Linux Distros Unpatched Vulnerability : CVE-2020-25666

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There are 4 places in HistogramCompare in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb...

Linux Distros Unpatched Vulnerability : CVE-2021-31162

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the standard library in Rust before 1.52.0, a double free can occur in the Vec::fromiter function if freeing the element panics. CVE-2021-31162 Note that...

Linux Distros Unpatched Vulnerability : CVE-2024-45801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It has been discovered that malicious HTML using special nesting...

Linux Distros Unpatched Vulnerability : CVE-2024-43834

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is...

Linux Distros Unpatched Vulnerability : CVE-2015-3253

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial o...

Linux Distros Unpatched Vulnerability : CVE-2021-20200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...

Linux Distros Unpatched Vulnerability : CVE-2016-6322

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Red Hat QuickStart Cloud Installer QCI uses world-readable permissions for /etc/qci/answers, which allows local users to obtain the root password for the deploy...

Linux Distros Unpatched Vulnerability : CVE-2019-3865

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in quay-2, where a stored XSS vulnerability has been found in the super user function of quay. Attackers are able to use the name fiel...

Linux Distros Unpatched Vulnerability : CVE-2018-4700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-4300. Reason: This candidate is a duplicate of CVE-2018-4300. Notes: All CVE users shoul...

Linux Distros Unpatched Vulnerability : CVE-2020-27216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2, and 11.0.0.alpha1 thru 11.0.0.beta2O, on Unix like systems, the system's...

Linux Distros Unpatched Vulnerability : CVE-2016-9401

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address. CVE-2016-9401 Note that Nessus relies on t...

Linux Distros Unpatched Vulnerability : CVE-2018-11683

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440...

Linux Distros Unpatched Vulnerability : CVE-2016-9559

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted image...

Linux Distros Unpatched Vulnerability : CVE-2020-14402

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings. CVE-2020-14402 Note that Nessus relies on...

Linux Distros Unpatched Vulnerability : CVE-2017-13050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki- rtr.c:rpkirtrpduprint. CVE-2017-13050 Note that Nessus relies on the presen...

Linux Distros Unpatched Vulnerability : CVE-2016-5321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service invalid read and crash via a crafted tiff image...

Linux Distros Unpatched Vulnerability : CVE-2016-9276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dwarfgetarangeslist function in dwarfarrange.c in Libdwarf before 20161124 allows remote attackers to cause a denial of service out-of-bounds read...

Linux Distros Unpatched Vulnerability : CVE-2018-17183

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to supply crafted PostScript to...

Linux Distros Unpatched Vulnerability : CVE-2019-3838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could...

Linux Distros Unpatched Vulnerability : CVE-2012-0217

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and...