13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-13017
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6optprint. CVE-2017-13017 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2018-5206
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When the channel topic is set without specifying a sender, Irssi before 1.0.6 may dereference a NULL pointer. CVE-2018-5206 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2019-8503
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.1...
Linux Distros Unpatched Vulnerability : CVE-2018-4181
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions. CVE-2018-4181 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2018-19416
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in sysstat 12.1.1. The remapstruct function in sacommon.c has an out-of-bounds read during a memmove call, as demonstrated by sadf...
Linux Distros Unpatched Vulnerability : CVE-2015-1779
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service memory and CPU consumption via a large 1 websocket payload or 2 HTT...
Linux Distros Unpatched Vulnerability : CVE-2017-7395
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In TigerVNC 1.7.1 SMsgReader.cxx SMsgReader::readClientCutText, by causing an integer overflow, an authenticated client can crash the server. CVE-2017-7395 Note...
Linux Distros Unpatched Vulnerability : CVE-2015-8750
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libdwarf 20151114 and earlier allows remote attackers to cause a denial of service NULL pointer dereference and crash via a debugabbrev section marked NOBITS in...
Linux Distros Unpatched Vulnerability : CVE-2017-6951
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The keyringsearchaux function in security/keys/keyring.c in the Linux kernel through 3.14.79 allows local users to cause a denial of service NULL pointer...
Linux Distros Unpatched Vulnerability : CVE-2016-5699
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython aka Python before 2.7.10 and 3.x before 3.4.4 allows remo...
Linux Distros Unpatched Vulnerability : CVE-2016-9539
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readContigTilesIntoBuffer. Reported as MSVR 35092. CVE-2016-9539 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2021-28879
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer...
Linux Distros Unpatched Vulnerability : CVE-2015-3211
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - php-fpm allows local users to write to or create arbitrary files via a symlink attack. CVE-2015-3211 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2017-5204
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6print. CVE-2017-5204 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2017-15217
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick 7.0.7-2 has a memory leak in ReadSGIImage in coders/sgi.c. CVE-2017-15217 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2015-8953
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/overlayfs/copyup.c in the Linux kernel before 4.2.6 uses an incorrect cleanup code path, which allows local users to cause a denial of service dentry referen...
Linux Distros Unpatched Vulnerability : CVE-2018-11813
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF. CVE-2018-11813 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2017-13711
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU aka Quick Emulator allows attackers to cause a denial of service QEMU instance cra...
Linux Distros Unpatched Vulnerability : CVE-2019-19036
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfsrootnode in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because rcudereferenceroot-node can be zero. CVE-2019-190...
Linux Distros Unpatched Vulnerability : CVE-2018-16745
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in mgetty before 1.2.1. In faxnotifymail in faxrec.c, the mailto parameter is not sanitized. It could allow a buffer overflow if long...