60 matches found
DEBIAN-CVE-2026-59997
internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection...
CVE-2026-59997
internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection...
EUVD-2026-25017
kill: 'kill -1' parsed as PID -1, sending SIGTERM to all processes system crash / DoS...
CVE-2026-35369
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...
UBUNTU-CVE-2026-35369
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...
CVE-2026-35369 uutils coreutils kill System-wide Process Termination and Denial of Service via Argument Misinterpretation
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...
CVE-2026-35369 uutils coreutils kill System-wide Process Termination and Denial of Service via Argument Misinterpretation
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...
CVE-2026-35369
CVE-2026-35369 affects the kill utility in uutils coreutils. The root cause is an argument parsing error where kill -1 is treated as a request to send the default signal (SIGTERM) to PID -1, instead of recognizing -1 as a signal number. This can lead to the kernel terminating all processes visibl...
CVE-2026-35369
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...
CVE-2026-35369
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default signal SIGTERM to PID -1. Sending a signal to PID -1 causes the kernel to terminate all processes visible to the caller, potentially leading to a system crash or massi...
CLSA-2025-1761844489 Fix of 9 CVEs
SECURITY UPDATE: multiple vulnerabilities in AWK implementation - debian/patches/CVE-2021-423xx-awk.patch: fix issues with argument parsing, delete statement validation, length parsing, post-increment/decrement on literals, expression handling, regex splitting, use-after-realloc, and maxfields...
The vulnerability of the snapctl utility component for managing self-contained packages related to incorrect input validation allows a malicious actor to escalate their privileges.
The vulnerability of the snapctl utility for managing self-contained packages related to improper analysis of command-line arguments. This allows unprivileged users to initiate authorized actions on behalf of snap. Exploiting this vulnerability can enable a malicious actor to gain increased...
Privilege Escalation
github.com/snapcore/snapd is vulnerable to Privilege Escalation. The vulnerability is due to improper command-line argument parsing, allowing an unprivileged user to trigger actions that require administrator privileges...
CVE-2022-28658
Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...
CVE-2022-28658
Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...
CVE-2022-28658
Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...
DEBIAN-CVE-2024-5138
The snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was found that snapctl did not properly parse command-line arguments, allowing an unprivileged user to trigger an authorised action on behalf of...
[SECURITY] Fedora 40 Update: rust-docopt-1.1.1-13.fc40
Command line argument parsing...
PT-2024-6092 · Snapd +2 · Snapd +2
Name of the Vulnerable Software and Affected Versions: snapd affected versions not specified Description: The issue is related to the snapctl component within snapd, which allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of the snap. It was fou...
CVE-2024-32462 Flatpak vulnerable to a sandbox escape via RequestBackground portal due to bad argument parsing
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a malicious or compromised Flatpak app could execute arbitrary code outside its sandbox. Normally, the --command argument of flatpak run...