CentOS 8 : fwupd (CESA-2021:2566)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:2566 advisory. - grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled CVE-2020-14372 - grub2: Use-after-free in rmmod...

CVE-2021-21704

Several flaws has been found in php. The pdofirebase module does not check the length of the server version string in a response packet causing a stack buffer overflow, does not verify the data and uses the wrong type to cast length leading to a crash, and does not validate the response before...

Advisory ROSA-SA-2021-1956

Software: procps-ng 3.3.10 OS: Cobalt 7.9 CVE-ID: CVE-2018-1126. CVE-Crit: CRITICAL. CVE-DESC: procps-ng before version 3.3.15 is vulnerable due to incorrect integer size in proc / alloc. , Which leads to truncation / integer overflow problems. This flaw is related to CVE-2018-1124. CVE-STATUS:...

Advisory ROSA-SA-2021-1832

Software: exempi 2.2.0 OS: Cobalt 7.9 CVE-ID: CVE-2017-18235 CVE-Crit: MEDIUM CVE-DESC: An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles / source / FormatSupport / WEBPSupport.cpp does not guarantee non-zero width and height values, allowing remote attackers to cause...

EulerOS Virtualization for ARM 64 3.0.2.0 : cairo (EulerOS-SA-2021-2095)

According to the versions of the cairo packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in cairo 1.16.0. There is an infinite loop in the function arcerrornormalized in the file...

DEBIAN-CVE-2021-36082

ntop nDPI 3.4 has a stack-based buffer overflow in processClientServerHello...

PHP < 7.3.29 Multiple Vulnerabilities (Jul 2021) - Linux

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

Huawei EulerOS: Security Advisory for cairo (EulerOS-SA-2021-2059)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : cairo (EulerOS-SA-2021-2059)

According to the version of the cairo package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to...

EulerOS 2.0 SP9 : cairo (EulerOS-SA-2021-2048)

According to the version of the cairo package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to...

Apache Traffic Server Stack Buffer Overflow Vulnerability

Apache Traffic Server or ATS or TS for short , is a high-performance , modular HTTP proxy and caching server . A stack buffer overflow vulnerability exists in the cachekey plugin in Apache Traffic Server versions 7.0.0 - 7.1.12, 8.0.0 - 8.1.1, 9.0.0 - 9.0.1. No detailed vulnerability details are...

EulerOS Virtualization 3.0.6.6 : cairo (EulerOS-SA-2021-2035)

According to the version of the cairo packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c. This flaw allows an attacker who can provide a crafted input file to cairo's...

Huawei EulerOS: Security Advisory for cairo (EulerOS-SA-2021-2035)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PHP < 7.3.29 Multiple Vulnerabilities (Jul 2021) - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

Huawei EulerOS: Security Advisory for cairo (EulerOS-SA-2021-2048)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.6.0 : grub2 (EulerOS-SA-2021-2001)

According to the versions of the grub2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in grub2 in versions prior to 2.06. Setparamprefix in the menu rendering code performs a length...

EulerOS Virtualization for ARM 64 3.0.6.0 : cairo (EulerOS-SA-2021-2017)

According to the version of the cairo packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provi...

fwupd security update

An update is available for fwupd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The fwupd packages provide a service that allows session software to update...

Huawei EulerOS: Security Advisory for cairo (EulerOS-SA-2021-1977)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : cairo (EulerOS-SA-2021-1977)

According to the version of the cairo packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to...