OPENSUSE-SU-2026:10880-1 libyang-devel-3.13.6-3.1 on GA media

These are all security issues fixed in the libyang-devel-3.13.6-3.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10868-1 libyang-devel-3.13.6-2.1 on GA media

These are all security issues fixed in the libyang-devel-3.13.6-2.1 package on the GA media of openSUSE Tumbleweed...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002266)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002266 advisory. Race condition in the inetfragintern function in net/ipv4/inetfragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service...

CVE-2017-16810

Cross-site scripting XSS vulnerability in the All Variables tab in Octopus Deploy 3.4.0-3.13.6 fixed in 3.13.7 allows remote attackers to inject arbitrary web script or HTML via the Variable Set Name parameter...

WordPress User Profile Builder plugin <= 3.13.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Profile Builder versions = 3.13.6...

Matomo Analytics < 3.13.6 LDAP Plugin Vulnerability

Matomo Analytics before version 3.13.6 is prone to an unspecified vulnerability in the LDAP plugin. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Octopus Deploy 'Variable Set Name' Parameter Cross-Site Scripting Vulnerability

Octopus Deploy is an automation tool from Octopus Deploy Australia for development and deployment of . A cross-site scripting vulnerability exists in the All Variables tag in Octopus Deploy versions 3.4.0-3.13.6. A remote attacker can exploit this vulnerability to inject arbitrary web script or...

kernel: net: potential information leak when ubuf backed skbs are skb_zerocopy()ied

Use-after-free vulnerability in the nfqnlzcopy function in net/netfilter/nfnetlinkqueuecore.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the...

CVE-2014-0131

Use-after-free vulnerability in the skbsegment function in net/core/skbuff.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation...

UBUNTU-CVE-2014-2568

Use-after-free vulnerability in the nfqnlzcopy function in net/netfilter/nfnetlinkqueuecore.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the...

CVE-2014-0102

The keyringdetectcycleiterator function in security/keys/keyring.c in the Linux kernel through 3.13.6 does not properly determine whether keyrings are identical, which allows local users to cause a denial of service OOPS via crafted keyctl commands...

CVE-2014-0049

Buffer overflow in the completeemulatedmmio function in arch/x86/kvm/x86.c in the Linux kernel before 3.13.6 allows guest OS users to execute arbitrary code on the host OS by leveraging a loop that triggers an invalid memory copy affecting certain cancelworkitem data...

UBUNTU-CVE-2014-0101

The sctpsfdo51Dce function in net/sctp/smstatefuns.c in the Linux kernel through 3.13.6 does not validate certain authenable and authcapable fields before making an sctpsfauthenticate call, which allows remote attackers to cause a denial of service NULL pointer dereference and system crash via an...

PT-2014-1009 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.13.6 Description: The issue is related to a buffer overflow in the complete emulated mmio function, which allows guest OS users to execute arbitrary code on the host OS. This is achieved by leveraging a loop...