9165 matches found
EulerOS Virtualization 3.0.1.0 : libxml2 (EulerOS-SA-2019-1559)
According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs...
EulerOS Virtualization 3.0.1.0 : scsi-target-utils (EulerOS-SA-2019-1427)
According to the versions of the scsi-target-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or...
EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1488)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel handled IRET faults during the processing of NMIs. An unprivileged, local user could...
Apache Tomcat 8.5.x < 8.5.15 Remote Error Page Manipulation
Binary data 700690.pasl...
EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1500)
According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The IPv6 DCCP implementation in the Linux kernel mishandles inheritance, which allows local users to cause a denial of...
EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1486)
According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was found that the parserockridgeinodeinternal function of the Linux kernel's ISOFS implementation did not correctl...
EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1485)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel's Crypto subsystem handled automatic loading of kernel modules. A local user could u...
PT-2019-12523
Name of the Vulnerable Software and Affected Versions golang.org/x/crypto versions before v0.0.0-20190320223903-b7391e95e576 Description A flaw was found in the amd64 implementation of the golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa packages. If more than 256 GiB of keystrea...
Deployment Diversity for DNS Resiliency
Consider Addressing Delegation Servers with Varying Network Routes Written by: Jim Gilbert and Barry Greene Don't Forget DNS Similar to diverse workforces performing at a higher level, diverse network service deployments perform at a higher level that is increasingly important as the Internet...
Fedora Update for createrepo_c FEDORA-2019-1fccede810
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Design/Logic Flaw
A vulnerability in the implementation of the Lightweight Directory Access Protocol LDAP feature in Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial ...
Unauthenticated Access
Java SE and Java SE Embedded are vulnerable to unauthenticated access attacks. A remote user can exploit a flaw in the DSA implementation in the Libraries component of OpenJDK. The attacker may then be able to modify data on the target system and gain elevated privileges...
Denial Of Service (DoS)
Linux kernel is vulnerable to denial of serviceDoS attacks. A race condition flaw occurs in the ioctlsendfib function in the Linux kernel's aacraid implementation. This allows a local user to cause out-of-bound access and crash the system by changing a certain size value...
User-After-Free
firefox is vulnerable touse-after-free vulnerability. The vulnerability exists in the nsFrameManager::CaptureFrameState function and remote attackers can execute arbitrary code by leveraging improper interaction between restyling and the Web Animations model implementation...
Denial Of Service (DoS)
kernel is vulnerable to denial of service. It was found that the Linux kernel's keyring implementation would leak memory when adding a key to a keyring via the addkey function. A local attacker could use this flaw to exhaust all available memory on the system...
Sandbox Protection Bypass
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...
Sandbox Protection Bypass
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...
Sandbox Protection Bypass
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...
Sandbox Protection Bypass
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...
Privilege Escalation
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws were discovered in the Libraries, 2D, and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain...