16955 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-18751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNU gettext 0.19.8. There is a double free in defaultaddmessage in read- catalog.c, related to an invalid free in pogramparse in...
Linux Distros Unpatched Vulnerability : CVE-2017-7301
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an aoutlinkaddsymbols function in bfd/aoutx.h that has an off-by-one...
Linux Distros Unpatched Vulnerability : CVE-2019-20433
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of...
Linux Distros Unpatched Vulnerability : CVE-2017-14729
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, do not ensure a unique PLT entry for...
Linux Distros Unpatched Vulnerability : CVE-2017-9750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - opcodes/rx-decode.opc in GNU Binutils 2.28 lacks bounds checks for certain scale arrays, which allows remote attackers to cause a denial of service buffer...
Linux Distros Unpatched Vulnerability : CVE-2017-18018
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file with a symlink during use of the POSIX -R -L options...
Linux Distros Unpatched Vulnerability : CVE-2017-8396
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc...
Linux Distros Unpatched Vulnerability : CVE-2018-18483
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getcount function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31, allows remote attackers to cause a denial of service malloc called...
Linux Distros Unpatched Vulnerability : CVE-2019-9070
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in dexpression1 in cp-demangle.c after many...
Linux Distros Unpatched Vulnerability : CVE-2016-4008
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The asn1extractderoctet function in lib/decoding.c in GNU Libtasn1 before 4.8, when used without the ASN1DECODEFLAGSTRICTDER flag, allows remote attackers to...
Linux Distros Unpatched Vulnerability : CVE-2016-7123
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site request forgery CSRF vulnerability in the admin web interface in GNU Mailman before 2.1.15 allows remote attackers to hijack the authentication of...
Linux Distros Unpatched Vulnerability : CVE-2014-8121
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DBLOOKUP in nssfiles/files-XXX.c in the Name Service Switch NSS in GNU C Library aka glibc or libc6 2.21 and earlier does not properly check if a file is open,...
Linux Distros Unpatched Vulnerability : CVE-2014-6271
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute...
Linux Distros Unpatched Vulnerability : CVE-2017-16997
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - elf/dl-load.c in the GNU C Library aka glibc or libc6 2.19 through 2.26 mishandles RPATH and RUNPATH containing $ORIGIN for a privileged setuid or ATSECURE...
Linux Distros Unpatched Vulnerability : CVE-2014-3422
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under...
Linux Distros Unpatched Vulnerability : CVE-2014-7169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows...
Linux Distros Unpatched Vulnerability : CVE-2017-12457
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bfdmakesectionwithflags function in section.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows...
Linux Distros Unpatched Vulnerability : CVE-2018-20483
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - setfilemetadata in xattr.c in GNU Wget before 1.20.1 stores a file's origin URL in the user.xdg.origin.url metadata attribute of the extended attributes of the...
Linux Distros Unpatched Vulnerability : CVE-2018-12699
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - finishstab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact, a...
Linux Distros Unpatched Vulnerability : CVE-2017-15938
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, miscalculates DWFORMrefaddr die refs in the case of a...