4433 matches found
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-1524)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : golang (EulerOS-SA-2023-1524)
According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header...
Fedora 36 : containernetworking-plugins (2023-e8c27ba884)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-e8c27ba884 advisory. Resolves: 2161274,2163068 - Rebuild for CVE-2022-41717 Tenable has extracted the preceding description block directly from the Fedora security...
Fedora 37 : pack (2023-2df9d60e4c)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-2df9d60e4c advisory. Security fix for CVE-2022-41717 ---- Resolves: 2161300 - set fortifylevel 3 Tenable has extracted the preceding description block directly from the...
Fedora 36 : pack (2023-0c354a3f9a)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-0c354a3f9a advisory. Security fix for CVE-2022-41717 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
Fedora 37 : containernetworking-plugins (2023-c0149844e2)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-c0149844e2 advisory. Resolves: 2161274, 2163068 - Rebuild for CVE-2022-41717 Tenable has extracted the preceding description block directly from the Fedora security...
Security Bulletin: Vulnerabilities in Golang Go and Java SE might affect IBM Spectrum Copy Data Management (CVE-2022-41717, CVE-2023-21830, CVE-2023-21835, CVE-2023-21843)
Summary Vulnerabilities in Golang Go and Java SE might affect IBM Spectrum Copy Data Management. Vulnerabilities include denial of service attacks, as described by the CVEs in the "Vulnerability Details" section. Vulnerability Details CVEID:CVE-2022-41717 DESCRIPTION: Golang Go is vulnerable to a...
Security Bulletin: CVE-2022-2879, CVE-2022-41715, CVE-2022-2880, CVE-2022-41717, CVE-2022-41716 may affect IBM CICS TX Advanced
Summary Multiple CVEs - CVE-2022-2879, CVE-2022-41715, CVE-2022-2880, CVE-2022-41717, CVE-2022-41716 may affect IBM CICS TX Advanced . IBM CICS TX Advanced has addressed the applicable CVEs. Relevant go related packages have been upgraded. Vulnerability Details CVEID:CVE-2022-2879 DESCRIPTION:...
Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform (collectd-libpod-stats) security update
An update for collectd-libpod-stats is now available for Red Hat OpenStack Platform. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.19 (SUSE-SU-2023:0733-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0733-1 advisory. - CVE-2022-41722: Fixed path traversal in filepath.Clean on Windows bsc1208269. - CVE-2022-41723...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : go1.20 (SUSE-SU-2023:0735-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0735-1 advisory. - Improvements to go1.x packaging spec: On Tumbleweed bootstrap with current default gcc13 and...
CVE-2022-41723
A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests...
Fedora 38 : golang-github-google-dap (2023-3dba09f630)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-3dba09f630 advisory. Fix missing update for golang-github-google-dap v0.7.0 for Fedora 38. Fixes CVE-2022-41717. Tenable has extracted the preceding description block directly fr...
Fedora 38 : containernetworking-plugins (2023-f4bd7ab2f7)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-f4bd7ab2f7 advisory. Resolves: 2161274, 2163068 - Rebuild for CVE-2022-41717 Tenable has extracted the preceding description block directly from the Fedora security...
Fedora 38 : pack (2023-5eca6a8326)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-5eca6a8326 advisory. Security fix for CVE-2022-41717 ---- Resolves: 2161300 - set fortifylevel 3 Tenable has extracted the preceding description block directly from the...
Fedora 38 : stargz-snapshotter (2023-62ce942e75)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-62ce942e75 advisory. Release of stargz snapshotter v0.14.2 https://github.com/containerd/stargz- snapshotter/releases/tag/v0.14.2 This release uses containerd v1.7.0-rc....
Debian: Security Advisory (DLA-3351-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Moderate: Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.27.1
Release of OpenShift Serverless 1.27.1 The References section contains CVE links providing detailed severity ratings for each vulnerability. Ratings are based on a Common Vulnerability Scoring System CVSS base score. Red Hat OpenShift Serverless Client kn 1.27.1 provides a CLI to interact with Re...
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-1442)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-1467)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...