MiracleLinux 7 : python-2.7.5-94.0.3.el7.AXS7 (AXSA:2024-8926:48)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8926:48 advisory. CVE-2024-6232: fixed regular expressions that allowed excessive backtracking during tarfile.TarFile header parsing are vulnerable to ReDoS via...

MiracleLinux 7 : xorg-x11-server-1.20.4-24.el7 (AXSA:2023-6568:06)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6568:06 advisory. xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty CVE-2023-5367 Tenable has extracted the preceding description block...

MiracleLinux 7 : linux-firmware-20200421-83.git78c0348.el7 (AXSA:2024-8388:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8388:06 advisory. hw: intel: Protection mechanism failure for some IntelR PROSet/Wireless WiFi CVE-2022-46329 hw: intel: Improper access control for some IntelR...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.302.b08-0.el7 (AXSA:2021-2241:09)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2241:09 advisory. OpenJDK: Incorrect comparison during range check elimination Hotspot, 8264066 CVE-2021-2388 OpenJDK: FTP PASV command response can cause FtpClient t...

MiracleLinux 7 : fwupdate-12-6.0.1.el7.AXS7 (AXSA:2020-255:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-255:01 advisory. grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process CVE-2020-10713 grub2: grubmalloc does not validate allocation...

MiracleLinux 7 : net-snmp-5.7.2-48.el7 (AXSA:2020-4533:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4533:02 advisory. net-snmp: NULL pointer exception in snmpoidcompare in snmplib/snmpapi.c resulting in a denial of service CVE-2018-18066 Tenable has extracted the preceding...

MiracleLinux 7 : gstreamer-plugins-bad-free-0.10.23-24.el7 (AXSA:2024-7443:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-7443:01 advisory. gstreamer: MXF demuxer use-after-free vulnerability CVE-2023-44446 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : ipa-4.6.8-5.4.0.1.el7.AXS7 (AXSA:2021-1615:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1615:01 advisory. jquery: Passing HTML containing elements to manipulation methods could result in untrusted code execution CVE-2020-11023 Tenable has extracted the preceding...

MiracleLinux 7 : firefox-91.9.1-1.0.1.el7.AXS7 (AXSA:2022-3195:12)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3195:12 advisory. Mozilla: Untrusted input used in JavaScript object indexing, leading to prototype pollution CVE-2022-1529 Mozilla: Prototype pollution in Top-Level...

MiracleLinux 7 : python-pillow-2.0.0-23.gitd1c6db8.el7 (AXSA:2022-3076:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3076:01 advisory. python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions CVE-2022-22817 python-pillow: buffer over-read during initialization of...

MiracleLinux 7 : SDL-1.2.15-17.el7 (AXSA:2020-602:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-602:02 advisory. SDL: buffer over-read in IMAADPCMnibble in audio/SDLwave.c CVE-2019-7572 SDL: heap-based buffer overflow in function MSADPCMdecode in audio/SDLwave.c...

MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.2.el7.AXS7 (AXSA:2024-8820:28)

"The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8820:28 advisory. net: ice: Fix potential NULL pointer dereference in icebridgesetlink CVE-2024-26855 tty: Fix out-of-bound vmalloc access in imageblit CVE-2021-4738...

MiracleLinux 7 : poppler-0.26.5-43.1.0.1.el7.AXS7 (AXSA:2024-8643:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8643:05 advisory. CVE-2022-38784: fix integer overflow in JBIG2 decoder CVEs: CVE-2022-38784 Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2...

MiracleLinux 7 : rh-nodejs12-nodejs-12.21.0-1.el7 (AXSA:2021-1589:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1589:01 advisory. nodejs: HTTP2 'unknownProtocol' cause DoS by resource exhaustion CVE-2021-22883 nodejs: DNS rebinding in --inspect CVE-2021-22884 Tenable has...

MiracleLinux 7 : kernel-3.10.0-1160.76.1.el7 (AXSA:2022-3725:11)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3725:11 advisory. Incomplete cleanup of multi-core shared buffers aka SBDR CVE-2022-21123 Incomplete cleanup of microarchitectural fill buffers aka SBDS CVE-2022-2112...

MiracleLinux 7 : linux-firmware-20200421-81.git78c0348.el7 (AXSA:2023-6589:09)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6589:09 advisory. hw amd: Return Address Predictor vulnerability leading to information disclosure CVE-2023-20569 hw: amd: Cross-Process Information Leak CVE-2023-205...

MiracleLinux 7 : gtk3-3.22.30-8.0.1.el7.AXS7 (AXSA:2024-8937:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8937:02 advisory. CVE-2024-6655: fix loading library from unstrusted search path CVEs: CVE-2024-6655 A flaw was found in the GTK library. Under certain conditions, it is...

MiracleLinux 7 : rh-postgresql12-postgresql-12.4-1.0.1.el7.AXS7 (AXSA:2020-947:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-947:01 advisory. postgresql: Uncontrolled search path element in logical replication CVE-2020-14349 postgresql: Uncontrolled search path element in CREATE EXTENSION...

MiracleLinux 7 : linux-firmware-20200421-82.git78c0348.el7 (AXSA:2024-7507:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7507:02 advisory. RCVE-2023-20592 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that Nessus has not tested for...

MiracleLinux 7 : ntp-4.2.6p5-29.2.0.1.el7.AXS7 (AXSA:2020-199:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-199:01 advisory. ntp: ntpd using highly predictable transmit timestamps could result in time change or DoS CVE-2020-13817 ntp: DoS on client ntpd using server mode...