CentOS 9 : dbus-broker-28-6.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the dbus-broker-28-6.el9 build changelog. - An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contai...

EulerOS 2.0 SP11 : file (EulerOS-SA-2023-3027)

According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project. CVE-2022-48554...

EulerOS 2.0 SP11 : glusterfs (EulerOS-SA-2023-2685)

According to the versions of the glusterfs packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253 Note that...

EulerOS Virtualization 2.11.1 : file (EulerOS-SA-2023-3356)

According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...

EulerOS Virtualization 2.11.0 : file (EulerOS-SA-2023-3375)

According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...

EulerOS Virtualization 2.10.1 : file (EulerOS-SA-2023-3495)

According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...

Huawei EulerOS: Security Advisory for file (EulerOS-SA-2023-3375)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for file (EulerOS-SA-2023-3171)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Rocky Linux 8 : libvorbis (RLSA-2019:3703)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2019:3703 advisory. - mapping0forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of...

SUSE SLES12 Security Update : poppler (SUSE-SU-2023:4362-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4362-1 advisory. - CCITTFaxStream::readRow in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service heap-based buffer over-rea...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : MediaInfoLib vulnerabilities (USN-5237-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5237-1 advisory. It was discovered that MediaInfoLib incorrectly handled certain specially crafted files. An attacker could possibly use this issu...

Amazon Linux 2023 : file, file-devel, file-libs (ALAS2023-2023-333)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-333 advisory. File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: File is the name of an Open Source project. CVE-2022-48554 Tenable has extracted the preceding description block...

Oracle Linux 8 : tcpdump (ELSA-2020-1604)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1604 advisory. 14:4.9.2-6 - Resolves: 1715423 - tcpdump pre creates user and groups unconditionally - Resolves: 1655622 - CVE-2018-19519 Stack-based buffer over-read in...

PT-2023-26541 · Nasm +1 · Nasm +1

Name of the Vulnerable Software and Affected Versions: nasm version 2.16 Description: The issue is a stack-based buffer over-read in the disasm component, which allows attackers to cause a denial of service, resulting in a crash. Recommendations: For nasm version 2.16, at the moment, there is no...

CVE-2023-38668

Stack-based buffer over-read in disasm in nasm 2.16 allows attackers to cause a denial of service crash...

CVE-2022-48554

File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...

EulerOS 2.0 SP9 : glusterfs (EulerOS-SA-2023-2313)

According to the versions of the glusterfs packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253 Note that...

Amazon Linux 2 : glusterfs (ALAS-2023-2071)

The version of glusterfs installed on the remote host is prior to 3.12.2-18. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2071 advisory. In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253...

EulerOS 2.0 SP10 : glusterfs (EulerOS-SA-2023-1821)

According to the versions of the glusterfs packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer over-read. CVE-2023-26253 Note that...

GLSA-202305-04 : dbus-broker: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-04 dbus-broker: Multiple Vulnerabilities - An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a...