13716 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14340
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuffzlib....
Linux Distros Unpatched Vulnerability : CVE-2019-17341
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging a page-writability ra...
Linux Distros Unpatched Vulnerability : CVE-2017-16837
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Certain function pointers in Trusted Boot tboot through 1.9.6 are not validated and can cause arbitrary code execution, which allows local users to overwrite...
Linux Distros Unpatched Vulnerability : CVE-2016-1000002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gdm3 3.14.2 and possibly later has an information leak before screen lock CVE-2016-1000002 Note that Nessus relies on the presence of the package as reported by...
Linux Distros Unpatched Vulnerability : CVE-2017-7982
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the plistfrombin function in bplist.c in libimobiledevice/libplist before 2017-04-19 allows remote attackers to cause a denial of service...
Linux Distros Unpatched Vulnerability : CVE-2018-20623
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the processarchive function in readelf.c via a crafted ELF...
Linux Distros Unpatched Vulnerability : CVE-2018-10103
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcpdump before 4.9.3 mishandles the printing of SMB data issue 1 of 2. CVE-2018-10103 Note that Nessus relies on the presence of the package as reported by the...
Linux Distros Unpatched Vulnerability : CVE-2017-16026
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Request is an http client. If a request is made using multipart, and the body type is a number, then the specified number of non-zero memory is passed in the...
Linux Distros Unpatched Vulnerability : CVE-2017-7224
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The findnearestline function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write of size 1 while disassembling a corrupt binary that contains an...
Linux Distros Unpatched Vulnerability : CVE-2018-13866
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5Faddrdecodelen in H5Fint.c. CVE-2018-13866 Not...
Linux Distros Unpatched Vulnerability : CVE-2014-9827
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file. CVE-2014-9827 Note that Nessus relies on the presence of...
Linux Distros Unpatched Vulnerability : CVE-2017-13020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtpprint. CVE-2017-13020 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2020-21535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fig2dev 3.2.7b contains a segmentation fault in the gencgmstart function in gencgm.c. CVE-2020-21535 Note that Nessus relies on the presence of the package as...
Linux Distros Unpatched Vulnerability : CVE-2018-18897
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo...
Linux Distros Unpatched Vulnerability : CVE-2020-11098
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FreeRDP before version 2.1.2, there is an out-of-bound read in glyphcacheput. This affects all FreeRDP clients with +glyph-cache option enabled This is fixed...
Linux Distros Unpatched Vulnerability : CVE-2017-9345
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-dns.c by trying ...
Linux Distros Unpatched Vulnerability : CVE-2018-7730
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIRFileWriter.cpp, leadin...
Linux Distros Unpatched Vulnerability : CVE-2017-11576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict parsettf.c resulting in DoS via a crafted otf file...
Linux Distros Unpatched Vulnerability : CVE-2017-7701
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. Th...
Linux Distros Unpatched Vulnerability : CVE-2015-8558
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ehciprocessitd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service infinite loop and CPU consumption via...