13715 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-7702
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cryptoxmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service crash. NOTE: This...
Linux Distros Unpatched Vulnerability : CVE-2017-18360
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In changeportsettings in drivers/usb/serial/ioti.c in the Linux kernel before 4.11.3, local users could cause a denial of service by division-by-zero in the...
Linux Distros Unpatched Vulnerability : CVE-2017-2581
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds write vulnerability was found in netpbm before 10.61. A maliciously crafted file could cause the application to crash or possibly allow code...
Linux Distros Unpatched Vulnerability : CVE-2018-7540
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service host OS CPU hang via non-preemptable L3/L4 pagetable...
Linux Distros Unpatched Vulnerability : CVE-2012-5515
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 XENMEMdecreasereservation, 2 XENMEMpopulatephysmap, and 3 XENMEMexchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a...
Linux Distros Unpatched Vulnerability : CVE-2020-16015
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in WASM in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...
Linux Distros Unpatched Vulnerability : CVE-2018-13868
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Ofillolddecode in H5Ofill.c. CVE-2018-13868 Not...
Linux Distros Unpatched Vulnerability : CVE-2017-14501
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file...
Linux Distros Unpatched Vulnerability : CVE-2017-14502
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - readheader in archivereadsupportformatrar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds...
Linux Distros Unpatched Vulnerability : CVE-2016-6345
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RESTEasy allows remote authenticated users to obtain sensitive information by leveraging insufficient use of random values in async jobs. CVE-2016-6345 Note tha...
Linux Distros Unpatched Vulnerability : CVE-2020-12391
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Documents formed using data: URLs in an OBJECT element failed to inherit the CSP of the creating context. This allowed the execution of scripts that should have...
Linux Distros Unpatched Vulnerability : CVE-2020-15466
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset...
Linux Distros Unpatched Vulnerability : CVE-2019-15291
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function ...
Linux Distros Unpatched Vulnerability : CVE-2017-13146
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memory leak in the ReadMATImage function in coders/mat.c. CVE-2017-13146 Note that Nessus relie...
Linux Distros Unpatched Vulnerability : CVE-2014-7844
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address. CVE-2014-7844 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2017-11462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in MIT Kerberos 5 aka krb5 allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts o...
Linux Distros Unpatched Vulnerability : CVE-2017-17083
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-netbios.c by ensuring that writ...
Linux Distros Unpatched Vulnerability : CVE-2017-6348
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The hashbindelete function in net/irda/irqueue.c in the Linux kernel before 4.9.13 improperly manages lock dropping, which allows local users to cause a denial ...
Linux Distros Unpatched Vulnerability : CVE-2017-5204
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6print. CVE-2017-5204 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2017-15217
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick 7.0.7-2 has a memory leak in ReadSGIImage in coders/sgi.c. CVE-2017-15217 Note that Nessus relies on the presence of the package as reported by the...