136 matches found
AlmaLinux 9 : pam (ALSA-2024:11250)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:11250 advisory. pam: libpam: Libpam vulnerable to read hashed password CVE-2024-10041 Tenable has extracted the preceding description block directly from the AlmaLinux security...
Oracle Linux 9 : python3.11 (ELSA-2024-8374)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8374 advisory. 3.11.7-1.6 - Security fix for CVE-2024-6232 Resolves: RHEL-57411 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Oracle Linux 9 : fence-agents (ELSA-2024-6726)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6726 advisory. 4.10.0-62.5 - bundled setuptools: fix CVE-2024-6345 Resolves: RHEL-49657 Tenable has extracted the preceding description block directly from the Oracle Linux...
Oracle Linux 9 : buildah (ELSA-2024-4371)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-4371 advisory. - rebuild for CVE-2024-1394 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
Rocky Linux 9 : fence-agents (RLSA-2024:3820)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:3820 advisory. jinja2: accepts keys containing non-attribute characters CVE-2024-34064 Tenable has extracted the preceding description block directly from the Rocky Linux...
Oracle Linux 9 : less (ELSA-2024-3513)
The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-3513 advisory. - Fix CVE-2024-32487 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...
RHEL 7 : rh-maven35-jackson-databind (RHSA-2019:2743)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:2743 advisory. The jackson-databind package provides general data-binding functionality for Jackson, which works on top of Jackson core streaming API. Security Fixe...
Amazon Linux 2023 : vim-common, vim-data, vim-default-editor (ALAS2023-2024-536)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-536 advisory. Vim before 9.0.2142 has a stack-based buffer overflow because didsetlangmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions. CVE-2024-22667 Tenab...
Oracle Linux 8 : nss (ELSA-2024-0105)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0105 advisory. 3.90.0-4 - Fix expired certs in tests - Fix CVE-2023-5388 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...
RHEL 8 : gnutls (RHSA-2024:0155)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0155 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : strongswan (SUSE-SU-2023:4529-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4529-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's...
Amazon Linux 2023 : vim-common, vim-data, vim-default-editor (ALAS2023-2023-403)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-403 advisory. NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960. CVE-2023-5441 Use After Free in GitHub repository vim/vim prior to v9.0.2010...
openSUSE 15 Security Update : python-bugzilla (openSUSE-SU-2023:0334-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2023:0334-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...
Ubuntu 16.04 ESM : libtorrent vulnerability (USN-4790-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4790-1 advisory. It was discovered that libtorrent incorrectly handled chunked headers. A remote attacker could possibly use this to cause a crash resulting in a denial of service...
Amazon Linux 2 : thunderbird (ALAS-2023-2294)
The version of thunderbird installed on the remote host is prior to 102.15.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2294 advisory. VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. CVE-2023-44488 Tenable has extracted...
Oracle Linux 9 : flac (ELSA-2023-5048)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-5048 advisory. 1.3.3-10.el92.1 - don't free memory that is still used after realloc error CVE-2020-22219 Tenable has extracted the preceding description block directly from th...
Amazon Linux 2023 : file, file-devel, file-libs (ALAS2023-2023-333)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-333 advisory. File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: File is the name of an Open Source project. CVE-2022-48554 Tenable has extracted the preceding description block...
Oracle Linux 7 : realmd (ELSA-2015-2184)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-2184 advisory. 0.16.1-5 - Revert 0.16.1-4 - Use samba by default - Resolves: rhbz1271618 0.16.1-4 - Fix regressions in 0.16.x releases - Resolves: rhbz1258745 - Resolves:...
RHEL 7 : kpatch-patch (RHSA-2023:4834)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4834 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...
Amazon Linux 2 : avahi (ALAS-2023-2175)
The version of avahi installed on the remote host is prior to 0.6.31-20. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2175 advisory. A reachable assertion was found in avahidnspacketappendrecord. CVE-2023-38469 A reachable assertion was found in...