MiracleLinux 4 : glib2-2.28.8-10.0.1.AXS4 (AXSA:2021-1964:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1964:02 advisory. glib: integer overflow in gbytesnew function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits CVE-2021-27219 Tenable has extracted the...

MiracleLinux 4 : AXSA:2021-1624:05: thunderbird-78.9.0-3.0.1.AXS4 (AXSA_2021-1624_05)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA2021-162405 advisory. Mozilla: Texture upload into an unbound backing buffer resulted in an out-of-bound read CVE-2021-23981 Mozilla: Memory safety bugs fixed in Firefox 87...

MiracleLinux 4 : openslp-2.0.0-4.AXS4 (AXSA:2020-049:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-049:01 advisory. openslp: Heap-based buffer overflow in ProcessSrvRqst in slpdprocess.c leading to remote code execution CVE-2019-5544 CVE-2019-5544 OpenSLP as used in ESXi an...

MiracleLinux 4 : libldb-1.1.25-2.0.1.AXS4 (AXSA:2021-1702:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1702:03 advisory. samba: Out of bounds read in AD DC LDAP server CVE-2021-20277 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 4 : firefox-78.13.0-2.0.1.AXS4 (AXSA:2021-2377:24)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2377:24 advisory. Mozilla: Uninitialized memory in a canvas object could have led to memory corruption CVE-2021-29980 Mozilla: Incorrect instruction reordering during...

MiracleLinux 4 : squid34-3.4.14-15.0.1.AXS4 (AXSA:2021-1659:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1659:01 advisory. squid: improper input validation may allow a trusted client to perform HTTP request smuggling CVE-2020-25097 Tenable has extracted the preceding description...

MiracleLinux 4 : firefox-78.5.0-1.0.1.AXS4 (AXSA:2020-966:26)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-966:26 advisory. Mozilla: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code CVE-2020-26951 Mozilla: Memory safety bugs fixed i...

MiracleLinux 4 : thunderbird-78.10.0-1.0.1.AXS4 (AXSA:2021-1718:08)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1718:08 advisory. Mozilla: Out of bound write due to lazy initialization CVE-2021-23994 Mozilla: Use-after-free in Responsive Design Mode CVE-2021-23995 Mozilla: More...

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.506.6.0.1.AXS4 (AXSA:2020-078:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-078:02 advisory. QEMU: slirp: heap buffer overflow during packet reassembly CVE-2019-14378 QEMU: slirp: OOB buffer access while emulating tcp protocols in tcpemu...

MiracleLinux 4 : firefox-68.10.0-1.0.1.AXS4 (AXSA:2020-213:15)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-213:15 advisory. Mozilla: Information disclosure due to manipulated URL object CVE-2020-12418 Mozilla: Use-after-free in nsGlobalWindowInner CVE-2020-12419 Mozilla:...

MiracleLinux 4 : firefox-78.14.0-1.0.1.AXS4 (AXSA:2021-2418:27)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2418:27 advisory. Mozilla: Memory safety bugs fixed in Firefox 92, Firefox ESR 78.14 and Firefox ESR 91.1 CVE-2021-38493 Tenable has extracted the preceding description block...

MiracleLinux 4 : thunderbird-78.13.0-1.0.1.AXS4 (AXSA:2021-2374:16)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2374:16 advisory. Mozilla: Uninitialized memory in a canvas object could have led to memory corruption CVE-2021-29980 Mozilla: Incorrect instruction reordering during...

MiracleLinux 4 : firefox-78.4.1-1.0.1.AXS4 (AXSA:2020-926:24)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-926:24 advisory. Mozilla: Write side effects in MCallGetProperty opcode not accounted for CVE-2020-26950 Tenable has extracted the preceding description block directly from th...

MiracleLinux 4 : ImageMagick-6.7.2.7-6.0.1.AXS4 (AXSA:2021-1353:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1353:02 advisory. ImageMagick: Shell injection via PDF password could result in arbitrary code execution CVE-2020-29599 CVEs: CVE-2020-29599 Tenable has extracted the precedin...

MiracleLinux 4 : zsh-4.3.11-11.AXS4 (AXSA:2020-4504:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4504:01 advisory. zsh: insecure dropping of privileges when unsetting PRIVILEGED option CVE-2019-20044 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.242.b07-1.AXS4 (AXSA:2020-4437:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4437:02 advisory. OpenJDK: Use of unsafe RSA-MD5 checkum in Kerberos TGS Security, 8229951 CVE-2020-2601 OpenJDK: Serialization filter changes via jdk.serialFilter...

MiracleLinux 4 : postgresql-8.4.20-8.0.1.AXS4 (AXSA:2021-1754:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1754:02 advisory. postgresql: Reconnection can downgrade connection security settings CVE-2020-25694 postgresql: Multiple features escape security restricted operatio...

MiracleLinux 4 : freerdp-1.0.2-7.AXS4 (AXSA:2020-112:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-112:03 advisory. freerdp: Out-of-bounds write in cryptorsacommon in libfreerdp/crypto/crypto.c CVE-2020-13398 Tenable has extracted the preceding description block directly fr...

MiracleLinux 4 : thunderbird-68.5.0-1.AXS4 (AXSA:2020-4478:02)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-4478:02 advisory. Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 CVE-2020-6800 Mozilla: Out-of-bounds read when processing certain email message...

MiracleLinux 4 : tomcat6-6.0.24-114.AXS4 (AXSA:2020-4523:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4523:01 advisory. tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability CVE-2020-1938 Tenable has extracted the preceding description block directly from the MiracleLinu...