CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due to an integer truncation when computing the length of the ACK record-number list, causing an undersized buffer to be allocated and then overrun. This...

MINI-2R5F-6679-X258

Bulletin has no description...

CVE-2023-6679 vulnerabilities

Vulnerabilities for packages: linux-qemu-melange, linux-vmware, linux-qemu...

CVE-2025-6679

The Bit Form builder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 2.20.4. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote co...

CVE-2024-6679

A vulnerability classified as critical has been found in witmy my-springsecurity-plus up to 2024-07-04. Affected is an unknown function of the file /api/role. The manipulation of the argument params.dataScope leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

CVE-2019-6679

On BIG-IP versions 15.0.0-15.0.1, 14.1.0.2-14.1.2.2, 14.0.0.5-14.0.1, 13.1.1.5-13.1.3.1, 12.1.4.1-12.1.5, 11.6.4-11.6.5, and 11.5.9-11.5.10, the access controls implemented by scp.whitelist and scp.blacklist are not properly enforced for paths that are symlinks. This allows authenticated users wi...

Linux Distros Unpatched Vulnerability : CVE-2023-6679

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A null pointer dereference vulnerability was found in dpllpinparentpinset in drivers/dpll/dpllnetlink.c in the Digital Phase Locked Loop DPLL subsystem in the...

CVE-2024-6679

creationtimestamp| type| source ---|---|--- 2024-07-11 18:19:09+00:00| seen| https://t.me/cvedetector/655...

kernel security update

5.14.0-362.18.1.el93.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...

Fedora: Security Advisory for kernel-headers (FEDORA-2024-2116a8468b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-2116a8468b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

CVE-2023-6679

creationtimestamp| type| source ---|---|--- 2024-01-01 14:02:33+00:00| seen| https://t.me/ctinow/161306...

SUSE CVE-2023-6679

A null pointer dereference vulnerability was found in dpllpinparentpinset in drivers/dpll/dpllnetlink.c in the Digital Phase Locked Loop DPLL subsystem in the Linux kernel. This issue could be exploited to trigger a denial of service...

CVE-2023-6679 Kernel: null pointer dereference in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.c

A null pointer dereference vulnerability was found in dpllpinparentpinset in drivers/dpll/dpllnetlink.c in the Digital Phase Locked Loop DPLL subsystem in the Linux kernel. This issue could be exploited to trigger a denial of service...

CVE-2023-6679

CVE-2023-6679 is a NULL pointer dereference in the Linux kernel DPLL netlink code (dpll_pin_parent_pin_set in drivers/dpll/dpll_netlink.c). The vulnerability allows local attackers to trigger a denial of service. Connected advisories (Red Hat, Oracle, MiracleLinux) indicate kernel updates/fixes a...

CVE-2023-6679

A null pointer dereference vulnerability was found in dpllpinparentpinset in drivers/dpll/dpllnetlink.c in the Digital Phase Locked Loop DPLL subsystem in the Linux kernel. This issue could be exploited to trigger a denial of service...

Oracle Linux 9 : curl (ELSA-2023-6679)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6679 advisory. - unify the upload/method handling CVE-2023-28322 - fix host name wildcard checking CVE-2023-28321 - adapt the fix of CVE-2023-27535 for RHEL 9 curl -...

RHEL 9 : curl (RHSA-2023:6679)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6679 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTT...

K54336216: SCP vulnerability CVE-2019-6679

Security Advisory Description The system does not properly enforce the access controls for the scp.whitelist and scp.blacklist files when paths are symbolic links symlinks. This allows authenticated users with Secure Copy SCP protocol access to overwrite certain configuration files that would...