GLSA-200502-07 : OpenMotif: Multiple vulnerabilities in libXpm

The remote host is affected by the vulnerability described in GLSA-200502-07 OpenMotif: Multiple vulnerabilities in libXpm Multiple vulnerabilities, such as buffer overflows, out of bounds memory access or directory traversals, have been discovered in libXpm that is shipped as a part of the X...

nginx 1.3.0 < 1.28.2 / 1.29.x < 1.29.5 SSL Upstream Injection

According to its Server response header, the installed version of nginx is 1.3.0 prior to 1.28.2, or 1.29.x prior to 1.29.5. It is, therefore, affected by the following issue : - A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS...

FreeBSD : electron22 -- multiple vulnerabilities (770d88cc-f6dc-4385-bdfe-497f8080c3fb)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 770d88cc-f6dc-4385-bdfe-497f8080c3fb advisory. - Out of bounds read in WebRTC in Google Chrome prior to 110.0.5481.77 allowed a remote attack...

Oracle Linux 7 : glibc (ELSA-2022-9358)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9358 advisory. - The deprecated compatibility function svcunixcreate in the sunrpc module of the GNU C Library aka glibc through 2.34 copies its path argument on the...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-013 (ALASKERNEL-5.10-2022-013)

The version of kernel installed on the remote host is prior to 5.10.109-104.500. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2022-013 advisory. A use-after-free flaw was found in the Linux kernel's sound subsystem in the way a user triggers...

RHEL 8 : thunderbird (RHSA-2022:1326)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:1326 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.8.0. Security Fixes: Mozilla:...

EulerOS 2.0 SP9 : kernel (EulerOS-SA-2022-1308)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In unixscmtoskb of afunix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege wi...

GLSA-202107-13 : GLib: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202107-13 GLib: Multiple vulnerabilities Multiple vulnerabilities have been discovered in GLib. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...

MobileIron Core Log4Shell Direct Check (CVE-2021-44228)

Binary data mobileironlog4shell.nbin...

RHEL 8 : kernel (RHSA-2022:0072)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0072 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fuse: fusedogetattr calls makebadinode ...

CentOS 8 : openssl (CESA-2021:5226)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:5226 advisory. - openssl: Read buffer overruns processing ASN.1 strings CVE-2021-3712 Note that Nessus has not tested for this issue but has instead relied only on the...

CentOS 8 : java-1.8.0-openjdk (CESA-2021:2776)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:2776 advisory. - OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host Networking, 8258432 CVE-2021-2341 - OpenJDK: Incorrect verificati...

Security Updates for Microsoft Office Products (July 2021)

The Microsoft Office Products are missing security updates. It is, therefore, affected by a security feature bypass vulnerability. An attacker can exploit this and bypass the security feature and perform unauthorized actions compromising the confidentiality and integrity of the system/application...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4681-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4681-1 advisory. Ryan Hall discovered that the Intel 700 Series Ethernet Controllers driver in the Linux kernel did not properly deallocate memory in some conditions. A...

Fedora 32 : mingw-python3 (2020-d42cb01973)

Fix mingw32,64py3build,install macros. ---- Add %mingw32,64py3build,install macros ---- This update backports a fix for CVE-2020-26116. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

EulerOS Virtualization for ARM 64 3.0.2.0 : python (EulerOS-SA-2020-1951)

According to the version of the python packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when...

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4485-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4485-1 advisory. Timothy Michaud discovered that the i915 graphics driver in the Linux kernel did not properly validate user memory locations for the...

openSUSE Security Update : python3 (openSUSE-2020-1258)

This update for python3 fixes the following issues : - bsc1174091, CVE-2019-20907: avoiding possible infinite loop in specifically crafted tarball. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this...

Oracle Linux 6 : java-1.8.0-openjdk (ELSA-2020-2985)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-2985 advisory. 1:1.8.0.262.b10-0 - Update to aarch64-shenandoah-jdk8u262-b10. - Switch to GA mode for final release. - Update release notes for 8u262 release. - Fix...

Amazon Linux 2 : httpd (ALAS-2020-1427)

The version of httpd installed on the remote host is prior to 2.4.43-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1427 advisory. In Apache HTTP Server 2.4.0 to 2.4.41, modproxyftp may use uninitialized memory when proxying to a malicious FTP server...

Apache Tomcat AJP Connector Request Injection (Ghostcat)

Binary data ajplfighostcat.nbin...

Slackware 14.2 : Slackware 14.2 kernel (SSA:2020-008-01)

New kernel packages are available for Slackware 14.2 to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2020-008-01. The text itself is copyright C Slackware Linux, Inc. include'compat.inc...

Photon OS 1.0: Python2 PHSA-2019-1.0-0257

An update of the python2 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0257. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

EulerOS 2.0 SP8 : java-1.8.0-openjdk (EulerOS-SA-2019-1777)

According to the version of the java-1.8.0-openjdk packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - OpenJDK: Infinite loop in RIFF format reader CVE-2018-3214 Note that Tenable Network Security has extracted the preceding description...

Debian DSA-4471-1 : thunderbird - security update

Multiple security issues have been found in Thunderbird which may lead to the execution of arbitrary code if malformed email messages are read. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4471. The text...

SUSE SLED15 / SLES15 Security Update : ImageMagick (SUSE-SU-2019:1523-1)

This update for ImageMagick fixes the following issues : Security issues fixed : CVE-2019-11472: Fixed a denial-of-service in ReadXWDImage bsc1133204. CVE-2019-11470: Fixed a denial-of-service in ReadCINImage bsc1133205. CVE-2019-11506: Fixed a heap-based buffer overflow in the WriteMATLABImage...

Ubuntu 16.04 LTS / 18.04 LTS : Firefox regression (USN-3991-3)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3991-3 advisory. USN-3991-1 fixed vulnerabilities in Firefox, and USN-3991-2 fixed a subsequent regression. The update caused an additional regression that resulted in...

Photon OS 2.0: Linux PHSA-2018-2.0-0109

An update of the linux package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0109. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid122007...

Fedora 27 : kernel / kernel-headers (2018-d77cc41f35)

The 4.18.9 stable update contains a number of important fixes across the tree. ---- The 4.18.8 update contains a number of important fixes across the tree Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

SUSE SLES12 Security Update : kernel (SUSE-SU-2018:2091-1)

This update for the Linux Kernel 4.4.74-9235 fixes several issues. The following security issue was fixed : - CVE-2018-3665: System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially have allowed a local process to infer data from...

Oracle Java SE Multiple Vulnerabilities (July 2018 CPU)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is prior to 10 Update 2, 8 Update 181, 7 Update 191, or 6 Update 201. It is, therefore, affected by multiple vulnerabilities related to the following components : - Concurrency. A difficult to exploit...

Solaris 10 (sparc) : 119783-30

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Bind/Postinstall script for Bind package. The supported version that is affected is 10. Very difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component o...

Fedora 27 : libxml2 (2018-db610fff5b)

Update to 2.9.7 which hopefully fixes all security issues Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Fedora 25 : kernel (2017-38b37120a2)

The 4.13.11 update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

ONVIF Get Device User List

Nessus was able to extract a user list from the ONVIF-enabled device by sending a GetUsers SOAP request to the device include"compat.inc"; if description scriptid103868; scriptversion"1.3"; scriptcvsdate"Date: 2018/05/16 19:05:10"; scriptnameenglish:"ONVIF Get Device User List";...

Fedora 25 : xen (2017-ed735463e3)

Qemu: usb: ohci: infinite loop due to incorrect return value CVE-2017-9330 1457698 Qemu: qemu-nbd: server breaks with SIGPIPE upon client abort CVE-2017-10664 1466466 revised full fix for XSA-226 regressed 32-bit Dom0 or backend domains ---- full fix for XSA-226, replacing workaround drop conflic...

GLSA-201708-01 : BIND: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201708-01 BIND: Multiple vulnerabilities Multiple vulnerabilities have been discovered in BIND. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could send a specially crafted DNS request ...

Debian DSA-3920-1 : qemu - security update

Multiple vulnerabilities were found in qemu, a fast processor emulator : - CVE-2017-9310 Denial of service via infinite loop in e1000e NIC emulation. - CVE-2017-9330 Denial of service via infinite loop in USB OHCI emulation. - CVE-2017-9373 Denial of service via memory leak in IDE AHCI emulation....

openSUSE Security Update : xen (openSUSE-2017-4)

This updates xen to version 4.5.5 to fix the following issues : - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...

Ubuntu 12.04 LTS : openjdk-6 vulnerabilities (USN-2885-1)

Multiple vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. CVE-2016-0483, CVE-2016-0494 A...

Oracle Linux 6 / 7 : java-1.8.0-openjdk (ELSA-2015-1919)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1919 advisory. 1:1.8.0.65-0.b17 - October 2015 security update to u65b17. - Add script for generating OpenJDK tarballs from a local Mercurial tree. - Update...

F5 Networks BIG-IP : OpenSSL vulnerability (SOL16139) (FREAK)

The ssl3getkeyexchange function in s3clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORTRSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role. C Tenable...

CodeMeter < 5.20 Local Privilege Escalation Vulnerability

According to its self-reported version, the CodeMeter WebAdmin server installed on the remote host is prior to 5.20a 5.20.1458.500. It is affected by insecure read/write permissions for the 'codemeter.exe' service, which a local attacker can exploit to gain elevated privileges via a trojan horse...

OracleVM 2.2 : xen (OVMSA-2013-0092)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/AMD: work around erratum 793 XSA-82 Jan Beulich 17884839 CVE-2013-6885 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleVM Security...

RHEL 7 : java-1.7.1-ibm (RHSA-2014:1042)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1042 advisory. IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes sever...

Mandriva Linux Security Advisory : openssl (MDVSA-2014:158)

Multiple vulnerabilities has been discovered and corrected in openssl : A flaw in OBJobj2txt may cause pretty printing functions such as X509nameoneline, X509nameprintex et al. to leak some information from the stack. Applications may be affected if they echo pretty printing output to the attacke...

Splunk 6.x < 6.0.3 Multiple OpenSSL Vulnerabilities (Heartbleed)

According to its version number, the Splunk Web hosted on the remote web server is 6.x prior to 6.0.3. It is, therefore, affected by multiple OpenSSL-related vulnerabilities : - A flaw exists with the OpenSSL version being used by Splunk with the 'ssl3takemac' in 'ssl/s3both.c'. This allows a...

ProFTPD TELNET IAC Escape Sequence Remote Buffer Overflow

The remote ProFTP daemon is susceptible to an overflow condition. The TELNETIAC escape sequence handling fails to properly sanitize user- supplied input resulting in a stack overflow. With a specially crafted request, an unauthenticated, remote attacker could potentially execute arbitrary code. C...

Fedora 18 : kernel-3.10.12-100.fc18 (2013-17010)

The 3.10.12 stable update contains a number of important fixes across the tree. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

RHEL 6 : glibc (RHSA-2010:0872)

Updated glibc packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...