13715 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-9060
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...
Linux Distros Unpatched Vulnerability : CVE-2017-9055
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarfformsdata a few data types were not checked for being in bounds, leading to...
Linux Distros Unpatched Vulnerability : CVE-2021-0146
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Hardware allows activation of test or debug logic at runtime for some IntelR processors which may allow an unauthenticated user to potentially enable escalation...
Linux Distros Unpatched Vulnerability : CVE-2018-10103
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcpdump before 4.9.3 mishandles the printing of SMB data issue 1 of 2. CVE-2018-10103 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2016-8615
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in curl before version 7.51. If cookie state is written into a cookie jar file that is later read back and used for subsequent requests, a...
Linux Distros Unpatched Vulnerability : CVE-2018-14340
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuffzlib....
Linux Distros Unpatched Vulnerability : CVE-2020-27797
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid memory address reference was discovered in the elflookup function in plxelf.cpp in UPX 4.0.0 via a crafted Mach-O file. CVE-2020-27797 Note that Ness...
Linux Distros Unpatched Vulnerability : CVE-2017-5356
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Irssi before 0.8.21 allows remote attackers to cause a denial of service out-of-bounds read and crash via a string containing a formatting sequence % without a...
Linux Distros Unpatched Vulnerability : CVE-2017-3001
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable use after free vulnerability related to garbage collection in the ActionScript 2 VM...
Linux Distros Unpatched Vulnerability : CVE-2014-9837
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service crash via a crafted png file. CVE-2014-9837 Note that...
Linux Distros Unpatched Vulnerability : CVE-2015-9100
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The fillbufferresample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service NULL pointer dereference and...
Linux Distros Unpatched Vulnerability : CVE-2017-14735
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OWASP AntiSamy before 1.5.7 allows XSS via HTML5 entities, as demonstrated by use of : to construct a javascript: URL. CVE-2017-14735 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2015-3418
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ProcPutImage function in dix/dispatch.c in X.Org Server aka xserver and xorg-server before 1.16.4 allows attackers to cause a denial of service divide-by-ze...
Linux Distros Unpatched Vulnerability : CVE-2015-8393
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, a...
Linux Distros Unpatched Vulnerability : CVE-2017-13673
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split screen mode is used causing a denial of service assertion failur...
Linux Distros Unpatched Vulnerability : CVE-2016-7942
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which trigger...
Linux Distros Unpatched Vulnerability : CVE-2021-28170
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they...
Linux Distros Unpatched Vulnerability : CVE-2017-18185
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in QPDF before 7.0.0. There is a large heap-based out-of-bounds read in the PlBuffer::write function in PlBuffer.cc. It is caused by an...
Linux Distros Unpatched Vulnerability : CVE-2012-1088
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iproute2 before 3.3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file used by 1 configure or 2...
Linux Distros Unpatched Vulnerability : CVE-2020-16020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in cryptohome in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process ...