Lucene search
K

723 matches found

Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.19 views

openSUSE Security Update : freeradius-server (openSUSE-2021-428)

This update for freeradius-server fixes the following issues : - move logrotate options into specific parts for each log as 'global' options will persist past and clobber global options in the main logrotate config bsc1180525 This update was imported from the SUSE:SLE-15-SP2:Update update project...

5.4AI score
Exploits0References1
Fedora
Fedora
added 2021/02/06 1:30 a.m.90 views

[SECURITY] Fedora 32 Update: python3-3.8.7-2.fc32

Python is an accessible, high-level, dynamically typed, interpreted program ming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3 package provides the "python3" executable: the...

9.8CVSS2.1AI score0.23293EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.31 views

CentOS 8 : jbig2dec (CESA-2020:2897)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2020:2897 advisory. - jbig2dec: heap-based buffer overflow in jbig2imagecompose in jbig2image.c CVE-2020-12268 Note that Nessus has not tested for this issue but has instead relied...

9.8CVSS8.5AI score0.02622EPSS
Exploits1References2
Gentoo Linux
Gentoo Linux
added 2021/01/25 12:0 a.m.108 views

glibc: Multiple vulnerabilities

Background glibc is a package that contains the GNU C library. Description Multiple vulnerabilities have been discovered in glibc. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workarou...

8.1CVSS2.8AI score0.05223EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/12/24 12:0 a.m.47 views

GLSA-202012-13 : OpenSSL: Denial of service

The remote host is affected by the vulnerability described in GLSA-202012-13 OpenSSL: Denial of service A NULL pointer dereference flaw was found in OpenSSL. Impact : A remote attacker, able to control the arguments of the GENERALNAMEcmp function in an application linked against OpenSSL, could...

5.9CVSS6.9AI score0.06968EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2020/12/22 12:0 a.m.49 views

Virtuozzo 6 : python / python-devel / python-libs / python-test / etc (VZLSA-2019-1467)

An update for python is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS7.2AI score0.08811EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2020/11/13 12:0 a.m.56 views

firefox security update

78.4.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Tue Nov 10 2020 [email protected] - 78.4.1-1 - Update to 78.4.1 - Filtering nss/nspr libs 78.4.0-3 -...

9.3CVSS1AI score0.42597EPSS
Exploits4
Gentoo Linux
Gentoo Linux
added 2020/11/03 12:0 a.m.33 views

KPMCore: Root privilege escalation

Background KPMcore, the KDE Partition Manager core, is a library for examining and modifying partitions, disk devices, and filesystems on a Linux system. It provides a unified programming interface over top of external system-manipulation tools. Description Improper checks on the D-Bus request...

7.8CVSS3AI score0.00422EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/11/02 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-2317)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.6AI score0.0642EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/02 12:0 a.m.16 views

Fedora 32 : 2:samba / krb5 (2020-939681213a)

KRB5 : - Cross-realm s4u fixes for samba 1836630 - Drop unnecessary conflict with openssl-libs = 3.0.0 - Unify kvno option documentation - Use systemctl reload to HUP the KDC during logrotate SAMBA : - Support S4U operations for Samba AD DC 1836630 - Fix lookup of users and groups when realm used...

5.5AI score
Exploits0References1
Oracle linux
Oracle linux
added 2020/10/22 12:0 a.m.104 views

java-11-openjdk security and bug fix update

1:11.0.9.11-0 - Update to jdk-11.0.9+11 - Update release notes for 11.0.9 release. - Add backport of JDK-8254177 to update to tzdata 2020b - Require tzdata 2020b due to resource changes in JDK-8254177 - Delay tzdata 2020b dependency until tzdata update has shipped. - This tarball is embargoed unt...

5.8CVSS6.1AI score0.03713EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for gperftools-libs (EulerOS-SA-2020-2190)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.01527EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.27 views

EulerOS Virtualization 3.0.2.2 : gperftools-libs (EulerOS-SA-2020-2190)

According to the version of the gperftools-libs package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Google gperftools 2.7 has a memory leak in mallocextension.cc, related to MallocExtension::Register and InitModule. NOTE: th...

7.5CVSS7.1AI score0.01527EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.53 views

EulerOS Virtualization for ARM 64 3.0.2.0 : samba (EulerOS-SA-2020-1952)

According to the versions of the samba packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The samba-libs package contains the libraries needed by programs that link against the SMB, RPC and other protocols...

7.8CVSS6.6AI score0.03874EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2020/08/10 8:54 a.m.16 views

ca-certificates bug fix and enhancement update

The ca-certificates package contains a set of Certificate Authority CA certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure PKI. Bug Fixes and Enhancements: Annual AlmaLinux 8 ca-certificates update 2020 to nss 3.53 for Firefox 78 BZ1849732 circular...

7AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2020/07/27 12:0 a.m.48 views

Mozilla Network Security Service (NSS): Information disclosure

Background The Mozilla Network Security Service NSS is a library implementing security features like SSL v.2/v.3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME and X.509 certificates. Description NSS was found to not always perform constant-time operations when working with DSA key material. Impa...

4.4CVSS2.2AI score0.00651EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.33 views

GLSA-202007-43 : TRE: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202007-43 TRE: Multiple vulnerabilities Multiple vulnerabilities have been discovered in TRE. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...

9.8CVSS8.3AI score0.03362EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/21 12:0 a.m.40 views

RHEL 8 : jbig2dec (RHSA-2020:3043)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3043 advisory. jbig2dec is a decoder implementation of the JBIG2 image compression format. Security Fixes: jbig2dec: heap-based buffer overflow in jbig2imagecompose...

9.8CVSS8.5AI score0.02622EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/06/10 12:0 a.m.26 views

GLSA-202006-01 : GnuTLS: Information disclosure

The remote host is affected by the vulnerability described in GLSA-202006-01 GnuTLS: Information disclosure A flaw was reported in the TLS session ticket key construction in GnuTLS. Impact : A remote attacker could recover previous conversations in TLS 1.2 and obtain sensitive information or...

7.4CVSS7.5AI score0.17507EPSS
Exploits3References2
Gentoo Linux
Gentoo Linux
added 2020/06/09 12:0 a.m.32 views

GnuTLS: Information disclosure

Background GnuTLS is an Open Source implementation of the TLS and SSL protocols. Description A flaw was reported in the TLS session ticket key construction in GnuTLS. Impact A remote attacker could recover previous conversations in TLS 1.2 and obtain sensitive information or conduct a...

7.4CVSS2.6AI score0.17507EPSS
Exploits3
Rows per page
Query Builder