Security update for kubernetes1.23

This update for kubernetes1.23 fixes the following issues CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1265740. CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY frame parsing leads to denial of service...

Fedora: Security Advisory (FEDORA-2026-a48b5f36ec)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-2315 vulnerabilities

Vulnerabilities for packages: chromium...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0052-1 Rating: important References: 1258116 1258185 1258199 Cross-References: CVE-2026-2313 CVE-2026-2314 CVE-2026-2315 CVE-2026-2316 CVE-2026-2317 CVE-2026-2318 CVE-2026-2319 CVE-2026-2320 CVE-2026-2321...

chromedriver-145.0.7632.45-1.1 on GA media (moderate)

chromedriver-145.0.7632.45-1.1 on GA media Announcement ID: openSUSE-SU-2026:10201-1 Rating: moderate Cross-References: CVE-2026-2313 CVE-2026-2314 CVE-2026-2315 CVE-2026-2316 CVE-2026-2317 CVE-2026-2318 CVE-2026-2319 CVE-2026-2320 CVE-2026-2321 CVE-2026-2322 CVE-2026-2323 CVE-2026-2441 Affected...

Debian dsa-6135 : chromium - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6135 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6135-1 [email protected]...

CVE-2026-2315

creationtimestamp| type| source ---|---|--- 2026-02-12 08:03:43+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3menjqozunf2m 2026-02-12 14:10:30+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3meo6aknzuu2e 2026-02-12 23:06:27+00:00| seen|...

CVE-2026-2315

An inappropriate implementation flaw was found in the WebGPU component of the Chromium browser...

CVE-2026-2315

Inappropriate implementation in WebGPU in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

Linux Distros Unpatched Vulnerability : CVE-2026-2315

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in WebGPU in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to potentially perform out of bounds memory access via ...

MiracleLinux 7 : git-1.8.3.1-6.el7.1 (AXSA:2016-167:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-167:01 advisory. Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full...

MiracleLinux 4 : git-1.7.1-4.AXS4.1 (AXSA:2016-166:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-166:01 advisory. Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full...

EUVD-2026-2315

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Reset ttaskcdb pointer in error case If allocation of cmd-ttaskcdb fails, it remains NULL but is later dereferenced in the 'err' path. In case of error, reset NULL ttaskcdb value to point at the default fixed-size...

EUVD-2008-5010

Malware in sbrugna...

CVE-2021-2315

Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2020-2315

Jenkins Visualworks Store Plugin 1.1.3 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

CVE-2019-2315

While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

CVE-2013-2315

data/class/pages/forgot/LCPageForgot.php in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 does not properly validate the input to the password reminder function, which allows remote attackers to obtain sensitive information via a crafted request...

CVE-2024-2315

creationtimestamp| type| source ---|---|--- 2024-11-12 15:11:05+00:00| seen| https://infosec.exchange/users/cve/statuses/113470620588502602 2024-11-12 17:12:53+00:00| seen| https://t.me/cvedetector/10631...

CVE-2024-2315 SMM arbitrary code execution in Overclock

APTIOV contains a vulnerability in BIOS where may cause Improper Access Control by a local attacker. Successful exploitation of this vulnerability may lead to unexpected SPI flash modifications and BIOS boot kit launches, also impacting the availability...