9 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-22423
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yt-dlp is a youtube-dl fork with additional features and fixes. The patch that addressed CVE-2023-40581 attempted to prevent RCE when using --exec with %q by...
Linux Distros Unpatched Vulnerability : CVE-2023-39352
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an invalid offset...
Linux Distros Unpatched Vulnerability : CVE-2023-7258
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service exists in Gvisor Sandbox where a bug in reference counting code in mount point tracking could lead to a panic, making it possible for an...
Linux Distros Unpatched Vulnerability : CVE-2023-31346
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests. CVE-2023-31346 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2022-2289
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0. CVE-2022-2289 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2019-12529
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the...
Open Security Group Advisory #6
List, In May, Open Security Group started a media player security audit to drive out defects in popular media player code with the hope of helping secure our networks, machines and users from malicious attackers. As the second stage of this project, I released an advisory on August 8th, 2004,...
Ayman Akt IRCIT 0.3.1 - Invite Message Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/4998/info IRCIT is a terminal based IRC client for Linux and Unix systems. IRCIT contains a remote buffer overflow vulnerability. When a INVITE message is received, the supplied from user data is copied into a fixed buffer of length MAXHOSTLEN. A...
SLA-17.Anaconda.txt
Synnergy Laboratories Advisory SLA-2000-17 NAME Anaconda Foundation Directory NULL byte vulnerability AFFECTED Linux/UNIX with Anaconda Foundation Directory SYNOPSIS Synnergy Labs has found a flaw within Anaconda Foundation Directory that allow s a user to successfully traverse the filesystem on ...