6646 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-45098
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Suricata before 6.0.4. It is possible to bypass/evade any HTTP-based signature by faking an RST TCP packet with random TCP options of...
Linux Distros Unpatched Vulnerability : CVE-2021-40942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GPAC MP4Box v1.1.0, there is a heap-buffer-overflow in the function filterparsedynargs function in filtercore/filter.c:1454, as demonstrated by GPAC. This ca...
Linux Distros Unpatched Vulnerability : CVE-2023-51779
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btsockrecvmsg in net/bluetooth/afbluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a btsockioctl race condition. CVE-2023-51779 Note...
Linux Distros Unpatched Vulnerability : CVE-2022-43705
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introduced in Botan 1.11.34 November 2016...
Linux Distros Unpatched Vulnerability : CVE-2023-6277
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen API may allow a remote attacker to cause a denial of service via a craft inp...
Linux Distros Unpatched Vulnerability : CVE-2021-31229
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxmlinternaldtd performs incorrect memory handling while parsing crafted XML files, which...
Linux Distros Unpatched Vulnerability : CVE-2024-3772
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Regular expression denial of service in Pydanic 2.4.0, 1.10.13 allows remote attackers to cause denial of service via a crafted email string. CVE-2024-3772 Note...
Linux Distros Unpatched Vulnerability : CVE-2021-32610
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ArchiveTar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. CVE-2021-32610 Note...
Linux Distros Unpatched Vulnerability : CVE-2022-48766
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Wrap dcn301calculatewmanddlg for FPU. Mirrors the logic for dcn30. Cue lots of WARNs and some kernel panics without this fix. CVE-2022-48766 No...
Linux Distros Unpatched Vulnerability : CVE-2022-33981
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating...
Linux Distros Unpatched Vulnerability : CVE-2021-41715
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379. CVE-2021-41715 Note that Nessus relies on the presence of the package as reported ...
Linux Distros Unpatched Vulnerability : CVE-2023-31622
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the sqlcmakepolicytrig component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
Linux Distros Unpatched Vulnerability : CVE-2023-31608
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the artmdivint component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
Linux Distros Unpatched Vulnerability : CVE-2020-36309
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ngxhttpluamodule aka lua-nginx-module before 0.10.16 in OpenResty allows unsafe characters in an argument when using the API to mutate a URI, or a request or...
Linux Distros Unpatched Vulnerability : CVE-2021-46907
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. CVE-2021-46907 Note that Nessus relies on the presence of the packag...
Linux Distros Unpatched Vulnerability : CVE-2022-49397
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix struct clk leak on probe errors Make sure to release the pipe clock...
Linux Distros Unpatched Vulnerability : CVE-2022-49253
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: usb: go7007: s2250-board: fix leak in probe Call i2cunregisterdeviceaudio on this error path. CVE-2022-49253 Note that Nessus relies on the presence of t...
Linux Distros Unpatched Vulnerability : CVE-2024-27025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nbd: null check for nlaneststart nlaneststart may fail and return NULL. Insert a check and set errno based on other call sites within the same source code...
Linux Distros Unpatched Vulnerability : CVE-2024-34403
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string. CVE-2024-34403 Note that...
Linux Distros Unpatched Vulnerability : CVE-2022-30976
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC 2.0.0 misuses a certain Unicode utf8wcslen renamed gfutf8wcslen function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by...