13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-11464
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A SIGFPE is raised in the function boxblurline of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect...
Linux Distros Unpatched Vulnerability : CVE-2017-16529
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The sndusbcreatestreams function in sound/usb/card.c in the Linux kernel before 4.13.6 allows local users to cause a denial of service out-of-bounds read and...
Linux Distros Unpatched Vulnerability : CVE-2017-17786
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel val...
Linux Distros Unpatched Vulnerability : CVE-2016-1550
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An...
Linux Distros Unpatched Vulnerability : CVE-2018-10958
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress cal...
Linux Distros Unpatched Vulnerability : CVE-2014-9814
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick allows remote attackers to cause a denial of service NULL pointer dereference via a crafted wpg file. CVE-2014-9814 Note that Nessus relies on the...
Linux Distros Unpatched Vulnerability : CVE-2015-8947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other...
Linux Distros Unpatched Vulnerability : CVE-2017-9344
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by...
Linux Distros Unpatched Vulnerability : CVE-2017-11753
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The GetImageDepth function in MagickCore/attribute.c in ImageMagick 7.0.6-4 might allow remote attackers to cause a denial of service heap-based buffer over-rea...
Linux Distros Unpatched Vulnerability : CVE-2015-8902
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service infinite loop via a crafte...
Linux Distros Unpatched Vulnerability : CVE-2014-3619
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The socketprotostatemachine function in GlusterFS 3.5 allows remote attackers to cause a denial of service infinite loop via a 00000000 fragment header...
Linux Distros Unpatched Vulnerability : CVE-2017-14502
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - readheader in archivereadsupportformatrar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds...
Linux Distros Unpatched Vulnerability : CVE-2017-14501
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file...
Linux Distros Unpatched Vulnerability : CVE-2020-9428
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissectors/packet-eap.c by using mor...
Linux Distros Unpatched Vulnerability : CVE-2017-17083
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-netbios.c by ensuring that writ...
Linux Distros Unpatched Vulnerability : CVE-2016-9436
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via a crafted html file,...
Linux Distros Unpatched Vulnerability : CVE-2016-10248
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jpctsfbsynthesize function in jpctsfb.c in JasPer before 1.900.9 allows remote attackers to cause a denial of service NULL pointer dereference via vectors...
Linux Distros Unpatched Vulnerability : CVE-2019-13990
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description. CVE-2019-13990...
Linux Distros Unpatched Vulnerability : CVE-2018-13868
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5Ofillolddecode in H5Ofill.c. CVE-2018-13868 Not...
Linux Distros Unpatched Vulnerability : CVE-2020-15466
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset...