The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign,     aligned_alloc) in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could     consequently result in a heap corruption. Note that the attacker must have control over both, the size as     well as the alignment arguments of the memalign function to be able to exploit this. The size parameter     must be close enough to PTRDIFF_MAX so as to overflow size_t along with the large alignment argument. This     limits the malicious inputs for the alignment for memalign to the range [1<<62+ 1, 1<<63] and exactly     1<<63 for posix_memalign and aligned_alloc. Typically the alignment argument passed to such functions is a     known constrained quantity (e.g. page size, block size, struct sizes) and is not attacker controlled,     because of which this may not be easily exploitable in practice. An application bug could potentially     result in the input alignment being too large, e.g. due to a different buffer overflow or integer overflow     in the application or its dependent libraries, but that is again an uncommon usage pattern given typical     sources of alignments. (CVE-2026-0861)

Note that Nessus relies on the presence of the package as reported by the vendor.

Detections

Analytics

Linux Distros Unpatched Vulnerability : CVE-2026-0861

high Nessus Plugin ID 286817

Version 1.10

Version 1.9

Version 1.8

Version 1.7

Version 1.6

Version 1.5

Version 1.4

Version 1.3

Version 1.2

Version 1.10 Feb 10, 2026, 11:15 AM Exploit attributes ("Exploit available" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202602101115
Version 1.9 Feb 8, 2026, 5:16 PM Plugin metadata Plugin Feed: 202602081716
Version 1.8 Feb 4, 2026, 2:23 PM Detection (updated detection logic) Plugin metadata Plugin Feed: 202602041423
Version 1.7 Feb 4, 2026, 6:31 AM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:U/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:U/RC:C") Detection (updated detection logic) Plugin metadata Plugin Feed: 202602040631
Version 1.6 Feb 3, 2026, 10:27 PM Detection (updated detection logic) Plugin metadata Plugin Feed: 202602032227
Version 1.5 Jan 21, 2026, 5:00 PM Detection (updated detection logic) Plugin metadata Plugin Feed: 202601211700
Version 1.4 Jan 21, 2026, 10:50 AM CVSS metrics ("CVSSv2 score" set to 9.0) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:P/A:P") Detection (updated detection logic) Plugin metadata Plugin Feed: 202601211050
Version 1.3 Jan 17, 2026, 7:48 AM Plugin metadata Plugin Feed: 202601170748
Version 1.2 Jan 16, 2026, 10:12 PM Detection (updated detection logic) New Plugin metadata Plugin Feed: 202601162212