Linux Distros Unpatched Vulnerability : CVE-2024-27064

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix a memory leak in nftablesupdchain If nftnetdevregisterhooks fails,...

SUSE-SU-2025:02449-1 Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002322 fixes several issues. The following security issues were fixed: - CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. - CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. - CVE-2024-53173:...

ALSA-2025:9304 Important: xorg-x11-server-Xwayland security update

Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175 xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests...

Alibaba Cloud Linux 3 : 0102: freeglut (ALINUX3-SA-2024:0102)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0102 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-24258: freeglut 3.4.0 was...

Oracle Linux 7 : libxslt (ELSA-2025-3612)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-3612 advisory. - Fix CVE-2024-55549 issue due to memory leak Orabug: 37795485 Tenable has extracted the preceding description block directly from the Oracle Linux...

Amazon Linux 2 : kernel (ALAS-2025-2800)

The version of kernel installed on the remote host is prior to 4.14.355-275.603. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2800 advisory. In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in smb2reconnectserver...

Security Bulletin: Multiple vulnerabilities in nodejs affect IBM Business Automation Workflow Configuration Editor (nodejs January security release)

Summary IBM Business Automation Workflow Configuration Editor repackages a nodejs runtime and multiple application level models. Vulnerabilities have been reported for the runtime and some modules.. Vulnerability Details CVEID:CVE-2025-23083 DESCRIPTION: With the aid of the diagnosticschannel...

Linux Distros Unpatched Vulnerability : CVE-2023-45666

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - stbimage is a single file MIT licensed library for processing images. It may look like stbiloadgifmain doesn't give guarantees about the content of output value...

Linux Distros Unpatched Vulnerability : CVE-2024-56775

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix handling of plane refcount Why The mechanism to backup and restore plane states doesn't maintain refcount, which can cause issues if the...

Linux Distros Unpatched Vulnerability : CVE-2023-7192

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak problem was found in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c in the Linux Kernel. This issue may allow a local attacker wit...

Linux Distros Unpatched Vulnerability : CVE-2021-47237

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: hamradio: fix memory leak in mkissclose My local syzbot instance hit memory leak in mkissopen1. The problem was in missing freenetdev in mkissclose. In...

Linux Distros Unpatched Vulnerability : CVE-2021-47365

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: afs: Fix page leak There's a loop in afsextendwriteback that adds extra pages to a write we...

ALSA-2025:1611 Important: nodejs:22 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083...

[SECURITY] [DLA 4033-1] libtar security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4033-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk January 28, 2025 https://wiki.debian.org/LTS -...

SUSE-SU-2024:4249-1 Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122216 fixes several issues. The following security issues were fixed: - CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. - CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks bsc1229273. - CVE-2024-35863: Fixed...

SUSE-SU-2023:1823-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 8 bsc1208480: Security fixes: - CVE-2023-21830: Fixed improper restrictions in CORBA deserialization bsc1207249. - CVE-2023-21835: Fixed handshake DoS attack against DTLS connections bsc1207246. -...

CVE-2022-2499

An issue has been discovered in GitLab EE affecting all versions starting from 13.10 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. GitLab's Jira integration has an insecure direct object reference vulnerability that may be exploited b...

OPENSUSE-SU-2022:0075-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 99.0.4844.51 boo1196641 CVE-2022-0789: Heap buffer overflow in ANGLE CVE-2022-0790: Use after free in Cast UI CVE-2022-0791: Use after free in Omnibox CVE-2022-0792: Out of bounds read in ANGLE CVE-2022-0793: Use after free in Views...

SUSE-SU-2021:14724-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3483: Fixed a use-after-free in nosy.c bsc1184393. - CVE-2021-30002: Fixed a memory leak for large arguments in videousercopy bsc1184120. -...

SUSE-SU-2020:2107-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-15780: A lockdown bypass for loading unsigned modules using ACPI table injection was fixed. bsc1173573 - CVE-2020-15393: Fixed a memory leak in...