Linux Distros Unpatched Vulnerability : CVE-2017-6473

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a K12 file parser crash, triggered by a malformed capture file. This was addressed in wiretap/k12.c by...

Linux Distros Unpatched Vulnerability : CVE-2017-9164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GETCOLOR function in color.c:16:11. CVE-2017-9164 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2012-1601

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The KVM implementation in the Linux kernel before 3.3.6 allows host OS users to cause a denial of service NULL pointer dereference and host OS crash by making a...

Linux Distros Unpatched Vulnerability : CVE-2013-4235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - shadow: TOCTOU time-of-check time-of-use race condition when copying and removing directory trees CVE-2013-4235 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2012-6709

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation. CVE-2012-6709 Note that Nessus relies on the presence of the package as reported by...

Linux Distros Unpatched Vulnerability : CVE-2019-20807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces e.g., Python, Ruby, or Lua...

Linux Distros Unpatched Vulnerability : CVE-2018-11806

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mcat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams. CVE-2018-11806 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2018-8882

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netwide Assembler NASM 2.13.02rc2 has a stack-based buffer under-read in the function ieeeshr in asm/float.c via a large shift value. CVE-2018-8882 Note that...

Linux Distros Unpatched Vulnerability : CVE-2017-13023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print- mobility.c:mobilityoptprint. CVE-2017-13023 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2019-9631

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsamplerowboxfilter function. CVE-2019-9631 Note that Nessus relies on the presenc...

Linux Distros Unpatched Vulnerability : CVE-2017-11531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteHISTOGRAMImage function in coders/histogram.c...

Linux Distros Unpatched Vulnerability : CVE-2020-29651

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service via regular expression in the py.path.svnwc component of py aka python-py through 1.9.0 could be used by attackers to cause a compute-time...

Linux Distros Unpatched Vulnerability : CVE-2017-12999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isisprint. CVE-2017-12999 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2015-4164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The compatiret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of...

Linux Distros Unpatched Vulnerability : CVE-2018-10801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TIFFClientOpen in tifunix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff. CVE-2018-10801 Note that Nessus relies on the presence of the packag...

Linux Distros Unpatched Vulnerability : CVE-2017-6318

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet. CVE-2017-6318 Note that...

Linux Distros Unpatched Vulnerability : CVE-2016-9803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BlueZ 5.42, an out-of-bounds read was observed in lemetaevdump function in tools/parser/hci.c source file. This issue exists because 'subevent' which is used...

Linux Distros Unpatched Vulnerability : CVE-2017-17914

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service...

Linux Distros Unpatched Vulnerability : CVE-2014-3698

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive...

Linux Distros Unpatched Vulnerability : CVE-2019-19880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses o...