224 matches found
EulerOS 2.0 SP9 : bind (EulerOS-SA-2024-1502)
According to the versions of the bind packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Certain DNSSEC aspects of the DNS protocol in RFC 4033, 4034, 4035, 6840, and related RFCs allow remote attackers to cause a denial of service CPU...
EulerOS 2.0 SP9 : ncurses (EulerOS-SA-2024-1511)
According to the versions of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - ncurses 6.4-20230610 has a NULL pointer dereference in tgetstr in tinfo/libtermcap.c. CVE-2023-45918 Note that Tenable Network Security has...
EulerOS 2.0 SP9 : kernel (EulerOS-SA-2024-1509)
"According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux filesystem modules allows Forced Integer Overflow.This issue affects...
EulerOS 2.0 SP9 : systemd (EulerOS-SA-2024-1499)
According to the versions of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they...
EulerOS 2.0 SP9 : sudo (EulerOS-SA-2024-1187)
According to the versions of the sudo package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in sudo in the handling of ipahostname, where ipahostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads...
EulerOS 2.0 SP9 : libtiff (EulerOS-SA-2024-1179)
According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffe...
EulerOS 2.0 SP9 : openssl (EulerOS-SA-2024-1184)
According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact...
EulerOS 2.0 SP9 : libXpm (EulerOS-SA-2024-1200)
According to the versions of the libXpm package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user to consume all availab...
EulerOS 2.0 SP9 : tar (EulerOS-SA-2024-1188)
According to the versions of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in tar. This issue occurs when extended attributes are processed in PAX archives, and could allow an attacker to cause an applicati...
EulerOS 2.0 SP9 : shim (EulerOS-SA-2024-1186)
According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary...
EulerOS 2.0 SP9 : curl (EulerOS-SA-2024-1192)
According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw allows a malicious HTTP server to set 'super cookies' in curl that are then passed back to more origins than what is otherwise allowed o...
EulerOS 2.0 SP9 : haproxy (EulerOS-SA-2023-2897)
According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4.x through 2.4.23, 2.5.x and 2.6.x before 2.6.15, 2.7.x before 2.7.10, and...
EulerOS 2.0 SP9 : libX11 (EulerOS-SA-2023-3342)
According to the versions of the libX11 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user to trigger an...
EulerOS 2.0 SP9 : grub2 (EulerOS-SA-2023-3301)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS...
EulerOS 2.0 SP9 : perl (EulerOS-SA-2023-2885)
According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CVE-2023-31484 Note that Tenable Network Security...
EulerOS 2.0 SP9 : busybox (EulerOS-SA-2023-2892)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can...
EulerOS 2.0 SP9 : shim (EulerOS-SA-2023-2890)
According to the versions of the shim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that...
EulerOS 2.0 SP9 : gcc (EulerOS-SA-2023-3296)
According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in...
EulerOS 2.0 SP9 : curl (EulerOS-SA-2023-3294)
According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 prox...
EulerOS 2.0 SP9 : iSulad (EulerOS-SA-2023-3303)
According to the versions of the iSulad package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When malicious images are pulled by isula pull, attackers can execute arbitrary code. CVE-2021-33635 - When the isula load command is used to loa...