Linux Distros Unpatched Vulnerability : CVE-2026-40046

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for CVE-2025-66168: MQTT control packet...

Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT vulnerable to Integer Overflow or Wraparound

Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE-2025-66168: MQTT control packet remaining length field is not properly validated" was only applied to 5.19.2 and future 5.19.x releases but was missed for all 6.0.0+...

at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +1035 more potentially affected by CVE-2026-33227 via org.apache.activemq:activemq-broker (>=5.10.0 <=5.19.2)

org.apache.activemq:activemq-broker MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2026-33227 Source advisory:...

at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +1035 more potentially affected by CVE-2026-33227 via org.apache.activemq:activemq-broker (>=5.10.0 <=5.19.2)

org.apache.activemq:activemq-broker MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2026-33227 Source advisory: OSV:GHSA-H2H4-5M64-M27...

OESA-2026-1680 activemq security update

The most popular and powerful open source messaging and Integration Patterns server. Security Fixes: A vulnerability classified as problematic has been found in Apache ActiveMQ Application Server Software.CWE is classifying the issue as CWE-190. The product performs a calculation that can produce...

OESA-2026-1607 activemq security update

The most popular and powerful open source messaging and Integration Patterns server. Security Fixes: A vulnerability classified as problematic has been found in Apache ActiveMQ Application Server Software.CWE is classifying the issue as CWE-190. The product performs a calculation that can produce...

CVE-2025-66168

CVE-2025-66168 concerns an integer overflow in MQTT Remaining Length handling in Apache ActiveMQ. The root cause is improper validation of the MQTT Remaining Length field, which can cause an overflow during decoding of malformed packets, leading to misinterpretation of the payload as multiple MQT...

EUVD-2025-24404

Malicious code in bioql PyPI...

CVE-2025-24511

Improper initialization in the Linux kernel-mode driver for some IntelR I350 Series Ethernet before version 5.19.2 may allow an authenticated user to potentially enable Information disclosure via data exposure...

CVE-2025-24511

Improper initialization in the Linux kernel-mode driver for some IntelR I350 Series Ethernet before version 5.19.2 may allow an authenticated user to potentially enable Information disclosure via data exposure...

CVE-2022-47941

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c omits a kfree call in certain smb2handlenegotiate error conditions, aka a memory leak...

CVE-2022-4095

A use-after-free flaw was found in Linux kernel before 5.19.2. This issue occurs in cmdhdlfilter in drivers/staging/rtl8712/rtl8712cmd.c, allowing an attacker to launch a local denial of service attack and gain escalation of privileges. Mitigation To mitigate this issue, prevent the affected modu...

GSD-2022-1005362 drm/fb-helper: Fix out-of-bounds access

drm/fb-helper: Fix out-of-bounds access This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

GSD-2022-1005299 media: imx-jpeg: Align upwards buffer size

media: imx-jpeg: Align upwards buffer size This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

GSD-2022-1005203 sched, cpuset: Fix dl_cpu_busy() panic due to empty cs->cpus_allowed

sched, cpuset: Fix dlcpubusy panic due to empty cs-cpusallowed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

GSD-2022-1005172 Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression

Bluetooth: L2CAP: Fix l2capglobalchanbypsm regression This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

PT-2022-33573 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to the erofs filesystem in the Linux Kernel, where all waiters are woken up after the z erofs lzma head is ready. The actual impact and attack plausibility of this issue...

PT-2022-33414 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to the ASoC Intel avs module, where a lookup table is used to create modules. The actual impact and attack plausibility have not yet been proven. Recommendations: For...

PT-2022-33545 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to a problem in the crypto: hisilicon/sec component where the system does not sleep when in softirq. The actual impact and attack plausibility have not yet been proven...

PT-2022-33566 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue concerns the handling of periods in the pwm: lpc18xx component. It was introduced in version v4.3 and fixed in version v5.19.2. The actual impact and attack plausibility have not y...