MiracleLinux 8 : firefox-115.5.0-1.el8_9.ML.1 (AXSA:2024-7349:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-7349:01 advisory. Mozilla: Out-of-bound memory access in WebGL2 blitFramebuffer CVE-2023-6204 Mozilla: Use-after-free in MessagePort::Entangled CVE-2023-6205 Mozilla:...

MiracleLinux 8 : krb5-1.18.2-8.3.el8 (AXSA:2021-2428:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2428:02 advisory. krb5: Sending a request containing PA-ENCRYPTED-CHALLENGE padata element without using FAST could result in NULL dereference in KDC which leads to D...

MiracleLinux 7 : openjpeg2-2.3.1-3.el7 (AXSA:2020-4472:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4472:03 advisory. openjpeg: heap-based buffer overflow in pjt1clbldecodeprocessor in openjp2/t1.c CVE-2020-8112 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : liblouis-3.16.1-5.el9 (AXSA:2023-6663:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6663:01 advisory. liblouis: buffer overflow in loulogFile function at logginc.c CVE-2023-26767 liblouis: buffer overflow in lousetDataPath CVE-2023-26768 liblouis:...

MiracleLinux 8 : libtiff-4.0.9-27.el8 (AXSA:2023-5569:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5569:04 advisory. libtiff: out-of-bounds write in TIFFmemcpy in libtiff/tifunix.c CVE-2022-3627 libtiff: integer overflow in function TIFFReadRGBATileExt of the file...

MiracleLinux 8 : squid:4 (AXSA:2024-9024:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9024:01 advisory. squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638 squid: Denial of Service processing ESI respons...

MiracleLinux 9 : libguestfs-winsupport-9.2-2.el9 (AXSA:2023-6554:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6554:02 advisory. NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image CVE-2022-40284 Tenable has extracted the preceding...

MiracleLinux 8 : webkit2gtk3-2.38.5-1.el8.3.ML.1 (AXSA:2023-6171:13)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6171:13 advisory. WebKitGTK: Regression of CVE-2023-28205 fixes in the MIRACLE LINUX CVE-2023-2203 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : texlive-2012-45.20130427_r30134.el7 (AXSA:2020-4564:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4564:01 advisory. texlive: Buffer overflow in t1checkunusualcharstring function in writet1.c CVE-2018-17407 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : openssl-1.1.1k-7.el8 (AXSA:2022-3703:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3703:05 advisory. openssl: crehash script allows command injection CVE-2022-1292 openssl: the crehash script allows command injection CVE-2022-2068 openssl: AES OCB...

MiracleLinux 8 : sysstat-11.7.3-11.el8 (AXSA:2023-7101:05)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7101:05 advisory. sysstat: checkoverflow function can work incorrectly that lead to an overflow CVE-2023-33204 Tenable has extracted the preceding description block directly...

MiracleLinux 9 : libksba-1.5.1-5.el9 (AXSA:2022-4086:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4086:03 advisory. libksba: integer overflow may lead to remote code execution CVE-2022-3515 Tenable has extracted the preceding description block directly from the MiracleLinu...

MiracleLinux 8 : grafana-9.2.10-7.el8.ML.1 (AXSA:2023-7309:12)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7309:12 advisory. grafana: account takeover possible when using Azure AD OAuth CVE-2023-3128 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 7 : java-11-openjdk-11.0.20.0.8-1.el7 (AXSA:2023-6250:13)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6250:13 advisory. OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 OpenJDK: improper...

MiracleLinux 9 : python3.12-3.12.1-4.el9_4.4 (AXSA:2024-8949:08)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8949:08 advisory. python: cpython: tarfile: ReDos via excessive backtracking while parsing header values CVE-2024-6232 Tenable has extracted the preceding description block...

MiracleLinux 7 : rh-nodejs12-nodejs-12.21.0-1.el7 (AXSA:2021-1589:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1589:01 advisory. nodejs: HTTP2 'unknownProtocol' cause DoS by resource exhaustion CVE-2021-22883 nodejs: DNS rebinding in --inspect CVE-2021-22884 Tenable has...

MiracleLinux 9 : libreoffice-7.1.8.1-13.el9_4.ML.1 (AXSA:2024-8628:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8628:06 advisory. libreoffice: create a document which without prompt will execute scripts built-into LibreOffice on clicking a graphic CVE-2024-3044 Tenable has extracted the...

MiracleLinux 8 : python3-3.6.8-56.el8_9.2.ML.1 (AXSA:2024-7423:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7423:01 advisory. python: use after free in heappushpop of heapq module CVE-2022-48560 python: DoS when processing malformed Apple Property List files in binary forma...

MiracleLinux 9 : dotnet7.0-7.0.119-1.el9_4.ML.1 (AXSA:2024-8152:10)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8152:10 advisory. dotnet: stack buffer overrun in Double Parse CVE-2024-30045 dotnet: denial of service in ASP.NET Core due to deadlock in Http2OutputProducer.Stop...

MiracleLinux 8 : kernel-4.18.0-513.18.1.el8_9 (AXSA:2024-7551:07)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7551:07 advisory. kernel: net/sched: schhfsc UAF CVE-2023-4623 kernel: use-after-free in schqfq network scheduler CVE-2023-4921 kernel: inactive elements in...