13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-7815
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The setpixelformat function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service crash via a small bytesperpixel value. CVE-2014-7815 Note...
Linux Distros Unpatched Vulnerability : CVE-2017-13144
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick before 6.9.7-10, there is a crash rather than a width or height exceeds limit error report if the image dimensions are too large, as demonstrated...
Linux Distros Unpatched Vulnerability : CVE-2017-16528
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sound/core/seqdevice.c in the Linux kernel before 4.13.4 allows local users to cause a denial of service sndrawmididevseqfree use-after-free and system crash or...
Linux Distros Unpatched Vulnerability : CVE-2015-8984
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The fnmatch function in the GNU C Library aka glibc or libc6 before 2.22 might allow context-dependent attackers to cause a denial of service application crash...
Linux Distros Unpatched Vulnerability : CVE-2016-2091
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dwarfreadciefdeprefix function in dwarfframe2.c in libdwarf 20151114 allows attackers to cause a denial of service out-of-bounds read via a crafted ELF obje...
Linux Distros Unpatched Vulnerability : CVE-2016-5027
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dwarfform.c in libdwarf 20160115 allows remote attackers to cause a denial of service crash via a crafted elf file. CVE-2016-5027 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2017-15873
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getnextblock function in archival/libarchive/decompressbunzip2.c in BusyBox 1.27.2 has an Integer Overflow that may lead to a write access violation...
Linux Distros Unpatched Vulnerability : CVE-2014-3645
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.12 does not have an exit handler for the INVEPT instruction, which allows guest OS users to...
Linux Distros Unpatched Vulnerability : CVE-2017-9330
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - QEMU aka Quick Emulator before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service infinite loop by...
Linux Distros Unpatched Vulnerability : CVE-2017-6467
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a Netscaler file parser infinite loop, triggered by a malformed capture file. This was addressed in...
Linux Distros Unpatched Vulnerability : CVE-2019-11721
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The unicode latin 'kra' character can be used to spoof a standard 'k' character in the addressbar. This allows for domain spoofing attacks as do not display as...
Linux Distros Unpatched Vulnerability : CVE-2016-10062
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote attackers to cause a...
Linux Distros Unpatched Vulnerability : CVE-2019-20201
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxmlparse functions mishandle XML entities, leading to an infinite loop in which memory allocations...
Linux Distros Unpatched Vulnerability : CVE-2019-9948
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist...
Linux Distros Unpatched Vulnerability : CVE-2012-4444
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ip6fragqueue function in net/ipv6/reassembly.c in the Linux kernel before 2.6.36 allows remote attackers to bypass intended network restrictions via...
Linux Distros Unpatched Vulnerability : CVE-2016-6507
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark 1.12.x before 1.12.13 allows remote attackers to cause a denial of service infinite loop via a...
Linux Distros Unpatched Vulnerability : CVE-2021-23223
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper initialization for some IntelR PROSet/Wireless WiFi and KillerTM WiFi products may allow a privileged user to potentially enable escalation of privileg...
Linux Distros Unpatched Vulnerability : CVE-2017-13004
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print- juniper.c:juniperparseheader. CVE-2017-13004 Note that Nessus relies on th...
Linux Distros Unpatched Vulnerability : CVE-2019-15026
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - memcached 1.5.16, when UNIX sockets are used, has a stack-based buffer over-read in conntostr in memcached.c. CVE-2019-15026 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2017-15131
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask...