MiracleLinux 3 : kernel-2.6.18-348.6.AXS3 (AXSA:2013-580:06)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-580:06 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002330)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002330 advisory. Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers t...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002197)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002197 advisory. Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers t...

Breaking Oracle Database VPD Through DDL Permissions In 19c

Title: Breaking Oracle Database VPD Virtual Private Database Through DDL Permissions in 19c Product: Database Manufacturer: Oracle Affected Versions: 19c Tested Versions: 19c Risk Level: Low Author of Advisory: Emad Al-Mousa Vulnerability Details: By design VPD security feature protects against a...

SUSE CVE-2013-1929

Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via crafted firmware that specifies a long string in the...

openSUSE: Security Advisory for qemu (openSUSE-SU-2021:1461-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:1461-1 Rating: important References: 1189234 1189702 1189938 1190425 Cross-References: CVE-2021-3713 CVE-2021-3748 CVSS scores: CVE-2021-3713 SUSE: 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2021-3748...

SUSE: Security Advisory (SUSE-SU-2021:3604-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2021:3605-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS USB Attached SCSI device emulation bsc1189702 - CVE-2021-3748: Fix heap use-after-free in virtionetreceivercu bsc1189938 Non-security issues fixed: - Add transfer length item in...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:3604-1 Rating: important References: 1189234 1189702 1189938 1190425 Cross-References: CVE-2021-3713 CVE-2021-3748 CVSS scores: CVE-2021-3713 SUSE: 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2021-3748...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:3605-1 Rating: important References: 1189234 1189702 1189938 1190425 Cross-References: CVE-2021-3713 CVE-2021-3748 CVSS scores: CVE-2021-3713 SUSE: 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2021-3748...

CentOS Update for bpftool CESA-2019:3979 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : kernel (CESA-2019:3979)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Cross site scripting

In System Management Module SMM versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-site scripting...

CVE-2018-16096

In System Management Module SMM versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-site scripting...

CVE-2018-16096 System Management Module Vulnerabilities

In System Management Module SMM versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-site scripting...

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2013:1645 Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the fifth regul...

Kernel: tg3: buffer overflow in VPD firmware parsing

Heap-based buffer overflow in the tg3readvpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via crafted firmware that specifies a long string in the...

Important: Red Hat Security Advisory: Red Hat Enterprise Linux 6 kernel update

Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the fifth regular update. The Red Hat Security Response Team has...

Oracle Linux 5 : kernel (ELSA-2013-1034)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-1034 advisory. - Revert: kernel kmod: make requestmodule killable Frantisek Hrbata 858752 858753 CVE-2012-4398 - Revert: kernel kmod: avoid deadlock from recursive km...