1830 matches found
Fedora: Security Advisory (FEDORA-2024-4b0288e34f)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : python38-pip (ALASPYTHON3.8-2024-017)
The version of python38-pip installed on the remote host is prior to 21.0.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2PYTHON3.8-2024-017 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is...
Mageia: Security Advisory (MGASA-2024-0392)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libsoup (SUSE-SU-2024:4355-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4355-1 advisory. - CVE-2024-52530: Fixed HTTP request smuggling via stripping null bytes from the ends of header...
SUSE SLES15 Security Update : kernel (Live Patch 49 for SLE 15 SP2) (SUSE-SU-2024:4231-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4231-1 advisory. This update for the Linux Kernel 5.3.18-15020024194 fixes several issues. The following security issues were fixed: - CVE-2024-36904: tcp: Use...
kernel security update
4.18.0-553.32.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
GLSA-202412-13 : Spidermonkey: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202412-13 Spidermonkey: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Spidermonkey. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block...
Django 4.x < 4.2.17, 5.0.x < 5.0.10, 5.1.x < 5.1.4 Multiple Vulnerabilities - Linux
Django is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if descriptio...
GLSA-202412-11 : OATH Toolkit: Privilege Escalation
The remote host is affected by the vulnerability described in GLSA-202412-11 OATH Toolkit: Privilege Escalation A vulnerability has been discovered in OATH Toolkit. Please review the CVE identifier referenced below for details. Tenable has extracted the preceding description block directly from t...
GLSA-202412-06 : Mozilla Thunderbird: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202412-06 Mozilla Thunderbird: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding...
PT-2025-3662 · Linux · Linux Kernel
The vulnerable software is the Linux kernel. The issue arose from a regression in the kernel's memory management subsystem, specifically in the handling of write-sealed memfd mappings. The problem was introduced by a commit that moved a check for mapping writability before the shmem mmap hook was...
[SECURITY] [DSA 5818-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5818-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 24, 2024 https://www.debian.org/security/faq -...
Photon OS 3.0: Linux PHSA-2024-3.0-0804
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0804. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
UBUNTU-CVE-2024-53071
In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Be stricter about IO mapping flags The current panthordevicemmapio implementation has two issues: 1. For mapping DRMPANTHORUSERFLUSHIDMMIOOFFSET, panthordevicemmapio bails if VMWRITE is set, but does not clear...
Oracle Linux 9 : post (ELSA-2024-9243)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9243 advisory. 2:3.5.25-1 - New version Resolves: RHEL-20023 - Dropped upstreamed patches Tenable has extracted the preceding description block directly from the Oracle Linux...
Oracle Linux 8 : binutils (ELSA-2024-9689)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9689 advisory. 2.30-125.0.1 - Forward port Oracle patches from 2.30-125 Reviewed-by: Jose E. Marchesi Oracle history: Tenable has extracted the preceding description block...
GLSA-202411-08 : X.Org X server, XWayland: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202411-08 X.Org X server, XWayland: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in X.Org X server and XWayland. Please review the CVE identifiers referenced below for details. Tenable has extracted the...
SUSE SLED15: libpython3_12-1_0 / libpython3_12-1_0-32bit / python312 / etc (SUSE-SU-2024:3959-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3959-1 advisory. - CVE-2024-9287: Fixed quoted path names provided when creating a virtual environment bsc1232241. Bug...
Photon OS 5.0: Curl PHSA-2024-5.0-0392
An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0392. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
GLSA-202411-04 : EditorConfig core C library: arbitrary stack write
The remote host is affected by the vulnerability described in GLSA-202411-04 EditorConfig core C library: arbitrary stack write A vulnerability has been discovered in EditorConfig Core C library. Please review the CVE identifier referenced below for details. Tenable has extracted the preceding...