13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-5208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings. CVE-2018-5208 Note that...
Linux Distros Unpatched Vulnerability : CVE-2021-28170
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they...
Linux Distros Unpatched Vulnerability : CVE-2020-16020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in cryptohome in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process ...
Linux Distros Unpatched Vulnerability : CVE-2018-14340
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuffzlib....
Linux Distros Unpatched Vulnerability : CVE-2017-5485
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookupnsap. CVE-2017-5485 Note that Nessus relies on the presence of the packa...
Linux Distros Unpatched Vulnerability : CVE-2016-6185
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrar...
Linux Distros Unpatched Vulnerability : CVE-2018-10103
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcpdump before 4.9.3 mishandles the printing of SMB data issue 1 of 2. CVE-2018-10103 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2016-8615
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in curl before version 7.51. If cookie state is written into a cookie jar file that is later read back and used for subsequent requests, a...
Linux Distros Unpatched Vulnerability : CVE-2014-0189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file...
Linux Distros Unpatched Vulnerability : CVE-2014-9832
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file. CVE-2014-9832 Note that Nessus relies on the presence of the package as reported by the vendor...
Linux Distros Unpatched Vulnerability : CVE-2020-10969
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to javax.swing.JEditorPane...
Linux Distros Unpatched Vulnerability : CVE-2017-9173
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input- bmp.c:497:29. CVE-2017-9173 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2016-9105
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the v9fslink function in hw/9pfs/9p.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service memory...
Linux Distros Unpatched Vulnerability : CVE-2015-8139
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors. CVE-2015-8139 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2013-1983
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in X.org libXfixes 5.0 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to t...
Linux Distros Unpatched Vulnerability : CVE-2019-3902
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside ...
Linux Distros Unpatched Vulnerability : CVE-2017-6419
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mspack/lzxd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2, allows remote attackers to cause a denial of service heap-based buffer overflow and application...
Linux Distros Unpatched Vulnerability : CVE-2017-15032
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. CVE-2017-15032 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2017-13049
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubikprint. CVE-2017-13049 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2019-12481
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GPAC 0.7.1. There is a NULL pointer dereference in the function GetESD at isomedia/track.c in libgpac.a, as demonstrated by MP4Box...