367221 matches found
Oracle Linux 9 : coreutils (ELSA-2026-28911)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-28911 advisory. 8.32-41.0.1 - clean up empty file if cp is failed Orabug 15973168 9.5-8 - CVE-2025-5278 - Fix Heap Buffer Under-Read in sort via Key Specification RHEL-180331...
SUSE SLES16 Security Update : LibVNCServer (SUSE-SU-2026:22190-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:22190-1 advisory. This update for LibVNCServer fixes the following issue - CVE-2026-44988: missing validation of rectangle width in tight gradient decoding c...
SUSE SLES16 Security Update : mozjs128 (SUSE-SU-2026:22210-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:22210-1 advisory. This update for mozjs128 fixes the following issue - CVE-2025-70103: libjxl: heap buffer overflow when hen processing crafted pbm-images du...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS : NSD vulnerabilities (USN-8474-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8474-1 advisory. It was discovered that NSD incorrectly handled APL resource records with an address length...
SUSE SLED15 / SLES15 Security Update : apache-commons-configuration2, apache-commons-text (SUSE-SU-2026:2642-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2642-1 advisory. This update for apache-commons-configuration2, apache-commons-text fixes the following issues - CVE-2026-45205:...
Debian dsa-6368 : pdns-backend-bind - security update
The remote Debian 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6368 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6368-1 [email protected] https://www.debian.org/security/ Moritz...
PT-2026-52920
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption Commit 60f030f7418d "iommu/vt-d: Avoid use of NULL after WARN ON ONCE" fixed a NULL pointer dereference in an unlikely situation partly. If dev pasid is not found ...
SUSE SLES15 Security Update : nodejs24 (SUSE-SU-2026:2633-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2633-1 advisory. This update for nodejs24 fixes the following issues Update to 24.17.0: - CVE-2026-2581: undici: Undici: Denial of Service due to...
Oracle Linux 9 : thunderbird (ELSA-2026-19348)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-19348 advisory. 140.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.11.0 - Add OpenELA debranding 140.11.0-1 - Update to 140.11.0 ESR...
AlmaLinux 9 : thunderbird (ALSA-2026:29940)
The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:29940 advisory. firefox: thunderbird: Sandbox escape in the DOM: Workers component CVE-2026-12294 firefox: thunderbird: Information disclosure, sandbox escape in the...
SUSE SLED15: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2026:2582-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2582-1 advisory. Update to Firefox 140.12.0 ESR MFSA 2026-58, bsc1268071: - CVE-2026-12289: Privilege escalation in the Graphic...
RockyLinux 9 : thunderbird (RLSA-2026:29940)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:29940 advisory. firefox: thunderbird: Sandbox escape in the DOM: Workers component CVE-2026-12294 firefox: thunderbird: Information disclosure, sandbox escape in the...
PT-2026-52946
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the pinconf generic parse dt pinmux function where it assumes the pinmux property is not empty when present. If the pinmux property is empty, the allocator returns a...
Oracle Linux 9 : mysql (ELSA-2026-23332)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-23332 advisory. 8.0.46-1 - Rebase to 8.0.46 8.0.45-2 - Revert to soft static allocation of MariaDB and MySQL sysusers.d files Tenable has extracted the preceding...
Fedora 44 : thunderbird (2026-cda0c20ce0)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-cda0c20ce0 advisory. Update to latest upstream version Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...
SUSE SLES16 Security Update : python-aiohttp (SUSE-SU-2026:22173-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:22173-1 advisory. This update for python-aiohttp fixes the following issues - CVE-2026-22815: insufficient header/trailer handling can cause a denia...
Debian dla-4650 : giflib-tools - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4650 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4650-1 [email protected]...
PT-2026-52922
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookup amd iommu iommu device register walks every device on the PCI bus via bus for each dev and calls amd iommu probe device for each. The inlined check device path computes the device's sbdf,...
Oracle Linux 9 : mysql:8.4 (ELSA-2026-25052)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-25052 advisory. mecab 0.996-3.4 - Bump version for package rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'CRB' repo - Resolves: 2182069...
PT-2026-52941
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the eip93 hmac setkey function where it incorrectly uses the CRYPTO ALG ASYNC mask when allocating a temporary ahash transform. Because EIP93 hash algorithms are...