123 matches found
ROOT-OS-UBUNTU-2404-CVE-2025-38546 CVE-2025-38546 in rootio-linux - Patched by Root
Root has patched CVE-2025-38546 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-DEBIAN-11-CVE-2025-38546 CVE-2025-38546 in rootio-linux - Patched by Root
Root has patched CVE-2025-38546 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...
CVE-2025-38546 affecting package kernel for versions less than 5.15.200.1-1
CVE-2025-38546 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
MiracleLinux 9 : curl-7.76.1-23.el9.4 (AXSA:2023-6515:13)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6515:13 advisory. curl: a heap-based buffer overflow in the SOCKS5 proxy handshake CVE-2023-38545 curl: cookie injection with none file CVE-2023-38546 Tenable has...
CVE-2024-38546
creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...
BELL-CVE-2025-38546
Bulletin has no description...
CVE-2025-38546
In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix memory leak of struct clipvcc. ioctlATMARPMKIP allocates struct clipvcc and set it to vcc-userback. The code assumes that vccdestroysocket passes NULL skb to vcc-push when the socket is closed, and then clippush...
NewStart CGSL MAIN 7.02 : curl Multiple Vulnerabilities (NS-SA-2025-0111)
The remote NewStart CGSL host, running version MAIN 7.02, has curl packages installed that are affected by multiple vulnerabilities: - CVE-2023-38546 is a cookie injection vulnerability in the curleasyduphandle, a function in libcurl that duplicates easy handles. When duplicating an easy handle, ...
TencentOS Server 4: curl (TSSA-2023:0330)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0330 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
TencentOS Server 4: curl (TSSA-2024:0354)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0354 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
CVE-2021-38546
CREATIVE Pebble devices through 2021-08-09 allow remote attackers to recover speech signals from an LED on the device, via a telescope and an electro-optical sensor, aka a "Glowworm" attack. The power indicator LED of the speakers is connected directly to the power line, as a result, the intensit...
Alibaba Cloud Linux 3 : 0009: curl (ALINUX3-SA-2024:0009)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0009 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-38546: This flaw allows an attacker to...
Linux Distros Unpatched Vulnerability : CVE-2024-38546
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm: vc4: Fix possible null pointer dereference In vc4hdmiaudioinit ofgetaddress may return NULL which is later dereferenced. Fix this bug by adding NULL check...
Ubuntu: Security Advisory (USN-7009-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: IBM Storage Ceph is vulnerable to External Control of File Name or Path in the RHEL UBI (CVE-2023-38546)
Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. CVE-2023-38546. Vulnerability Details CVEID:CVE-2023-38546 DESCRIPTION: cURL libcurl could allow a remote attacker to bypass security...
Debian dsa-5730 : affs-modules-5.10.0-29-4kc-malta-di - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5730 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5730-1 [email protected] https://www.debian.org/securit...
DEBIAN-CVE-2024-38546
In the Linux kernel, the following vulnerability has been resolved: drm: vc4: Fix possible null pointer dereference In vc4hdmiaudioinit ofgetaddress may return NULL which is later dereferenced. Fix this bug by adding NULL check. Found by Linux Verification Center linuxtesting.org with SVACE...
CVE-2024-38546 drm: vc4: Fix possible null pointer dereference
In the Linux kernel, the following vulnerability has been resolved: drm: vc4: Fix possible null pointer dereference In vc4hdmiaudioinit ofgetaddress may return NULL which is later dereferenced. Fix this bug by adding NULL check. Found by Linux Verification Center linuxtesting.org with SVACE...
CVE-2024-38546
In the Linux kernel, the following vulnerability has been resolved: drm: vc4: Fix possible null pointer dereference In vc4hdmiaudioinit ofgetaddress may return NULL which is later dereferenced. Fix this bug by adding NULL check. Found by Linux Verification Center linuxtesting.org with SVACE...
Security Bulletin: Vulnerabilities in libcurl, cURL and Linux Kernel might affect IBM Storage Copy Data Management
Summary IBM Storage Copy Data Management can be affected by vulnerabilities in libcurl, cURL and Linux Kernel. Vulnerabilities include an attacker could exploit these vulnerabilities to overflow a buffer and execute arbitrary code on the system, to insert cookies at will into a running program, t...