Fedora: Security Advisory (FEDORA-2026-009cb3c02a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Azure Linux 3.0 Security Update: python3 (CVE-2023-6507)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6507 advisory. - An issue was found in CPython 3.12.0 subprocess module on POSIX platforms. The issue was fixed in CPython...

Fedora 43 : mingw-python3 (2026-009cb3c02a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-009cb3c02a advisory. Backport proposed fix for CVE-2025-13836. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note tha...

Oracle Linux 10 : gpsd (ELSA-2026-0770)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0770 advisory. - fix buffer overflow in NMEA2000 driver CVE-2025-67268 Tenable has extracted the preceding description block directly from the Oracle Linux security...

AZL-75053 CVE-2026-0865 affecting package python3 for versions less than 3.9.19-19

User-controlled header names and values containing newlines can allow injecting HTTP headers...

AZL-75032 CVE-2026-0865 affecting package python3 for versions less than 3.12.9-8

User-controlled header names and values containing newlines can allow injecting HTTP headers...

AZL-75038 CVE-2025-15367 affecting package python3 3.12.9-9

The poplib module, when passed a user-controlled command, can have additional commands injected using newlines. Mitigation rejects commands containing control characters...

AZL-75035 CVE-2025-11468 affecting package python3 for versions less than 3.12.9-8

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

MiracleLinux 8 : python3-3.6.8-51.el8.2.ML.1 (AXSA:2023-6551:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6551:06 advisory. python: TLS handshake bypass CVE-2023-40217 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

MiracleLinux 9 : libxml2-2.9.13-5.el9_3 (AXSA:2023-7045:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7045:07 advisory. libxml2: crafted xml can cause global buffer overflow CVE-2023-39615 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 8 : python-dns-1.15.0-12.el8 (AXSA:2024-8211:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8211:01 advisory. dnspython: denial of service in stub resolver CVE-2023-29483 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : python-pip-21.2.3-7.el9 (AXSA:2023-6874:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6874:01 advisory. python: tarfile module directory traversal CVE-2007-4559 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : libxml2-2.9.13-1.el9.1 (AXSA:2022-3979:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3979:05 advisory. libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write CVE-2022-29824 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : python-psutil-5.4.3-11.el8 (AXSA:2021-2727:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-2727:01 advisory. python-psutil: double free because of refcount mishandling CVE-2019-18874 Tenable has extracted the preceding description block directly from the MiracleLinu...

MiracleLinux 8 : libxml2-2.9.7-15.el8 (AXSA:2022-4126:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4126:06 advisory. libxml2: Incorrect server side include parsing can lead to XSS CVE-2016-3709 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : python-requests-2.20.0-3.el8 (AXSA:2023-6324:02)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-6324:02 advisory. python-requests: Unintended leak of Proxy-Authorization header CVE-2023-32681 Tenable has extracted the preceding description block directly from the...

EulerOS 2.0 SP12 : python3 (EulerOS-SA-2026-1098)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to...

EulerOS 2.0 SP10 : python3 (EulerOS-SA-2026-1036)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : There is a defect in the CPython 'tarfile' module affecting the 'TarFile' extraction and entry enumeration APIs. The tar implementation would...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2026-1078)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2026-1057)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...