OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0115) (Stack Clash)

The remote OracleVM system is missing necessary patches to address critical security updates : - mm: fix new crash in unmappedareatopdown Hugh Dickins Orabug: 26326143 CVE-2017-1000364 - mm: larger stack guard gap, between vmas Hugh Dickins Orabug: 26326143 CVE-2017-1000364 %NASLMINLEVEL 70300 C...

Amazon Linux AMI : nss / nss-util (ALAS-2017-825)

An out-of-bounds write flaw was found in the way NSS performed certain Base64-decoding operations. An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash or execute arbitrary code, using the permissions of the user running an...

Fedora 25 : kernel (2017-e6012e74b6)

The 4.9.5 stable kernel update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

RHEL 5 : kernel (RHSA-2016:2127)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:2127 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A race condition was found in the way the Linux...

RHEL 6 / 7 : gnutls (RHSA-2016:0012) (SLOTH)

Updated gnutls packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

Amazon Linux AMI : openssl (ALAS-2015-614)

A NULL pointer derefernce flaw was found in the way OpenSSL verified signatures using the RSA PSS algorithm. A remote attacked could possibly use this flaw to crash a TLS/SSL client using OpenSSL, or a TLS/SSL server using OpenSSL if it enabled client authentication. CVE-2015-3194 A memory leak...

CentOS 6 : kernel (CESA-2015:1272)

Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the seventh regular update. Red Hat Product Security has rated thi...

PHP 5.4.x < 5.4.39 Multiple Vulnerabilities

According to its banner, the version of PHP 5.4.x installed on the remote host is prior to 5.4.39. It is, therefore, affected by multiple vulnerabilities : - A use-after-free error exists related to function 'unserialize', which can allow a remote attacker to execute arbitrary code. Note that thi...

RHEL 5 : kernel (RHSA-2013:1860)

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5.9 Extended Update Support. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, whic...

CentOS 6 / 7 : openssl (CESA-2014:1652)

Updated OpenSSL packages that contain a backported patch to mitigate the CVE-2014-3566 issue known as SSLv3 Padding Oracle On Downgraded Legacy Encryption Vulnerability POODLE, and fixed two security issues that are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has...

Amazon Linux AMI : java-1.7.0-openjdk (ALAS-2014-327)

An input validation flaw was discovered in the medialib library in the 2D component. A specially crafted image could trigger Java Virtual Machine memory corruption when processed. A remote attacker, or an untrusted Java application or applet, could possibly use this flaw to execute arbitrary code...

Oracle Linux 6 : java-1.7.0-openjdk (ELSA-2014-0406)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-0406 advisory. 1.7.0.51-2.4.7.1.0.1.el65 - Update DISTRONAME in specfile 1.7.0.51-2.4.7.1.el6 - regenerated sources to fix TCK failure - Resolves: rhbz1085002...

FileZilla Client < 3.7.3 Multiple Vulnerabilities

The version of FileZilla Client on the remote host is a version prior to 3.7.3. As such, it is affected by multiple vulnerabilities : - A buffer underrun vulnerability exists that occurs when verifying a DSA signature when using SFTP. CVE-2013-4206 - A remote buffer overflow vulnerability exists...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel Security (ELSA-2013-2519)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-2519 advisory. - KVM: x86: Convert MSRKVMSYSTEMTIME to use gfntohvacache functions CVE-2013-1797 Andy Honig Orabug: 16711660 CVE-2013-1797 - Bluetooth: Fix...

Fedora 18 : seamonkey-2.14-1.fc18 (2012-18894)

Update to 2.14 Fix CVE-2012-5830, CVE-2012-5833, CVE-2012-5835, CVE-2012-4212-4218, CVE-2012-5829, CVE-2012-5839, CVE-2012-5840, CVE-2012-5836, CVE-2012-4202, CVE-2012-5842, CVE-2012-5843 and others, see http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for more info. Note that...

Scientific Linux Security Update : seamonkey on SL4.x i386/x86_64

Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey. CVE-2010-3767, CVE-2010-3772, CVE-2010-3776 A flaw was found in th...

Fedora 17 : postgresql-9.1.4-1.fc17 (2012-8924)

Upstream bug fix + security updates, including the fixes for CVE-2012-2143, CVE-2012-2655 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

Mandriva Linux Security Advisory : samba (MDVSA-2012:055)

A vulnerability has been found and corrected in samba : The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers ...

OpenSSH < 4.3 scp Command Line Filename Processing Command Injection

According to its banner, the version of OpenSSH running on the remote host is potentially affected by an arbitrary command execution vulnerability. The scp utility does not properly sanitize user-supplied input prior to using a system function call. A local attacker could exploit this by creating...

RHEL 6 : kernel (RHSA-2011:0836)

Updated kernel packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

TeamViewer Insecure Directory Permissions Privilege Escalation

According to its version number, the TeamViewer install on the remote Windows host is affected by a privilege escalation vulnerability due to insecure file system permissions that are granted during installation. When 'Remote Access' is enabled, it may be possible for an attacker to execute...

Fedora 13 : firefox-3.6.11-1.fc13 / galeon-2.0.7-34.fc13 / gnome-python2-extras-2.25.3-23.fc13 / etc (2010-16593)

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories : http://www.mozilla.org/security/known-vulnerabilities/firefox36.htmlf irefox3.6.11 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox ...

Mandriva Linux Security Advisory : mozilla-thunderbird (MDVSA-2010:126)

Multiple vulnerabilities has been found and corrected in mozilla-thunderbird : Unspecified vulnerability in Mozilla Firefox 3 allows remote attackers to execute arbitrary code via unknown vectors that trigger memory corruption, as demonstrated by Nils during a Pwn2Own competition at CanSecWest 20...

CentOS 3 / 4 / 5 : php (CESA-2010:0040)

Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

SuSE9 Security Update : libpng (YOU Patch Number 12358)

A allocation mistake in libpng's pngread.c has been fixed CVE-2009-0040. The previous update was using an incomplete patch so it needed to be reissued. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

SuSE 11 Security Update : MozillaFirefox (SAT Patch Number 1134)

The Mozilla Firefox 3.0.12 release fixes various bugs and some critical security issues. - Mozilla developers and community members identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory...

Web Application Tests Settings

This script sets options for generic web tests. It does not perform any test by itself. Several scripts use the options set here to test web applications, look for cross-site scripting attacks, SQL injection, etc. in CGIs. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...

Apache Struts 2 devMode Information Disclosure

The remote web server is using Apache Struts 2, a web application framework for developing Java EE web applications. The version of Apache Struts 2 installed on the remote host is configured to operate in development mode devMode. While this environment can help speed up development of web...

Oracle MySQL Server 8.0.x < 8.0.37 (January 2025 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2025 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging OpenSSL. Supported versions that are affected are 8.0.36 and...

Oracle Linux 6 : kernel (ELSA-2022-9781)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9781 advisory. - epoll: Keep a reference on files added to the check list Al Viro CVE-2020-0466 Orabug: 34086960 - fix regression in 'epoll: Keep a reference on files...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.17.1.3)

The version of AOS installed on the remote host is prior to 5.17.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.17.1.3 advisory. - An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocatetracebuff...

EulerOS 2.0 SP10 : expat (EulerOS-SA-2022-1786)

According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - xmltokimpl.c in Expat aka libexpat before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a...

WordPress 5.4.x < 5.4.10 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A stored cross-site scripting XSS vulnerability exists via wpfilterglobalstylespost. - A prototype pollution exists via the Gutenberg wordpress/url package. Note that the...

WordPress 5.9.x < 5.9.2 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A stored cross-site scripting XSS vulnerability exists via wpfilterglobalstylespost. - A prototype pollution exists via the Gutenberg wordpress/url package. Note that the...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9180)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-9180 advisory. - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33876756 CVE-2022-0492 - tee: handle lookup of shm with reference count 0 Jens...

EulerOS 2.0 SP9 : curl (EulerOS-SA-2021-2682)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.T...

MariaDB 10.4.0 < 10.4.22 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.4.22. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.4.22 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.35 and...

Photon OS 4.0: Glibc PHSA-2021-4.0-0095

An update of the glibc package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-4.0-0095. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if descripti...

EulerOS 2.0 SP9 : libxml2 (EulerOS-SA-2021-2275)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint coul...

CentOS 8 : java-11-openjdk (CESA-2021:2781)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:2781 advisory. - OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host Networking, 8258432 CVE-2021-2341 - OpenJDK: Incorrect verificati...

RHEL 7 : java-1.8.0-openjdk (RHSA-2021:2845)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2845 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

EulerOS Virtualization 3.0.2.2 : samba (EulerOS-SA-2021-2168)

According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9308)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9308 advisory. - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860493 CVE-2021-31916 - powerpc/64s: flush L1D after user accesses...

FreeBSD : PostgreSQL server -- two security issues (62da9702-b4cc-11eb-b9c9-6cc21735f730)

The PostgreSQL project reports : Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATE Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an attacker can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can...

Debian DSA-4877-1 : webkit2gtk - security update

The following vulnerabilities have been discovered in the webkit2gtk web engine : - CVE-2020-27918 Liu Long discovered that processing maliciously crafted web content may lead to arbitrary code execution. - CVE-2020-29623 Simon Hunt discovered that users may be unable to fully delete their browsi...

CentOS 8 : nodejs:10 (CESA-2020:2848)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:2848 advisory. - nghttp2: overly large SETTINGS frames can lead to DoS CVE-2020-11080 - nodejs-minimist: prototype pollution allows adding or modifying properties of...

SUSE SLED15 / SLES15 Security Update : openssl-1_1 (SUSE-SU-2020:3721-1)

This update for openssl-11 fixes the following issues : CVE-2020-1971: Fixed a NULL pointer dereference in EDIPARTYNAME bsc1179491. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically cle...

openSUSE Security Update : wpa_supplicant (openSUSE-2020-2059) (KRACK)

This update for wpasupplicant fixes the following issues : Security issue fixed : - CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed : - Enable SAE support jscSLE-14992. - Limit P2PDEVICE name to appropriate ifname size. - Fix wicked wlan...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4427-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4427-1 advisory. It was discovered that the Kvaser CAN/USB driver in the Linux kernel did not properly initialize memory in certain situations. A local attacker could...

EulerOS 2.0 SP2 : sqlite (EulerOS-SA-2020-1624)

According to the versions of the sqlite packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect...