ROS-20250828-05

The vulnerability of the GNU Tar archiver's implementation of the readheader function is related to the operation exceeding the boundaries of the buffer in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a Denial of service using a specially crafted inpu...

Linux Distros Unpatched Vulnerability : CVE-2025-47816

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxmlparseattributes out-of-bounds read, related to extra content at the...

Linux Distros Unpatched Vulnerability : CVE-2019-9211

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a reachable assertion abort in the function writelongstringmissingvalues in data/sys-file- writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to...

Linux Distros Unpatched Vulnerability : CVE-2017-10929

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The grubmemmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service heap-based buffer overflow and applicati...

Linux Distros Unpatched Vulnerability : CVE-2025-5278

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the...

Linux Distros Unpatched Vulnerability : CVE-2025-48188

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libpspp-core.a in GNU PSPP through 2.0.1 has an incorrect call from fillbuffer in data/encrypted-file.c to the Gnulib rijndaelDecrypt function, leading to a...

Linux Distros Unpatched Vulnerability : CVE-2017-14333

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The processversionsections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service Integer Overflow, and hang because of a...

Linux Distros Unpatched Vulnerability : CVE-2018-14346

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Libextractor before 1.7 has a stack-based buffer overflow in ecreadfilefunc unzip.c. CVE-2018-14346 Note that Nessus relies on the presence of the package a...

Linux Distros Unpatched Vulnerability : CVE-2019-15767

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmdload function in frontend/cmd.cc via a crafted chess position in an EPD file. CVE-2019-1576...

Linux Distros Unpatched Vulnerability : CVE-2021-46019

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash. CVE-2021-46019 Note...

Ubuntu 16.04 LTS : GNU binutils vulnerability (USN-7718-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7718-1 advisory. It was discovered that GNU binutils incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash. Tenable has extracted the...

Linux Distros Unpatched Vulnerability : CVE-2019-6456

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNU Recutils 1.8. There is a NULL pointer dereference in the function recfexsize in the file rec-fex.c of librec.a. CVE-2019-6456 Not...

Linux Distros Unpatched Vulnerability : CVE-2022-39028

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. In a typical...

CLSA-2025-1756233744 Update of gcc

Bump the release...

Linux Distros Unpatched Vulnerability : CVE-2019-6457

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNU Recutils 1.8. There is a memory leak in recaggregateregnew in rec- aggregate.c in librec.a. CVE-2019-6457 Note that Nessus relies...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : glibc (SUSE-SU-2025:02964-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02964-1 advisory. - CVE-2025-8058: Fixed double-free after allocation failure in regcomp. bsc1246965 Tenable has extracted...

Linux Distros Unpatched Vulnerability : CVE-2019-16395

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuCOBOL 2.2 has a stack-based buffer overflow in the cbname function in cobc/tree.c via crafted COBOL source code. CVE-2019-16395 Note that Nessus relies on th...

Linux Distros Unpatched Vulnerability : CVE-2019-1010025

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthreadcreated thread. The component is: glibc. NOTE...

Linux Distros Unpatched Vulnerability : CVE-2019-14528

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuCOBOL 2.2 has a heap-based buffer overflow in readliteral in cobc/scanner.l via crafted COBOL source code. CVE-2019-14528 Note that Nessus relies on the...

FreeBSD : Mozilla -- memory corruption in GMP (f42ee983-7eb0-11f0-ba14-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f42ee983-7eb0-11f0-ba14-b42e991fc52e advisory. [email protected] reports: An attacker was able to perform memory corruption in the GMP process whic...