2121 matches found
CVE-2024-37017
asdcplib aka AS-DCP Lib 2.13.1 has a heap-based buffer over-read in ASDCP::TimedText::MXFReader::hReader::MDtoTimedTextTDesc in ASDCPTimedText.cpp in libasdcp.so...
CentOS 8 : xorg-x11-server-Xwayland (CESA-2024:3343)
The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2024:3343 advisory. - A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped...
CVE-2024-32616
HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Odtypeencodehelper in H5Odtype.c...
CVE-2024-32617
HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MMxstrdup in H5MM.c called from H5Genttolink in H5Glink.c...
CVE-2024-32617
HDF5 Library through 1.14.3 contains a heap-based buffer over-read caused by the unsafe use of strdup in H5MMxstrdup in H5MM.c called from H5Genttolink in H5Glink.c...
Rocky Linux 9 : libjpeg-turbo (RLSA-2024:2295)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:2295 advisory. - libjpeg-turbo version 2.0.90 has a heap-based buffer over-read 2 bytes in decompresssmoothdata in jdcoefct.c. CVE-2021-29390 Note that Nessus has not tested fo...
Rocky Linux 9 : tigervnc (RLSA-2024:2616)
The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:2616 advisory. - A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped leng...
RHEL 7 : libxml2 (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libxml2: Missing validation for external entities in xmlParsePEReference CVE-2017-7375 - libxml2:...
RHEL 8 : libsndfile (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libsndfile: heap-based buffer over-read at wav.c in wavwriteheader CVE-2018-19758 - An issue was discover...
RHEL 8 : discount (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - discount: heap-based buffer over-read via a crafted file CVE-2018-12495 - The mkdtrimline function in...
RHEL 7 : jbig2dec (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - jbig2dec: Integer overflow in jbig2buildhuffmantable allows OOB write CVE-2017-7975 - Artifex jbig2dec 0....
RHEL 8 : freexl (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - freexl: heap-based buffer over-read in the function readminibiffnextrecord CVE-2018-7439 - An issue was...
RHEL 7 : libjpeg-turbo (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libjpeg-turbo: Stack-based buffer overflow in the transform component CVE-2020-17541 - libjpeg-turbo 1.5....
RHEL 8 : elfutils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - elfutils: Double-free due to double decompression of sections in crafted ELF causes crash CVE-2018-16402 ...
RHEL 5 : sdl (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - SDL: heap-based buffer over-read in Map1toN in video/SDLpixels.c CVE-2019-7638 - SDL Simple DirectMedia...
RHEL 8 : sqlite (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c CVE-2019-9936 - In SQLite...
RHEL 6 : elfutils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - elfutils: eu-size cannot handle recursive ar files CVE-2018-18520 - elfutils: heap-based buffer over-read...
RHEL 7 : elfutils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - elfutils: elflint.c does not validate the number of sections and segments CVE-2017-7613 - elfutils: an...
RHEL 8 : imagemagick (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ImageMagick: Uninitialized variable in coders/mat.c:ReadMATImageV4 allows for memory corruption...
RHEL 5 : elfutils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - elfutils: eu-size cannot handle recursive ar files CVE-2018-18520 - elfutils: heap-based buffer over-read...