Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2020/04/15 12:0 a.m.16 views

OracleVM 3.3 : ipmitool (OVMSA-2020-0012)

The remote OracleVM system is missing necessary patches to address critical security updates : - Backport fix for CVE-2020-5208 - Fix missing return in ipmikontronoemmain - CID1261317 - rebase to latest stable upstream version - resolves: rhbz1253416 - remove the redundant OpenIMPI dependency -...

8.8CVSS7.8AI score0.0329EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2018/10/11 12:0 a.m.25 views

OracleVM 3.3 / 3.4 : nss (OVMSA-2018-0264)

The remote OracleVM system is missing necessary patches to address critical security updates : - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed - Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which...

5.9CVSS6.3AI score0.01496EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/07/12 12:0 a.m.63 views

OracleVM 3.3 : Unbreakable / etc (OVMSA-2018-0237)

The remote OracleVM system is missing necessary patches to address critical security updates : - dm: fix race between dmgetfromkobject and dmdestroy Hou Tao CVE-2017-18203 - drm: udl: Properly check framebuffer mmap offsets Greg Kroah-Hartman Orabug: 27986407 CVE-2018-8781 - kernel/exit.c: avoid...

7.8CVSS7.2AI score0.04252EPSS
Exploits18References23
Tenable Nessus
Tenable Nessus
added 2018/06/04 12:0 a.m.35 views

OracleVM 3.3 / 3.4 : procps (OVMSA-2018-0226)

The remote OracleVM system is missing necessary patches to address critical security updates : - vmstat: fix invalid CPU utilization stats after vCPU hot-plug/unplug Konrad Rzeszutek Wilk bug 18011019 - drop leftover assignment in fix for CVE-2018-1124 causing a severe regression - Resolves:...

9.8CVSS7AI score0.01993EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2018/01/31 12:0 a.m.40 views

OracleVM 3.3 : Unbreakable / etc (OVMSA-2018-0016) (Meltdown) (Spectre)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86: Add another set of MSR accessor functions Borislav Petkov Orabug: 27444923 CVE-2017-5753 - userns: prevent speculative execution Elena Reshetova Orabug: 27444923 CVE-2017-5753 - udf: prevent...

7.2CVSS7.6AI score0.93838EPSS
Exploits12References5
Tenable Nessus
Tenable Nessus
added 2017/11/08 12:0 a.m.81 views

OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0168)

The remote OracleVM system is missing necessary patches to address critical security updates : - nvme: Drop nvmeq-qlock before dmapoolalloc, so as to prevent hard lockups Aruna Ramakrishna Orabug: 25409587 - nvme: Handle PM1725 HIL reset Martin K. Petersen Orabug: 26277600 - char: lp: fix possibl...

7.8CVSS6.5AI score0.13378EPSS
Exploits12References11
Tenable Nessus
Tenable Nessus
added 2017/09/01 12:0 a.m.37 views

OracleVM 3.3 : xen (OVMSA-2017-0148)

The remote OracleVM system is missing necessary patches to address critical security updates : - From: Jan Beulich Subject: gnttab: correct pin status fixup for copy Regardless of copy operations only setting GNTPINhst, GNTPINdev also need to be taken into account when deciding whether to clear...

8.8CVSS6.9AI score0.00452EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/05/31 12:0 a.m.15 views

OracleVM 3.3 / 3.4 : nss (OVMSA-2017-0109)

The remote OracleVM system is missing necessary patches to address critical security updates : - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed - Fix zero-length record treatment for stream ciphers and SSLv2 - Include CKBI 2.14 and...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/03/23 12:0 a.m.17 views

OracleVM 3.3 / 3.4 : openjpeg (OVMSA-2017-0048)

The remote OracleVM system is missing necessary patches to address critical security updates : - Revert previous changes in patch for CVE-2016-5159 - Fix double free in patch for CVE-2016-5139 - Fix memory leaks and invalid read in ciobytein Related: 1419775 - Add two more allocation checks to...

8.8CVSS7AI score0.07114EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2017/02/13 12:0 a.m.42 views

OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0040)

The remote OracleVM system is missing necessary patches to address critical security updates : - crypto: algifhash - Only export and import on sockets with data Herbert Xu Orabug: 25417805 CVE-2016-8646 - USB: usbfs: fix potential infoleak in devio Kangjie Lu Orabug: 25462760 CVE-2016-4482 - net:...

7.5CVSS6.8AI score0.04671EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2017/01/16 12:0 a.m.43 views

OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0005)

The remote OracleVM system is missing necessary patches to address critical security updates : - net: avoid signed overflows for SOSND|RCVBUFFORCE Eric Dumazet Orabug: 25203623 CVE-2016-9793 - nvme: Limit command retries Ashok Vairavan Orabug: 25374794 - tcp: fix use after free in...

7.8CVSS7.2AI score0.11127EPSS
Exploits28References6
Tenable Nessus
Tenable Nessus
added 2016/12/07 12:0 a.m.31 views

OracleVM 3.3 / 3.4 : sudo (OVMSA-2016-0170)

The remote OracleVM system is missing necessary patches to address critical security updates : - Update noexec syscall blacklist - Fixes CVE-2016-7032, CVE-2016-7076 Resolves: rhbz1391937 - RHEL-6.8 erratum - fixed a bug causing that non-root users can list privileges of other users Resolves:...

7.8CVSS7AI score0.00493EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/11/16 12:0 a.m.51 views

OracleVM 3.3 / 3.4 : policycoreutils (OVMSA-2016-0157)

The remote OracleVM system is missing necessary patches to address critical security updates : - Lazy unmount private, shared entryJoe Jinorabug 12560705 - sandbox: create a new session for sandboxed processes Resolves: CVE-2016-7545 - Update translations Resolves: rhbz819794 - Fix sepolgen test...

8.8CVSS7.8AI score0.00382EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/09/09 12:0 a.m.29 views

OracleVM 3.3 : xen (OVMSA-2016-0103)

The remote OracleVM system is missing necessary patches to address critical security updates : - From: Andrew Cooper Subject: x86/shadow: Avoid overflowing shctxt-segreg hvmgetsegreg does not perform a range check on its input segment, calls hvmgetsegmentregister and writes straight into...

8.2CVSS6.8AI score0.00402EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/08/03 12:0 a.m.25 views

OracleVM 3.3 / 3.4 : libtiff (OVMSA-2016-0093)

The remote OracleVM system is missing necessary patches to address critical security updates : - Update patch for CVE-2014-8127 - Related: 1335099 - Fix patches for CVE-2016-3990, CVE-2016-5320 - Related: 1335099 - Add patches for CVEs : - CVE-2016-3632 CVE-2016-3945 CVE-2016-3990 - CVE-2016-3991...

9.8CVSS6.9AI score0.13722EPSS
Exploits5References25
Tenable Nessus
Tenable Nessus
added 2016/06/01 12:0 a.m.272 views

OracleVM 3.3 / 3.4 : ntp (OVMSA-2016-0082)

The remote OracleVM system is missing necessary patches to address critical security updates : - don't allow spoofed packets to demobilize associations CVE-2015-7979, CVE-2016-1547 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config...

7.5CVSS6.6AI score0.15081EPSS
Exploits7References22
Tenable Nessus
Tenable Nessus
added 2016/05/09 12:0 a.m.35 views

OracleVM 3.3 : kernel-uek (OVMSA-2016-0046)

The remote OracleVM system is missing necessary patches to address critical security updates : - skbuff: skbsegment: orphan frags before copying Dongli Zhang - RDS/IB: VRPC DELAY / OSS RECONNECT CAUSES 5 MINUTE STALL ON PORT FAILURE Venkat Venkatsubra Orabug: 22888920 - mlx4core: Introduce...

7.2CVSS7.4AI score0.01407EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2016/01/21 12:0 a.m.33 views

OracleVM 3.3 : kernel-uek (OVMSA-2016-0005)

The remote OracleVM system is missing necessary patches to address critical security updates : - KEYS: Fix keyring ref leak in joinsessionkeyring Yevgeny Pats Orabug: 22563965 CVE-2016-0728 - KEYS: Don't permit requestkey to construct a new keyring David Howells Orabug: 22373442 CVE-2015-7872 -...

7.8CVSS6.8AI score0.03646EPSS
Exploits14References3
Tenable Nessus
Tenable Nessus
added 2016/01/08 12:0 a.m.16 views

OracleVM 3.3 : nss (OVMSA-2016-0003)

The remote OracleVM system is missing necessary patches to address critical security updates : - Added nss-vendor.patch to change vendor - Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Resolves: Bug 1289881 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/12/08 12:0 a.m.33 views

OracleVM 3.3 : libxml2 (OVMSA-2015-0152)

The remote OracleVM system is missing necessary patches to address critical security updates : - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball - Fix a series of CVEs rhbz1286495 - CVE-2015-7941 Cleanup conditional section error handling -...

7.1CVSS7.5AI score0.0721EPSS
Exploits2References10
Rows per page
Query Builder