13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-5206
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When the channel topic is set without specifying a sender, Irssi before 1.0.6 may dereference a NULL pointer. CVE-2018-5206 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2014-0104
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In fence-agents before 4.0.17 does not verify remote SSL certificates in the fenceciscoucs.py script which can potentially allow for man-in-the-middle attackers...
Linux Distros Unpatched Vulnerability : CVE-2020-29443
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0 allows out-of-bounds read access because a buffer index is not validated. CVE-2020-29443 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2018-7439
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the function readminibiffnextrecord. CVE-2018-7439 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2017-6852
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the jpcdecdecodepkt function in jpct2dec.c in JasPer 2.0.10 allows remote attackers to have unspecified impact via a crafted image...
Linux Distros Unpatched Vulnerability : CVE-2017-2581
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds write vulnerability was found in netpbm before 10.61. A maliciously crafted file could cause the application to crash or possibly allow code...
Linux Distros Unpatched Vulnerability : CVE-2016-3621
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The LZWEncode function in tiflzw.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the -c lzw option is used, allows remote attackers to cause a denial ...
Linux Distros Unpatched Vulnerability : CVE-2015-7702
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cryptoxmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service crash. NOTE: This...
Linux Distros Unpatched Vulnerability : CVE-2014-8651
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The KDE Clock KCM policykit helper in kde-workspace before 4.11.14 and plasma-desktop before 5.1.1 allows local users to gain privileges via a crafted ntpUtilit...
Linux Distros Unpatched Vulnerability : CVE-2017-9116
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function in ImfZip.cpp could cause the application to crash. CVE-2017-9116 Note that Nessus relies...
Linux Distros Unpatched Vulnerability : CVE-2015-3308
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in lib/x509/x509ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other...
Linux Distros Unpatched Vulnerability : CVE-2017-7186
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service segmentation violation for read access, and application...
Linux Distros Unpatched Vulnerability : CVE-2012-3381
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sfcb in sblim-sfcb places a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in th...
Linux Distros Unpatched Vulnerability : CVE-2015-8897
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service application crash via a...
Linux Distros Unpatched Vulnerability : CVE-2012-2132
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libsoup 2.32.2 and earlier does not validate certificates or clear the trust flag when the ssl-ca-file does not exist, which allows remote attackers to bypass...
Linux Distros Unpatched Vulnerability : CVE-2017-9345
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-dns.c by trying ...
Linux Distros Unpatched Vulnerability : CVE-2014-2270
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service out-of-bounds memory access and crash via crafted...
Linux Distros Unpatched Vulnerability : CVE-2017-11576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...
Linux Distros Unpatched Vulnerability : CVE-2016-9394
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jasseq2dcreate function in jasseq.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service assertion failure via a crafted file...
Linux Distros Unpatched Vulnerability : CVE-2016-7937
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The VAT parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:vatprint. CVE-2016-7937 Note that Nessus relies on the presence of the package as...