Fedora 44 : gh (2026-f07b3548d4)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-f07b3548d4 advisory. Update to 2.94.0 ---- Update to 2.93.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

CVE-2026-39821 affecting package gh for versions less than 2.62.0-16

CVE-2026-39821 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

CVE-2026-42506 affecting package gh for versions less than 2.62.0-16

CVE-2026-42506 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

CVE-2026-39829 affecting package gh for versions less than 2.62.0-16

CVE-2026-39829 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

CVE-2026-39834 affecting package gh for versions less than 2.62.0-16

CVE-2026-39834 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

CVE-2026-46597 affecting package gh for versions less than 2.62.0-16

CVE-2026-46597 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

CVE-2026-32288 affecting package gh for versions less than 2.62.0-15

CVE-2026-32288 affecting package gh for versions less than 2.62.0-15. A patched version of the package is available...

CVE-2026-5160 affecting package gh for versions less than 2.62.0-15

CVE-2026-5160 affecting package gh for versions less than 2.62.0-15. A patched version of the package is available...

Fedora 44 : gh (2026-5df889949e)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-5df889949e advisory. Update to 2.92.0 and make telemetry sending opt in. Tenable has extracted the preceding description block directly from the Fedora security advisory...

CVE-2025-58190 affecting package gh for versions less than 2.62.0-13

CVE-2025-58190 affecting package gh for versions less than 2.62.0-13. A patched version of the package is available...

CVE-2025-11065 affecting package gh for versions less than 2.62.0-13

CVE-2025-11065 affecting package gh for versions less than 2.62.0-13. A patched version of the package is available...

CVE-2026-23992 affecting package gh for versions less than 2.62.0-13

CVE-2026-23992 affecting package gh for versions less than 2.62.0-13. A patched version of the package is available...

CVE-2026-23991 affecting package gh for versions less than 2.62.0-13

CVE-2026-23991 affecting package gh for versions less than 2.62.0-13. A patched version of the package is available...

Fedora 42 : gh (2026-de52e7caa1)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-de52e7caa1 advisory. Update to 2.87.3 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Fedora 43 : gh (2026-21a2f3709a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-21a2f3709a advisory. Update to 2.87.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

Ubuntu: Security Advisory (USN-8012-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AZL-76958 CVE-2025-58190 affecting package gh 2.62.0-10

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

GHSA-273P-M2CW-6833 vulnerabilities

Vulnerabilities for packages: kyverno, spire-server, kyverno-notation-aws, zarf, trivy-operator, trivy, witness, zot, skaffold, kubescape, tflint, gitsign, aactl, slsa-verifier, buildkitd, crossplane, ratify, falcoctl, neuvector-sigstore-interface, tkn, goreleaser, policy-controller, ko, cosign,...

CVE-2026-23831 vulnerabilities

Vulnerabilities for packages: kyverno, spire-server, kyverno-notation-aws, zarf, trivy-operator, trivy, witness, zot, skaffold, kubescape, tflint, gitsign, aactl, slsa-verifier, buildkitd, crossplane, ratify, falcoctl, neuvector-sigstore-interface, tkn, goreleaser, policy-controller, ko, cosign,...

GHSA-4C4X-JM2X-PF9J vulnerabilities

Vulnerabilities for packages: kyverno, spire-server, kyverno-notation-aws, zarf, trivy-operator, trivy, witness, zot, skaffold, kubescape, tflint, gitsign, aactl, slsa-verifier, buildkitd, crossplane, ratify, falcoctl, neuvector-sigstore-interface, tkn, goreleaser, policy-controller, ko, cosign,...