NewStart CGSL CORE 5.05 / MAIN 5.05 : git Multiple Vulnerabilities (NS-SA-2020-0113)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has git packages installed that are affected by multiple vulnerabilities: - An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clone...

NewStart CGSL CORE 5.05 / MAIN 5.05 : xerces-c Vulnerability (NS-SA-2020-0114)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has xerces-c packages installed that are affected by a vulnerability: - The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This flaw has not been...

NewStart CGSL CORE 5.04 / MAIN 5.04 : zziplib Vulnerability (NS-SA-2020-0057)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has zziplib packages installed that are affected by a vulnerability: - Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function...

NewStart CGSL CORE 5.04 / MAIN 5.04 : httpd Multiple Vulnerabilities (NS-SA-2020-0066)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has httpd packages installed that are affected by multiple vulnerabilities: - A specially crafted request could have crashed the Apache HTTP Server prior to version 2.4.30, due to an out of bound access after a size limit is...

NewStart CGSL CORE 5.05 / MAIN 5.05 : ipa Multiple Vulnerabilities (NS-SA-2020-0111)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has ipa packages installed that are affected by multiple vulnerabilities: - A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way that FreeIPA'...

NewStart CGSL CORE 5.04 / MAIN 5.04 : advancecomp Multiple Vulnerabilities (NS-SA-2020-0069)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has advancecomp packages installed that are affected by multiple vulnerabilities: - An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function advpngunfilter8 in lib/png.c. It can be...

NewStart CGSL CORE 5.05 / MAIN 5.05 : evolution Vulnerability (NS-SA-2020-0092)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has evolution packages installed that are affected by a vulnerability: - GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a valid...

NewStart CGSL CORE 5.04 / MAIN 5.04 : libxml2 Multiple Vulnerabilities (NS-SA-2020-0060)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libxml2 packages installed that are affected by multiple vulnerabilities: - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of...

NewStart CGSL CORE 5.05 / MAIN 5.05 : doxygen Vulnerability (NS-SA-2020-0107)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has doxygen packages installed that are affected by a vulnerability: - Insufficient sanitization of the query parameter in templates/html/searchopensearch.php could lead to reflected cross-site scripting or iframe injection...

NewStart CGSL CORE 5.05 / MAIN 5.05 : ipmitool Vulnerability (NS-SA-2020-0116)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has ipmitool packages installed that are affected by a vulnerability: - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to...

NewStart CGSL CORE 5.05 / MAIN 5.05 : python-twisted-web Multiple Vulnerabilities (NS-SA-2020-0118)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has python-twisted-web packages installed that are affected by multiple vulnerabilities: - In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characte...

NewStart CGSL CORE 5.05 / MAIN 5.05 : php Multiple Vulnerabilities (NS-SA-2020-0090)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has php packages installed that are affected by multiple vulnerabilities: - In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HT...

NewStart CGSL CORE 5.04 / MAIN 5.04 : mutt Vulnerability (NS-SA-2020-0061)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has mutt packages installed that are affected by a vulnerability: - An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles .. directory traversal in a mailbox name. CVE-2018-14355 No...

NewStart CGSL CORE 5.04 / MAIN 5.04 : unbound Vulnerability (NS-SA-2020-0084)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has unbound packages installed that are affected by a vulnerability: - An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Vulnerable versions of Unboun...

NewStart CGSL CORE 5.05 / MAIN 5.05 : unzip Vulnerability (NS-SA-2020-0098)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has unzip packages installed that are affected by a vulnerability: - Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a better zip bomb issue...

NewStart CGSL CORE 5.04 / MAIN 5.04 : ipmitool Vulnerability (NS-SA-2020-0077)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has ipmitool packages installed that are affected by a vulnerability: - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to...

NewStart CGSL CORE 5.04 / MAIN 5.04 : freerdp Multiple Vulnerabilities (NS-SA-2020-0076)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has freerdp packages installed that are affected by multiple vulnerabilities: - libfreerdp/codec/planar.c in FreeRDP version 1.0 through 2.0.0-rc4 has an Out-of-bounds Write. CVE-2020-11521 - libfreerdp/codec/interleaved.c in...

NewStart CGSL CORE 5.04 / MAIN 5.04 : avahi Vulnerability (NS-SA-2020-0058)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has avahi packages installed that are affected by a vulnerability: - avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link, which allows remote...

NewStart CGSL CORE 5.05 / MAIN 5.05 : qt5-qtsvg Vulnerability (NS-SA-2020-0111)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has qt5-qtsvg packages installed that are affected by a vulnerability: - An issue was discovered in Qt before 5.11.3. A malformed SVG image causes a segmentation fault in qsvghandler.cpp. CVE-2018-19869 Note that Nessus has not...

NewStart CGSL CORE 5.05 / MAIN 5.05 : zsh Vulnerability (NS-SA-2020-0108)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has zsh packages installed that are affected by a vulnerability: - In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the...