[SECURITY] Fedora 43 Update: openapi-python-client-0.26.2-6.fc43

The openapi-python-client is a powerful tool designed to generate modern Python clients from OpenAPI 3.0+ documents supporting both synchronous and asynchronous HTTP requests. It automates the creation of Python classes and methods that correspond to the endpoints and schema defined in your OpenA...

[SECURITY] Fedora 42 Update: openapi-python-client-0.26.2-6.fc42

The openapi-python-client is a powerful tool designed to generate modern Python clients from OpenAPI 3.0+ documents supporting both synchronous and asynchronous HTTP requests. It automates the creation of Python classes and methods that correspond to the endpoints and schema defined in your OpenA...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990244 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix races between hole punching and AIO+DIO After commit ocfs2: return real error code in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990345)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990345 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989966)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989966 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix races between hole punching and AIO+DIO After commit ocfs2: return real error code in...

WordPress Document Library Lite plugin improper authorization vulnerability

WordPress Document Library Lite plugin is a WordPress plugin for creating document libraries and download management features with support for multiple file types and responsive layouts. The WordPress Document Library Lite plugin suffers from an improper authorization vulnerability that stems fro...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988947)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988947 advisory. In the Linux kernel, the following vulnerability has been resolved: aio: fix use-after-free due to missing POLLFREE handling signalfdpoll and binderpoll are special ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989868)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989868 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: us122l: Use sndcardfreewhenclosed at disconnection The USB disconnect callback is supposed ...

[SECURITY] Fedora 42 Update: openapi-python-client-0.26.2-4.fc42

The openapi-python-client is a powerful tool designed to generate modern Python clients from OpenAPI 3.0+ documents supporting both synchronous and asynchronous HTTP requests. It automates the creation of Python classes and methods that correspond to the endpoints and schema defined in your OpenA...

[SECURITY] Fedora 41 Update: openapi-python-client-0.24.3-2.fc41

The openapi-python-client is a powerful tool designed to generate modern Python clients from OpenAPI 3.0+ documents supporting both synchronous and asynchronous HTTP requests. It automates the creation of Python classes and methods that correspond to the endpoints and schema defined in your OpenA...

PT-2025-44714

Name of the Vulnerable Software and Affected Versions Advanced Ads – Ad Manager & AdSense plugin for WordPress versions prior to 2.0.13 Description The Advanced Ads – Ad Manager & AdSense plugin for WordPress is susceptible to Remote Code Execution through the select one function. The issue stems...

WordPress plugin Document Library Lite 授权问题漏洞

WordPress Document Library Lite plugin is a WordPress plugin for creating document libraries and download management features with support for multiple file types and responsive layouts. The WordPress Document Library Lite plugin suffers from an improper authorization vulnerability that stems fro...

USN-7835-4 linux-hwe-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 2012R1.6, which stems from insufficient...

CVE-2025-11705 Anti-Malware Security and Brute-Force Firewall <= 4.23.81 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File Read

The Anti-Malware Security and Brute-Force Firewall plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.23.81 due to a missing capability check combined with an information exposure in several GOTMLS AJAX actions. This makes it possible for authenticat...

PT-2025-44233

Name of the Vulnerable Software and Affected Versions Anti-Malware Security and Brute-Force Firewall for WordPress versions prior to 4.23.83 Description The Anti-Malware Security and Brute-Force Firewall plugin for WordPress is susceptible to an arbitrary file read issue. This is due to a missing...

VulnCheck KEV: CVE-2025-11705

The Anti-Malware Security and Brute-Force Firewall plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.23.81 due to a missing capability check combined with an information exposure in several GOTMLS AJAX actions. This makes it possible for authenticat...

Siemens SIMATIC Devices Improper Handling of Structural Elements (CVE-2024-35815)

In the Linux kernel, the following vulnerability has been resolved: fs/aio: Check IOCBAIORW before the struct aiokiocb conversion The first kiocbsetcancelfn argument may point at a struct kiocb that is not embedded inside struct aiokiocb. With the current code, depending on the compiler, the...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Race Condition (CVE-2024-36894)

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix race between aiocancel and AIO request complete This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Siemens SIMATIC Devices Use After Free (CVE-2024-27397)

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use timestamp to check for set element timeout Add a timestamp field at the beginning of the transaction, store it in the nftables per-netns area. Update set backend .insert, .deactivate and sync gc path to u...