Oracle Linux 6 : glibc (ELSA-2011-1526)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1526 advisory. - Report write error in addmnt even for cached streams 688980, CVE-2011-1089 Tenable has extracted the preceding description block directly from the...

Oracle Linux 5 : automake (ELSA-2010-0321)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2010-0321 advisory. 1.9.6-2.3 - increase delay in self checks - add delays in aclocal7 self check http://osdir.com/ml/sysutils.automake.bugs/2006-09/msg00012.html - preserve...

Oracle Linux 7 : mailman (ELSA-2020-1054)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-1054 advisory. - Resolves: 1599692 - Sanitize input on listinfo page CVE-2018-0618 Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 8 : patch (ELSA-2020-1852)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1852 advisory. - CVE-2019-13636 , Dont follow symlinks unless --follow-symlinks is given Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : gdb (ELSA-2019-3352)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-3352 advisory. 8.2-6.el8 - Fix yum vs dnf messaging for RHEL8 RH BZ 1666249: Add gdb-rhbz1666249-suggest-yum-instead-of-dnf.pattch Do not define DNFDEBUGINFOINSTALL for RHEL. ...

Firefox 117 Denial Of Service

This is barely a DoS, but since Chrome has explicit protection against it, we decided to disclose it. If firefox user visits a specially crafted page, then firefox may create many files in /Downloads, The user is notified about this in a small dialog, but there is no option to stop the downloads...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gsl (SUSE-SU-2023:3527-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3527-1 advisory. - A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU...

Huawei EulerOS: Security Advisory for emacs (EulerOS-SA-2023-2681)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 7 : binutils (ELSA-2019-2075)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2075 advisory. 2.27-41.base.0.1 - Complete the backport of upstream commit a5def14f1ca70e14d9433cb229c9369fa3051598 Add a test for R386GOT32/R386GOT32X IFUNC reloc...

GNU Binutils Denial of Service Vulnerability

GNU Binutils is a set of tools for working with binary files. A denial of service vulnerability exists in GNU Binutils, which stems from an issue with the displaydebugnames function in the readelf tool that can cause reachable assertions to fail. An attacker could exploit this vulnerability to...

GNU Scientific Library Buffer Overflow Vulnerability

GNU Scientific Library is an open source scientific computing library developed by the GNU organization , mainly used for C/C++ programs , providing mathematical operations , statistical analysis , linear algebra , etc. more than 1,000 functions , applicable to physical simulation , engineering...

GNU Binutils Denial of Service Vulnerability

GNU Binutils is a set of open source tools for working with binaries such as target files, executables, libraries, etc., mainly used in the areas of compilation, debugging, reverse engineering and so on. A denial of service vulnerability exists in GNU Binutils. An attacker can exploit this...

GNU Binutils parse_stab_struct_fields function memory leak vulnerability

GNU Binutils is a set of open source tools for working with binary files such as target files, executables, libraries, etc., mainly used in the areas of compilation, debugging, reverse engineering and so on. GNU Binutils suffers from a memory leak vulnerability that originates from a memory leak ...

GNU Binutils read_and_display_attr_value function null pointer dereference vulnerability

GNU Binutils is a set of tools for working with binary files. GNU Binutils suffers from a null pointer dereference vulnerability that stems from a null pointer dereference in the readanddisplayattrvalue function in the dwarf.c file in the readelf tool. An attacker could use this vulnerability to...

GNU Binutils stab_demangle_v3_arg function memory leak vulnerability

GNU Binutils is a set of tools for working with binary files. GNU Binutils has a memory leak vulnerability that originates from a memory leak in the stabdemanglev3arg function in the stabs.c file. An attacker could exploit this vulnerability to cause a denial of service...

GNU Binutils pr_function_type function memory leak vulnerability

GNU Binutils is a set of tools for working with binary files. GNU Binutils suffers from a memory leak vulnerability that originates from a memory leak in the prfunctiontype function in the prdbg.c file. An attacker could exploit this vulnerability to cause a denial of service...

GNU Binutils objdump Heap Buffer Overflow Vulnerability

GNU Binutils objdump is a command-line tool in the toolset that is primarily used to analyze and display detailed information about binary files e.g. executables, target files, static libraries, etc.. GNU Binutils objdump suffers from a heap buffer overflow vulnerability that stems from a boundar...

Gnu Binutils objdump Out-of-Bounds Read Vulnerability

Gnu Binutils objdump is a command-line tool in the GNU Binutils toolset that is mainly used to analyze binary files e.g., executables, target files, static libraries, etc. and display their detailed information. An out-of-bounds read vulnerability exists in Gnu Binutils objdump, which stems from ...

GNU Binutils make_tempname function denial of service vulnerability

GNU Binutils is a set of open source tools for working with binaries such as target files, executables, libraries, etc., mainly used in the areas of compilation, debugging, reverse engineering and so on. A denial of service vulnerability exists in GNU Binutils, which stems from a memory leak in t...

GNU Binutils objdump Denial of Service Vulnerability

GNU Binutils objdump is a command-line tool in the toolset that is primarily used to analyze and display detailed information about binary files e.g. executables, target files, static libraries, etc.. A denial of service vulnerability exists in GNU Binutils objdump, which originates from the...