SUSE CVE-2026-23459

In the Linux kernel, the following vulnerability has been resolved: iptunnel: adapt iptunnelxmitstats to NETDEVPCPUSTATDSTATS Blamed commits forgot that vxlan/geneve use udptunnel6xmitskb which call iptunnelxmitstats. iptunnelxmitstats was assuming tunnels were only using NETDEVPCPUSTATTSTATS...

UBUNTU-CVE-2026-23459

In the Linux kernel, the following vulnerability has been resolved: iptunnel: adapt iptunnelxmitstats to NETDEVPCPUSTATDSTATS Blamed commits forgot that vxlan/geneve use udptunnel6xmitskb which call iptunnelxmitstats. iptunnelxmitstats was assuming tunnels were only using NETDEVPCPUSTATTSTATS...

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...

PT-2025-50160

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions affected versions not specified Description The issue involves multiple local privilege escalation flaws within Microsoft Windows. A heap-based buffer overflow exists in Windows Win32K - GRFX, potentially allowing an...

EUVD-2014-3660

Malware in sbrugna...

EUVD-2025-2616

Malicious code in bioql PyPI...

AZL-56357 CVE-2025-21667 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: iomap: avoid avoid truncating 64-bit offset to 32 bits on 32-bit kernels, iomapwritedelallocscan was inadvertently using a 32-bit position due to folionextindex returning an unsigned long. This could lead to an infinite loop when...

UBUNTU-CVE-2025-21665

In the Linux kernel, the following vulnerability has been resolved: filemap: avoid truncating 64-bit offset to 32 bits On 32-bit kernels, folioseekholedata was inadvertently truncating a 64-bit value to 32 bits, leading to a possible infinite loop when writing to an xfs filesystem...

CVE-2024-41020

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...

UBUNTU-CVE-2024-41020

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...

CVE-2024-41020 filelock: Fix fcntl/close race recovery compat path

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...

CentOS 6 : kernel (CESA-2019:0717)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2019:0717 An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Linux Kernel 4.12 Race Condition Vulnerability

A race condition was found in the Linux kernel versions 3.14-rc1 through 4.12. The race happens between threads of inotifyhandleevent and vfsrename while running the rename operation against the same file. The next slab data or the slab's free list pointer can be corrupted with attacker-controlle...

kernel: infoleak if print-fatal-signals=1

The printfatalsignal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and might allow local use...

Ghostscript 8.0.1/8.15 - 'zseticcspace()' Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/28017/info Ghostscript is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of th...