MiracleLinux 9 : java-11-openjdk-11.0.20.0.8-2.el9.ML.1 (AXSA:2023-6266:17)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6266:17 advisory. OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 OpenJDK: improper...

Linux Distros Unpatched Vulnerability : CVE-2015-9274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HarfBuzz before 1.0.4 allows remote attackers to cause a denial of service invalid read of two bytes and application crash because of GPOS and GSUB table...

Medium: harfbuzz

Issue Overview: HarfBuzz 2.9.0 has an out-of-bounds write in hbbitsetinvertiblet::set called from hbsparsesett::set and hbsetcopy. CVE-2021-45931 Affected Packages: harfbuzz Issue Correction: Run dnf update harfbuzz --releasever 2023.0.20230322 or dnf update --advisory ALAS2023-2023-036...

PT-2021-24320 · Harfbuzz · Harfbuzz

Name of the Vulnerable Software and Affected Versions: HarfBuzz version 2.9.0 Description: The issue is related to an out-of-bounds write in hb bit set invertible t::set, which is called from hb sparseset t::set and hb set copy. Recommendations: For HarfBuzz version 2.9.0, at the moment, there is...