DEBIAN-CVE-2023-4813

A flaw has been identified in glibc. In an uncommon situation, the gaihinet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with...

PT-2023-5294 · Gcc +3 · Gcc +3

Name of the Vulnerable Software and Affected Versions: GCC versions prior to the fixed version Description: A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-sized local variables in an...

GCC Security Vulnerabilities

GCC is a collection of GNU compilers. It is primarily used to compile the C and C++ languages. A security vulnerability exists in GCC, which stems from the presence of a buffer overflow that could lead to an uncontrolled loss of availability or further compromise confidentiality or integrity...

glibc Resource Management Error Vulnerability

glibc GNU C Library is a C standard library implemented by a GNU project of the GNU community. A resource management error vulnerability exists in glibc, which stems from the fact that the gaihinet function may use freed memory, causing the application to crash...

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-2752)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-2721)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-2803)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GNU Binutils Resource Management Error Vulnerability

GNU Binutils is a set of tools for working with binary files. A resource management error vulnerability exists in GNU Binutils, which stems from the function bfddwarf2findnearestlinewithalt in dwarf2.c containing an excessive memory consumption vulnerability that can be exploited by an attacker t...

Amazon Linux 2023 : indent (ALAS2023-2023-318)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-318 advisory. GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file. CVE-2023-40305 Tenable has extracted the preceding description block directly from the tested product...

[SECURITY] Fedora 37 Update: indent-2.2.13-4.fc37

Indent is a GNU program for beautifying C code, so that it is easier to read. Indent can also convert from one C writing style to a different one. Indent understands correct C syntax and tries to handle incorrect C syntax. Install the indent package if you are developing applications in C and you...

[SECURITY] Fedora 38 Update: indent-2.2.13-4.fc38

Indent is a GNU program for beautifying C code, so that it is easier to read. Indent can also convert from one C writing style to a different one. Indent understands correct C syntax and tries to handle incorrect C syntax. Install the indent package if you are developing applications in C and you...

Medium: indent

Issue Overview: GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file. CVE-2023-40305 Affected Packages: indent Issue Correction: Run dnf update indent --releasever 2023.1.20230906 or dnf update --advisory ALAS2023-2023-318 --releasever 2023.1.20230906 t...

Oracle Linux 8 : glibc (ELSA-2020-1828)

"The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1828 advisory. 2.28-101.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug:...

Oracle Linux 8 : mailman:2.1 (ELSA-2021-4826)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-4826 advisory. - Fix for CVE-2021-42096 - Fix for CVE-2021-42097 Tenable has extracted the preceding description block directly from the Oracle Linux security advisor...

Oracle Linux 7 : glibc (ELSA-2019-2118)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2118 advisory. - Mention CVE numbers in the .spec file for CVE-2015-8983 and CVE-2015-8984. - CVE-2016-10739: Reject trailing characters in getaddrinfo 1673465 Tenable has...

Fedora 37 : indent (2023-67d8bcb63c)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-67d8bcb63c advisory. This release fixes a heap buffer overwrite in searchbrace CVE-2023-40305 and a heap overread in lexi. Tenable has extracted the preceding descriptio...

Oracle Linux 7 : glibc (ELSA-2018-3092)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3092 advisory. - CVE-2017-16997: Correctly handle DTRPATH 1540480. - CVE-2018-11237: AVX-512 mempcpy for KNL buffer overflow 1579809 - CVE-2018-11236: Path length...

Oracle Linux 7 : patch (ELSA-2019-2033)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2019-2033 advisory. - Fixed CVE-2016-10713 - Out-of-bounds access in pchwriteline function - Fixed CVE-2018-6952 - Double free of memory Tenable has extracted the precedin...

Oracle Linux 8 : gcc (ELSA-2020-1864)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1864 advisory. - CVE-2018-12207 / Intel SKX102 OL8 gcc: Intel Mitigation for CVE: CVE-2018-12207 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 6 : glibc (ELSA-2011-1526)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1526 advisory. - Report write error in addmnt even for cached streams 688980, CVE-2011-1089 Tenable has extracted the preceding description block directly from the...