12 matches found
@3onedata/alsatian (>=0.1.8-fix.3 <=0.1.8-fix.5), @agimon-ai/browse-tool (>=0.2.0 <=0.5.5) +212 more potentially affected by CVE-2026-39410 via hono (>=4.0.0 <=4.12.10)
hono NPM version =4.0.0, =0.1.8-fix.3, =0.2.0, =0.2.0, =0.4.0, =0.2.0, =2026.4.4, =1.0.2, =0.0.1, =1.7.2, =1.7.1, =0.2.1, =0.6.1, =0.5.2, =1.0.1-beta.0, =1.0.1-beta.7 and more Source cves: CVE-2026-39410 Source advisory: SNYK:JS-HONO-15928832...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003264)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003264 advisory. The atyfbioctl function in drivers/video/fbdev/aty/atyfbbase.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002639)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002639 advisory. The initnewcontext function in arch/x86/include/asm/mmucontext.h in the Linux kernel before 4.12.10 does not correctly handle errors from LDT table allocation when...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002552)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002552 advisory. The mminit function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the -exefile member of a new process's mmstruct, allowing a local attacker to...
SUSE CVE-2017-14051
An integer overflow in the qla2x00sysfswriteoptromctl function in drivers/scsi/qla2xxx/qlaattr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service memory corruption and system crash by leveraging root access...
Fedora 32 : 2:samba (2020-2e1a1489be)
Update to Samba 4.12.10 ---- Update to Samba 4.12.9 - Security fixes for CVE-2020-14318, CVE-2020-14323 and CVE-2020-14383 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean...
UBUNTU-CVE-2017-17053
The initnewcontext function in arch/x86/include/asm/mmucontext.h in the Linux kernel before 4.12.10 does not correctly handle errors from LDT table allocation when forking a new process, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a...
CVE-2017-17052
The mminit function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the -exefile member of a new process's mmstruct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program...
UBUNTU-CVE-2017-14051
An integer overflow in the qla2x00sysfswriteoptromctl function in drivers/scsi/qla2xxx/qlaattr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service memory corruption and system crash by leveraging root access...
PT-2017-14685 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.12.10 Description: A local attacker can achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program due to the mm init function in kernel/fork.c not clearing the...
PT-2017-14686 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.12.10 Description: The issue arises from the init new context function in the Linux kernel, which does not correctly handle errors from LDT table allocation when forking a new process. This allows a local...
PT-2017-13022
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.12.10 Linux kernel versions prior to 4.9 for KASLR protection mechanism bypass Description The issue allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechani...