Amazon Linux 2023 : memcached, memcached-devel, memcached-selinux (ALAS2023-2023-449)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-449 advisory. In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there are many spaces after the get substring. CVE-2023-46852 In Memcached before 1.6.22...

Amazon Linux 2 : java-1.8.0-amazon-corretto (ALASCORRETTO8-2022-003)

The version of java-1.8.0-amazon-corretto installed on the remote host is prior to 1.8.0342.b07-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2CORRETTO8-2022-003 advisory. Generated code produced by C1 may leak a package-private class to a class from a differe...

[SECURITY] Fedora 10 Update: libnasl-2.2.11-3.fc10

NASL is a scripting language designed for the Nessus security scanner. Its aim is to allow anyone to write a test for a given security hole in a few minutes, to allow people to share their tests without having to worry about their operating system, and to guarantee everyone that a NASL script can...

USN-279-1: libnasl/nessus vulnerability

Jayesh KS discovered that the naslsplit function in the NASL Nessus Attack Scripting Language library did not check for a zero-length separator argument, which lead to an invalid memory allocation. This library is primarily used in the Nessus security scanner; a remote attacker could exploit this...