ROOT-OS-DEBIAN-12-CVE-2025-23158 CVE-2025-23158 in rootio-linux - Patched by Root

Root has patched CVE-2025-23158 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-UBUNTU-2204-CVE-2025-23158 CVE-2025-23158 in rootio-linux - Patched by Root

Root has patched CVE-2025-23158 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

BELL-CVE-2026-23158

Bulletin has no description...

CVE-2026-23158

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

CVE-2026-23158

creationtimestamp| type| source ---|---|--- 2026-02-14 16:55:11+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116070030464999464...

CVE-2026-23158 gpio: virtuser: fix UAF in configfs release path

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

Ubuntu: Security Advisory (USN-8028-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-23158

creationtimestamp| type| source ---|---|--- 2025-08-26 18:17:02+00:00| seen| Telegram/x-vkPT-OgSWTNBeVbXK0CW1W2Cm0loHPdYKcyCqcS6mWIh4...

CVE-2025-23158 affecting package kernel for versions less than 6.6.92.2-1

CVE-2025-23158 affecting package kernel for versions less than 6.6.92.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-23158

The CVE-2025-23158 vulnerability affects the Linux kernel media: venus: hfi queue handling, where a firmware-modified large qsize can cause an OOB write when a new_wr_idx is not validated. The issue originates in reading/writing the shared queue (qhdr->q_size) and can lead to an out-of-bounds ...

CVE-2025-23158 media: venus: hfi: add check to handle incorrect queue size

In the Linux kernel, the following vulnerability has been resolved: media: venus: hfi: add check to handle incorrect queue size qsize represents size of shared queued between driver and video firmware. Firmware can modify this value to an invalid large value. In such situation, emptyspace will be...

CVE-2025-23158 media: venus: hfi: add check to handle incorrect queue size

In the Linux kernel, the following vulnerability has been resolved: media: venus: hfi: add check to handle incorrect queue size qsize represents size of shared queued between driver and video firmware. Firmware can modify this value to an invalid large value. In such situation, emptyspace will be...

CVE-2023-23158

A stored cross-site scripting XSS vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the message parameter on the enquiry page...

CVE-2023-23158

CVE-2023-23158 refers to a stored cross-site scripting (XSS) vulnerability in the Art Gallery Management System Project v1.0. The issue allows an attacker to execute arbitrary web scripts or HTML by injecting a crafted payload into the message parameter on the enquiry page. The PT-2023-18865 entr...

SUSE CVE-2021-23158

A flaw was found in htmldoc in v1.9.12. Double-free in function pspdfexport,in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service...

CVE-2022-23158

CVE-2022-23158 affects Dell Wyse Device Agent (version 14.6.1.4 and earlier). A local authenticated user with standard privileges could exploit a data-exposure flaw to obtain incorrect port information and connect to a valid WMS server, exposing sensitive information. Public details in NVD/NCSC n...

CVE-2021-23158

CVE-2021-23158 : In HTMLDOC v1.9.12, a double-free in pspdf_export() (ps-pdf.cxx) may cause a write-what-where condition, enabling arbitrary code execution and denial of service. Affected component: HTMLDOC PDF export path; root cause: memory management error (double-free). Impact: remote code ex...

CVE-2022-23158

Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. A local authenticated user with standard privilege could potentially exploit this vulnerability and provide incorrect port information and get connected to valid WMS server...

Mageia: Security Advisory (MGASA-2021-0332)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 2700-1] htmldoc security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2700-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta July 01, 2021 https://wiki.debian.org/LTS - -----------------------------------------------------------------------...