110 matches found
Fedora 36 : mingw-binutils (2023-d044484038)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-d044484038 advisory. Backport patch for CVE-2023-25587. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...
Debian dla-3336 : node-url-parse - security update
The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3336 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3336-1 [email protected]...
Fedora 37 : clamav (2023-d686b8d48f)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-d686b8d48f advisory. ClamAV 0.103.8 is a critical patch release with the following fixes: CVE-2023-20032: Fixed a possible remote code execution vulnerability in the HFS...
openSUSE 15 Security Update : opera (openSUSE-SU-2023:0044-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0044-1 advisory. - Use after free in WebTransport in Google Chrome prior to 109.0.5414.119 allowed a remote attacker to potentially exploit heap corruption via a...
RHEL 7 : rh-nodejs12-nodejs (RHSA-2020:0602)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0602 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The...
SUSE SLES15 Security Update : ca-certificates-mozilla (SUSE-SU-2023:0003-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0003-1 advisory. - Updated to 2.60 state of Mozilla SSL root CAs bsc1206622 Removed CAs: - Global Chambersign Root - EC-ACC - Network Solutions Certificate...
Fedora 36 : firefox (2022-2321894a60)
The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-2321894a60 advisory. - New upstream version 107.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not teste...
Oracle Linux 7 : squid (ELSA-2022-22254)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-22254 advisory. - 7:4.11-3.0.1 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...
Malicious code in e2e-test-repo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6572edea50875b7a4383ee4b7dbed53e89120ed815f6699c7033f43c636fc189 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in slg-shared-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dbd3031f472625754de58e128a37c5fd4d5784d9e57203f7a82ce8460e26b65 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
RHEL 8 : thunderbird (RHSA-2022:4770)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:4770 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.9.1. Security Fixes: Mozilla:...
SUSE SLES12 Security Update : openldap2 (SUSE-SU-2022:1685-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:1685-1 advisory. - CVE-2022-29155: Fixed SQL injection in back-sql bsc1199240. Tenable has extracted the preceding description block directly from the SUSE...
RHEL 8 : firefox (RHSA-2022:0816)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0816 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...
RHEL 8 : firefox (RHSA-2022:0132)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0132 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...
Fedora 35 : firefox (2021-60aef08c1b)
The remote Fedora 35 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-60aef08c1b advisory. - - New upstream update 93.0 - Fixed NSS package dependency NSS 3.70 ---- - New upstream release 93.0 FEDORA-2021-60aef08c1b Note that Nessus has not tested...
openSUSE 15 Security Update : opera (openSUSE-SU-2021:0949-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:0949-1 advisory. - Use after free in BFCache in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a...
Fedora 33 : ansible (2021-e9478617ae)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-e9478617ae advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C...
Fedora 33 : python-django (2021-5329c680f7)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-5329c680f7 advisory. - In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.1.6, the django.utils.archive.extract method used by startapp --template and...
Fedora 33 : raptor2 (2021-8fe81dcf9f)
The remote Fedora 33 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2021-8fe81dcf9f advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. C Tenable Network Security, Inc...
CentOS 7 : unoconv (RHSA-2020:3944)
The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:3944 advisory. - The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local file inclusion. CVE-2019-17400 Note that Nessus has not tested for th...