367539 matches found
Fedora 44 : chromium (2026-504709cab7)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-504709cab7 advisory. chromium-149.0.7827.196 security release CVE-2026-13028: Use after free in WebGL CVE-2026-13032: Use after free in WebGL CVE-2026-13033: Out of boun...
Oracle Linux 9 : libxml2 (ELSA-2026-28254)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-28254 advisory. 2.9.13-14.1 - Fix CVE-2024-34459 RHEL-177882 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
RHEL 7 : poppler (RHSA-2026:30044)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:30044 advisory. Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Security Fixes: poppler: Integer overflow in Poppl...
SUSE SLES15: docker-stable / docker-stable-bash-completion / etc (SUSE-SU-2026:2579-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2579-1 advisory. - CVE-2026-33997: Fixed privilege validation bypass during plugin bsc1265907. - CVE-2026-34040: Fixed Authz zero length regression...
AlmaLinux 9 : python3.14 (ALSA-2026:28247)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:28247 advisory. python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open API CVE-2026-4786 python: Python: Cross-Site Scripting XSS...
SUSE SLES16: himmelblau / himmelblau-qr-greeter / himmelblau-sshd-config / etc (SUSE-SU-2026:22186-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:22186-1 advisory. This update for himmelblau fixes the following issue - CVE-2026-45108: authentication bypass vulnerability in the Device Authorization Gran...
Ubuntu 24.04 LTS / 25.10 : AMD Microcode vulnerabilities (USN-8475-1)
The remote Ubuntu 24.04 LTS / 25.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8475-1 advisory. Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Kpf, Stavros Volos, and Flavien Solt discovered that some AMD processors may allow an...
SUSE SLED15 / SLES15 Security Update : libinput (SUSE-SU-2026:2524-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2524-1 advisory. This update for libinput fixes the following issues - CVE-2026-50265,CVE-2026-50292: crafted uinput devices ca...
Fedora 43 : rsync (2026-a04e445b3f)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a04e445b3f advisory. New version 3.4.4 with multiple regression fixes. This update also fixes the following CVEs: CVE-2026-29518 CVE-2026-43617 CVE-2026-43618...
RHEL 9 : webkit2gtk3 (RHSA-2026:28147)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:28147 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: Processing maliciously...
SUSE SLES15 Security Update : libinput (SUSE-SU-2026:2529-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2529-1 advisory. This update for libinput fixes the following issues - CVE-2026-50265,CVE-2026-50292: crafted uinput devices can lead to local...
Fedora 43 : tinyproxy (2026-77f1ca9c8f)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-77f1ca9c8f advisory. Backport upstream fixes for CVE-2026-54387 and CVE-2026-54388. Tenable has extracted the preceding description block directly from the Fedora securi...
Debian dsa-6370 : xnest - security update
The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6370 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6370-1 [email protected] https://www.debian.org/securit...
SUSE SLED15 / SLES15 Security Update : python-PyJWT (SUSE-SU-2026:2626-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2626-1 advisory. This update for python-PyJWT fixes the following issues - CVE-2026-48522: PyJWKClient passes URI arguments...
Fedora 43 : nginx / nginx-mod-brotli / nginx-mod-fancyindex / etc (2026-9d7328702e)
The remote Fedora 43 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2026-9d7328702e advisory. nginx-mod-headers-more: - Rebuild for 1.30.3 nginx-mod-brotli: - Rebuild for 1.30.3 nginx-mod-vts: - Rebuild for 1.30.3 nginx-mod-modsecurity: -...
Oracle Linux 9 : mod_http2 (ELSA-2026-22551)
The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-22551 advisory. - Resolves: RHEL-182417 - modhttp2: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack CVE-2026-49975 Tenable has extracted the...
RHEL 10 : perl-IO-Compress (RHSA-2026:29941)
The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:29941 advisory. This distribution provides a Perl interface to allow reading and writing of compressed data created with the zlib and bzip2 libraries. IO-Compress...
SUSE SLED15 / SLES15 Security Update : python-pip (SUSE-SU-2026:2634-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2634-1 advisory. This update for python-pip fixes the following issues - CVE-2026-3219: pip doesn't reject concatenated ZIP...
Fedora 43 : openbao (2026-da7e499416)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-da7e499416 advisory. Update to upstream 2.5.5. Also fixes CVE-2026-55770, CVE-2026-55774, CVE-2026-55775, and CVE-2026-55776. Tenable has extracted the preceding...
RockyLinux 9 : thunderbird (RLSA-2026:29940)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:29940 advisory. firefox: thunderbird: Sandbox escape in the DOM: Workers component CVE-2026-12294 firefox: thunderbird: Information disclosure, sandbox escape in the...