48 matches found
CVE-2026-41064 AVideo has an incomplete fix for CVE-2026-33502 (Command Injection)
WWBN AVideo is an open source video platform. In versions up to and including 29.0, an incomplete fix for AVideo's test.php adds escapeshellarg for wget but leaves the filegetcontents and curl code paths unsanitized, and the URL validation regex /^http/ accepts strings like httpevil.com. Commit...
Azure Linux 3.0 Security Update: kernel (CVE-2024-41064)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41064 advisory. - In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: avoid possible crash when...
Linux Distros Unpatched Vulnerability : CVE-2024-41064
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/eeh: avoid possible crash when edev-pdev changes If a PCI device is removed during eehpereportedev, edev-pdev will change and can cause a crash, hold th...
Moderate: Red Hat Security Advisory: kernel:5.14.0 security update
An update for the kernel:5.14.0 module is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
RHEL 9 : kernel:5.14.0 (RHSA-2024:10942)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10942 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nouveau: lock the client obje...
Ubuntu: Security Advisory (USN-7100-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 9 : kernel (RHSA-2024:8613)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8613 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ovl: fix use after free in...
CVE-2024-41064 affecting package kernel for versions less than 6.6.47.1-1
CVE-2024-41064 affecting package kernel for versions less than 6.6.47.1-1. An upgraded version of the package is available that resolves this issue...
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:2940-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2940-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following securi...
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2901-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2901-1 advisory. The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were...
SUSE-SU-2024:2901-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-42096: x86: stop playing stack games in profilepc bsc1228633. -...
SUSE-SU-2024:2892-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-42096: x86: stop playing stack games in profilepc bsc1228633. -...
Debian dsa-5747 : affs-modules-5.10.0-29-4kc-malta-di - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5747 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5747-1 [email protected] https://www.debian.org/securit...
Mageia: Security Advisory (MGASA-2024-0278)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2024-41064
In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: avoid possible crash when edev-pdev changes If a PCI device is removed during eehpereportedev, edev-pdev will change and can cause a crash, hold the PCI rescan/remove lock while taking a copy of edev-pdev-bus...
CVE-2024-41064
creationtimestamp| type| source ---|---|--- 2024-07-29 17:58:13+00:00| seen| https://t.me/cvedetector/1868 2025-08-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07...
CVE-2024-41064
In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: avoid possible crash when edev-pdev changes If a PCI device is removed during eehpereportedev, edev-pdev will change and can cause a crash, hold the PCI rescan/remove lock while taking a copy of edev-pdev-bus...
Exploit for Classic Buffer Overflow in Apple Ipados
vulnerabilidad-LibWebP-CVE-2023-41064 longitudes de código par...
Exploit for Out-of-bounds Write in Google Chrome
CVE-2023-4863/CVE-2023-41064 A POC for CVE-2023-48...
Adobe, Apple, Google & Microsoft Patch 0-Day Bugs
Microsoft today issued software updates to fix at least five dozen security holes in Windows and supported software, including patches for two zero-day vulnerabilities that are already being exploited. Also, Adobe, Google Chrome and Apple iOS users may have their own zero-day patching to do. On...