CVE-2024-41206

A stack-based buffer over-read in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Information Disclosure via a crafted TS video file...

EUVD-2019-10576

Malware in sbrugna...

EUVD-2021-28595

Malicious code in bioql PyPI...

CVE-2021-38380

Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack...

Linux Distros Unpatched Vulnerability : CVE-2018-13866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5Faddrdecodelen in H5Fint.c. CVE-2018-13866 Not...

Linux Distros Unpatched Vulnerability : CVE-2019-17544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character. CVE-2019-1754...

Linux Distros Unpatched Vulnerability : CVE-2017-12967

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getsym function in tekhex.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a...

CVE-2024-41206

CVE-2024-41206 describes a stack-based buffer over-read in tsMuxer (nightly-2024-03-14-01-51-12) that can cause information disclosure when processing a crafted TS video file. Affected component is the tsMuxer code path handling transport streams; root cause is a buffer over-read, as stated in mu...

CBL Mariner 2.0 Security Update: libesmtp (CVE-2019-19977)

The version of libesmtp installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-19977 advisory. - libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlmbuildtype2 in...

RHEL 8 : file (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - file: out-of-bounds read in docorenote in readelf.c CVE-2019-8906 - docorenote in readelf.c in libmagic.a...

RHEL 7 : aspell (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - aspell: UCS-2 and UCS-4 null-terminated string handling OOB read CVE-2019-20433 - libaspell.a in GNU Aspe...

RHEL 6 : file (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - file: out-of-bounds read via a crafted ELF file CVE-2018-10360 - File before 5.43 has an stack-based buff...

RHEL 8 : imagemagick (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ImageMagick: Uninitialized variable in coders/mat.c:ReadMATImageV4 allows for memory corruption...

RHEL 8 : file (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - file: out-of-bounds read in docorenote in readelf.c CVE-2019-8906 - docorenote in readelf.c in libmagic.a...

RHEL 5 : nasm (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - nasm: double-free vulnerability in pptokline asm/preproc.c CVE-2020-24978 - In Netwide Assembler NASM...

RHEL 7 : libvorbis (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvorbis: heap buffer overflow in mapping0forward function CVE-2018-10392 - The vorbisanalysiswrote...

RHEL 5 : gimp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gimp: Heap-based buffer overflow in readchanneldata function in plug-ins/common/file-psp.c CVE-2017-17789...

RLSA-2024:2512 Low: file security update

The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format ELF binary files, system libraries, RPM packages, and different graphics formats. Security Fixes: file:...

Low: Red Hat Security Advisory: file security update

An update for file is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

RHEL 9 : file (RHSA-2024:2512)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2512 advisory. The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types,...