlite 3.31.1, a potential null pointer derreference was found in the INTERSEC query processing. CVE-2020-35525 Note that Tenable Network...
EulerOS 2.0 SP5 : tigervnc (EulerOS-SA-2023-2176)
According to the versions of the tigervnc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in X.Org. This security flaw occurs because the XkbCopyNames function left a dangling pointer to freed memory,...
EulerOS 2.0 SP5 : shim-signed (EulerOS-SA-2023-2170)
According to the versions of the shim-signed packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The public API function BIOnewNDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL...
EulerOS 2.0 SP5 : pki-core (EulerOS-SA-2023-2164)
According to the versions of the pki-core packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Access to external entities when parsing XML documents can lead to XML external entity XXE attacks. This flaw allows a remote attacker to...
EulerOS 2.0 SP5 : curl (EulerOS-SA-2023-2139)
According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A use after free vulnerability exists in curl 7.87.0. Curl can be asked to tunnel virtually all protocols it supports through an HTTP proxy. HTTP...
EulerOS 2.0 SP5 : libksba (EulerOS-SA-2023-1508)
According to the versions of the libksba package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely f...
EulerOS 2.0 SP5 : pixman (EulerOS-SA-2023-1511)
According to the versions of the pixman packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libpixman in Pixman before 0.42.2, there is an out-of-bounds write aka heap-based buffer overflow in rasterizeedges8 due to an integer overfl...
EulerOS 2.0 SP5 : wayland (EulerOS-SA-2023-1519)
According to the versions of the wayland packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is...
EulerOS 2.0 SP5 : libtiff (EulerOS-SA-2023-1509)
According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libtiff's tiffcrop utility has a uint32t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to...
EulerOS 2.0 SP5 : binutils (EulerOS-SA-2023-1490)
According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfdgetl32 when called from the stripmain function in...
EulerOS 2.0 SP5 : compat-colord10 (EulerOS-SA-2023-1493)
According to the versions of the compat-colord10 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c...
EulerOS 2.0 SP5 : libxslt (EulerOS-SA-2022-2444)
According to the versions of the libxslt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a...
EulerOS 2.0 SP5 : libjpeg-turbo (EulerOS-SA-2022-2442)
According to the versions of the libjpeg-turbo packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer...
EulerOS 2.0 SP5 : gimp (EulerOS-SA-2022-2438)
According to the versions of the gimp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a...