13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-28362
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service. CVE-2020-28362 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2016-3189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service crash via a crafted bzip2 file, related to bloc...
Linux Distros Unpatched Vulnerability : CVE-2016-5825
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The icalparserparsestring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted ics file...
Linux Distros Unpatched Vulnerability : CVE-2017-17785
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GIMP 2.8.22, there is a heap-based buffer overflow in the flireadbrun function in plug-ins/file- fli/fli.c. CVE-2017-17785 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2019-5719
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling th...
Linux Distros Unpatched Vulnerability : CVE-2018-5336
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the...
Linux Distros Unpatched Vulnerability : CVE-2015-8558
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ehciprocessitd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service infinite loop and CPU consumption via...
Linux Distros Unpatched Vulnerability : CVE-2016-6292
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The exifprocessusercomment function in ext/exif/exif.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial...
Linux Distros Unpatched Vulnerability : CVE-2016-8618
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The libcurl API function called curlmaprintf before version 7.51.0 can be tricked into doing a double-free due to an unsafe sizet multiplication, on systems usi...
Linux Distros Unpatched Vulnerability : CVE-2015-8239
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 allows local users with write permissions to parts of the called command to replace them befo...
Linux Distros Unpatched Vulnerability : CVE-2016-6511
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service OpenFlow dissector large loop via a...
Linux Distros Unpatched Vulnerability : CVE-2017-9351
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by...
Linux Distros Unpatched Vulnerability : CVE-2020-35738
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in packutils.c because of an integer overflow in a malloc argument. NOTE: some third-parties clai...
Linux Distros Unpatched Vulnerability : CVE-2012-3386
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The make distcheck rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a...
Linux Distros Unpatched Vulnerability : CVE-2017-13689
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1idprint. CVE-2017-13689 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2017-9169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input- bmp.c:355:25. CVE-2017-9169 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2017-18028
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote attackers to cause a...
Linux Distros Unpatched Vulnerability : CVE-2013-7440
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ssl.matchhostname function in CPython aka Python before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow...
Linux Distros Unpatched Vulnerability : CVE-2018-7730
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIRFileWriter.cpp, leadin...
Linux Distros Unpatched Vulnerability : CVE-2016-7880
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability when setting the length property o...