Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current libxml2 Vulnerability (SSA:2022-059-01)

The version of libxml2 installed on the remote host is prior to 2.9.13. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-059-01 advisory. - valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. CVE-2022-23308 Note that Nessus has not tested f...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current libxslt Vulnerability (SSA:2022-059-02)

The version of libxslt installed on the remote host is prior to 1.1.35. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-059-02 advisory. - Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap...

Slackware Linux 14.2 / 15.0 / current cyrus-sasl Multiple Vulnerabilities (SSA:2022-055-01)

The version of cyrus-sasl installed on the remote host is prior to 2.1.28. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-055-01 advisory. - cyrus-sasl aka Cyrus SASL 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of- service in...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current expat Multiple Vulnerabilities (SSA:2022-050-01)

The version of expat installed on the remote host is prior to 2.4.3 / 2.4.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-050-01 advisory. - xmltokimpl.c in Expat aka libexpat before 2.4.5 lacks certain validation of encoding, such as checks for whether a...

Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current flac Multiple Vulnerabilities (SSA:2022-052-01)

The version of flac installed on the remote host is prior to 1.3.4. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-052-01 advisory. - In FLACbitreaderreadricesignedblock of bitreader.c, there is a possible out of bounds read due to a heap buffer overflow. Thi...

Slackware Linux 15.0 / current php Multiple Vulnerabilities (SSA:2022-048-02)

The version of php installed on the remote host is prior to 7.4.28 / 8.0.16 / 8.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-048-02 advisory. - In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions...

Slackware Linux 15.0 / current mozilla-thunderbird Vulnerability (SSA:2022-048-01)

The version of mozilla-thunderbird installed on the remote host is prior to 91.6.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-048-01 advisory. - It may be possible for an attacker to craft an email message that causes Thunderbird to perform an out-of- bounds writ...

Slackware Linux 15.0 / current aaa_base Vulnerability (SSA:2022-046-01)

The version of aaabase installed on the remote host is prior to 15.0 / 15.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-046-01 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

Slackware Linux 15.0 / current util-linux Vulnerability (SSA:2022-046-02)

The version of util-linux installed on the remote host is prior to 2.37.4. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-046-02 advisory. - A flaw was found in the util-linux chfn and chsh utilities when compiled with Readline support. The Readline library uses an...

Slackware Linux 15.0 / current mariadb Multiple Vulnerabilities (SSA:2022-044-01)

The version of mariadb installed on the remote host is prior to 10.5.15 / 10.6.7. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-044-01 advisory. - MariaDB through 10.5.9 allows an application crash in findfieldintables and findorderinlist via an unused commo...

Slackware Linux 14.2 kernel-generic Multiple Vulnerabilities (SSA:2022-031-01)

The version of kernel-generic installed on the remote host is prior to 4.4.301 / 4.4.301smp. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-031-01 advisory. - An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/hugememory.c. T...

Slackware Linux 14.0 / 14.1 / 14.2 / current polkit Vulnerability (SSA:2022-025-02)

The version of polkit installed on the remote host is prior to 0.105 / 0.113 / 0.120. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-025-02 advisory. - A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid...

Slackware Linux 14.0 / 14.1 / 14.2 / current wpa_supplicant Multiple Vulnerabilities (SSA:2022-019-01)

The version of wpasupplicant installed on the remote host is prior to 2.10 / 2.9. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-019-01 advisory. - The implementations of EAP-PWD in hostapd and wpasupplicant are vulnerable to side-channel attacks as a result ...

Slackware Linux 14.0 / 14.1 / 14.2 / current expat Multiple Vulnerabilities (SSA:2022-016-01)

The version of expat installed on the remote host is prior to 2.4.3. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-016-01 advisory. - In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to...

Slackware Linux 14.0 / 14.1 / 14.2 / current wpa_supplicant Multiple Vulnerabilities (SSA:2021-362-01)

The version of wpasupplicant installed on the remote host is prior to 2.9. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2021-362-01 advisory. - hostapd before 2.10 and wpasupplicant before 2.10 allow an incorrect indication of disconnection in certain situations...

Slackware Linux 14.0 / 14.1 / 14.2 / current httpd Multiple Vulnerabilities (SSA:2021-354-01)

The version of httpd installed on the remote host is prior to 2.4.52. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2021-354-01 advisory. - A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, f...

Slackware Linux 14.0 / 14.1 / 14.2 / current xorg-server Multiple Vulnerabilities (SSA:2021-350-01)

The version of xorg-server installed on the remote host is prior to 1.12.4 / 1.14.3 / 1.18.3 / 1.20.14 / 21.1.4. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2021-350-01 advisory. - A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14...

Slackware Linux 14.0 / 14.1 / 14.2 / current mozilla-nss Vulnerability (SSA:2021-337-01)

The version of mozilla-nss installed on the remote host is prior to 3.23 / 3.40.1 / 3.73. It is, therefore, affected by a vulnerability as referenced in the SSA:2021-337-01 advisory. - NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handli...

Slackware Linux 14.0 / 14.1 / 14.2 / current alpine Vulnerability (SSA:2021-264-01)

The version of alpine installed on the remote host is prior to 2.25. It is, therefore, affected by a vulnerability as referenced in the SSA:2021-264-01 advisory. - In Alpine through 2.24, untagged responses from an IMAP server are accepted before STARTTLS. CVE-2021-38370 Note that Nessus has not...

Slackware Linux 14.0 / 14.1 / 14.2 / current httpd Multiple Vulnerabilities (SSA:2021-259-01)

The version of httpd installed on the remote host is prior to 2.4.49. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2021-259-01 advisory. - A crafted method sent through HTTP/2 will bypass validation and be forwarded by modproxy, which can lead to request splitti...