13715 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-15804
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The glob function in glob.c in the GNU C Library aka glibc or libc6 before 2.27 contains a buffer overflow during unescaping of user names with the operator...
Linux Distros Unpatched Vulnerability : CVE-2015-8665
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tifgetimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service out-of-bounds read via the SamplesPerPixel tag in a TIFF image. CVE-2015-866...
Linux Distros Unpatched Vulnerability : CVE-2018-12910
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getcookies function in soup-cookie-jar.c in libsoup 2.63.2 allows attackers to have unspecified impact via an empty hostname. CVE-2018-12910 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2015-4696
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps...
Linux Distros Unpatched Vulnerability : CVE-2020-35911
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the lockapi crate before 0.4.2 for Rust. A data race can occur because of MappedRwLockReadGuard unsoundness. CVE-2020-35911 Note that...
Linux Distros Unpatched Vulnerability : CVE-2018-4180
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions. CVE-2018-4180 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2018-6196
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feedtableblocktag function in table.c does not prevent a negative indent...
Linux Distros Unpatched Vulnerability : CVE-2019-16866
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the...
Linux Distros Unpatched Vulnerability : CVE-2017-6499
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Magick++ in ImageMagick 6.9.7. A specially crafted file creating a nested exception could lead to a memory leak thus, a DoS...
Linux Distros Unpatched Vulnerability : CVE-2016-5419
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - curl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has changed, which allows remote attackers to bypass intended...
Linux Distros Unpatched Vulnerability : CVE-2017-13031
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print- frag6.c:frag6print. CVE-2017-13031 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2019-14275
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calcarrow function in bound.c. CVE-2019-14275 Note that Nessus relies on the presence of the packag...
Linux Distros Unpatched Vulnerability : CVE-2018-19565
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer over-read in cropmaskedpixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the...
Linux Distros Unpatched Vulnerability : CVE-2021-23358
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function,...
Linux Distros Unpatched Vulnerability : CVE-2015-4864
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown...
Linux Distros Unpatched Vulnerability : CVE-2015-3278
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cipherstring parsing code in nsscompatossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allo...
Linux Distros Unpatched Vulnerability : CVE-2016-1983
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The clienthost function in parsers.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via an empty HTTP Host...
Linux Distros Unpatched Vulnerability : CVE-2015-7976
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows...
Linux Distros Unpatched Vulnerability : CVE-2017-1000482
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A member of the Plone 2.5-5.1rc1 site could set javascript in the homepage property of his profile, and have this executed when a visitor click the home page li...
Linux Distros Unpatched Vulnerability : CVE-2017-9114
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash. CVE-2017-9114 Note that Nessus relies...