Linux Distros Unpatched Vulnerability : CVE-2026-1220

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race in V8. CVE-2026-1220 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenable, Inc...

Huawei EulerOS: Security Advisory for docker-runc (EulerOS-SA-2026-1220)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 8 : php:8.2 (ALSA-2026:1412)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:1412 advisory. php: pgsql extension does not check for errors during escaping CVE-2025-1735 php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace...

RockyLinux 9 : php:8.2 (RLSA-2026:1409)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:1409 advisory. php: pgsql extension does not check for errors during escaping CVE-2025-1735 php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace...

Fedora 42 : chromium (2026-78ff346bb0)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-78ff346bb0 advisory. Update to 144.0.7559.96 CVE-2026-1220: Race in V8 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora: Security Advisory (FEDORA-2026-78ff346bb0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-b4b553ec05)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : chromium (2026-b4b553ec05)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-b4b553ec05 advisory. Update to 144.0.7559.96 CVE-2026-1220: Race in V8 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Chromium: CVE-2026-1220 Race in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Debian: Security Advisory (DSA-6108-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for chromium (moderate)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0028-1 Rating: moderate References: 1256938 1257011 Cross-References: CVE-2026-1220 Affected Products: openSUSE Backports SLE-15-SP7 An update that solves one vulnerability and has one errata is now available...

[SECURITY] [DSA 6108-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6108-1 [email protected] https://www.debian.org/security/ Andres Salomon January 22, 2026 https://www.debian.org/security/faq -...

SUSE CVE-2026-1220

unknown...

CVE-2026-1220

creationtimestamp| type| source ---|---|--- 2026-01-21 08:31:39+00:00| seen| https://gist.github.com/Darkcrai86/939043d928607586da369730737e8c8f 2026-01-21 09:28:17+00:00| seen| https://bsky.app/profile/undercodenews.bsky.social/post/3mcwe7o6tm622 2026-01-21 16:30:31+00:00| seen|...

EUVD-2026-1220

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37...

USN-7648-3: PHP regression

USN-7648-2 fixed vulnerabilities in PHP. The patch for CVE-2025-1735 caused a regression in php7.0, php7.2 and php7.4. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that PHP incorrectly handled certain hostnames containing null...

CVE-2025-1220 affecting package php for versions less than 8.3.23-1

CVE-2025-1220 affecting package php for versions less than 8.3.23-1. A patched version of the package is available...

Medium: php8.3

Issue Overview: fsockopen doesn't regard hostname as well, hostname is terminated at the null byte. This can cause Server Side Request Forgery in general case. CVE-2025-1220 Missing error checking could result in SQL injection and missing error handling could lead to crashes due to null pointer...

Medium: php8.2

Issue Overview: fsockopen doesn't regard hostname as well, hostname is terminated at the null byte. This can cause Server Side Request Forgery in general case. CVE-2025-1220 Missing error checking could result in SQL injection and missing error handling could lead to crashes due to null pointer...

CVE-2025-1220 affecting package php for versions less than 8.1.33-1

CVE-2025-1220 affecting package php for versions less than 8.1.33-1. An upgraded version of the package is available that resolves this issue...