MiracleLinux 7 : [security - medium] GNOME (AXSA:2019-3574:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3574:01 advisory. libsoup: Crash in soupcookiejar.c:getcookies on empty hostnames CVE-2018-12910 poppler: Infinite recursion in fofi/FoFiType1C.cc:FoFiType1C::cvtGlyp...

EUVD-2017-3205

Malware in sbrugna...

EUVD-2018-2803

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-10767

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a stack-based buffer over-read in calling GLib in the function gxpsimagesguesscontenttype of gxps-images.c in libgxps through 0.3.0 because it does not...

Linux Distros Unpatched Vulnerability : CVE-2018-10733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a heap-based buffer over-read in the function ftfontfacehash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of...

RHEL 7 : libgxps (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libgxps: NULL pointer dereference in the caselesshash function CVE-2017-11590 Note that Nessus has not tested for...

Oracle Linux 7 : GNOME (ELSA-2018-3140)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3140 advisory. - Backport upstream patch for CVE-2018-12910 - Crash in soupcookiejar.c: getcookies on empty hostnames - Security fix for CVE-2018-15120 - Fix crash wh...

K62506335: libgxps vulnerability CVE-2018-10733

Security Advisory Description There is a heap-based buffer over-read in the function ftfontfacehash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack. CVE-2018-10733 Impact There is no impact; F5 products are not affected by this vulnerabilit...

SUSE CVE-2018-10733

There is a heap-based buffer over-read in the function ftfontfacehash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack...

new packages: libgxps

An update is available for libgxps. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

Mageia: Security Advisory (MGASA-2019-0003)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Advisory ROSA-SA-2021-1872

Software: libgxps 0.3.0 OS: Cobalt 7.9 CVE-ID: CVE-2018-10733 CVE-Crit: MEDIUM CVE-DESC: There is a heap-based buffer overflow in the ftfontfacehash function of the gxps-fonts.c file in libgxps before version 0.3.0. The input created will result in a remote denial of service attack. CVE-STATUS:...

SUSE: Security Advisory (SUSE-SU-2019:0720-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:1687-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : libgxps (SUSE-SU-2020:1687-1)

This update for libgxps fixes the following issues : CVE-2018-10733: Fixed a heap-based buffer over-read issue in ftfontfacehash bsc1092125. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

SUSE-SU-2020:1687-1 Security update for libgxps

This update for libgxps fixes the following issues: - CVE-2018-10733: Fixed a heap-based buffer over-read issue in ftfontfacehash bsc1092125...

Huawei EulerOS: Security Advisory for libgxps (EulerOS-SA-2020-1401)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : libgxps (EulerOS-SA-2020-1401)

According to the version of the libgxps package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - There is a stack-based buffer over-read in calling GLib in the function gxpsimagesguesscontenttype of gxps-images.c in libgxps through 0.3.0 becaus...

Huawei EulerOS: Security Advisory for libgxps (EulerOS-SA-2018-1402)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libgxps (EulerOS-SA-2019-2167)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...