Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net: added vlangetprotocolanddepth helper. Previously, skbmaypull was used instead of skbheaderpointer in vlangetprotocol and related functions. Few calls relied on skb-head being populated with the MAC header. syzbot detected on...

Linux Distros Unpatched Vulnerability : CVE-2026-43461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: spi: amlogic: spifc-a4: Fix DMA mapping error handling Fix three bugs in amlsfcdmabuffersetu...

SUSE SLES12 Security Update : libssh (SUSE-SU-2026:0778-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0778-1 advisory. - CVE-2026-0964: improper sanitation of paths received from SCP servers can cause path traversal bsc1258049. - CVE-2026-0965: possible denial o...

MiracleLinux 7 : kernel-3.10.0-1160.11.1.el7 (AXSA:2021-1083:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1083:01 advisory. kernel: metadata validator in XFS may cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt CVE-2020-14385 kernel:...

CVE-2021-33650

When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers...

Incomplete Filtering

validator is vulnerable to Incomplete Filtering.The vulnerability is due to improper handling of Unicode variation selectors \uFE0F, \uFE0E, where these characters are not counted toward string length, allowing attackers to submit inputs far longer than intended and potentially causing data...

CVE-2025-33195

Summary (CVE-2025-33195) : NVIDIA DGX Spark GB10 contains a vulnerability in the SROOT firmware that can trigger unexpected memory buffer operations. The issue could allow data tampering, denial of service, or privilege escalation as described in multiple sources (NVD/Red Hat/CVE records). There ...

EUVD-2018-16968

Malware in sbrugna...

EUVD-2023-32246

Malicious code in bioql PyPI...

EUVD-2022-46505

Malicious code in bioql PyPI...

EUVD-2023-51691

Malicious code in bioql PyPI...

SUSE-SU-2025:02566-1 Security update for libarchive

This update for libarchive fixes the following issues: - CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 - CVE-2025-5915: Fixed heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c bsc1244273 -...

CVE-2025-35003 Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities.

Improper Restriction of Operations within the Bounds of a Memory Buffer and Stack-based Buffer Overflow vulnerabilities were discovered in Apache NuttX RTOS Bluetooth Stack HCI and UART components that may result in system crash, denial of service, or arbitrary code execution, after receiving...

CVE-2023-47580

Multiple improper restriction of operations within the bounds of a memory buffer issues exist in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file X1, V8, or V9 file, information may be disclosed and/or arbitrary code may be executed...

ALSA-2025:7509 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

PT-2025-20534 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the handling of isochronous Ring Underrun/Overrun events in the Linux kernel's xHCI Extensible Host Controller Interface implementation. Specifically, when such an...

SUSE-SU-2025:1419-1 Security update for redis

This update for redis fixes the following issues: - CVE-2025-21605: Fixed an output buffer denial of service. bsc1241708...

CVE-2022-49657 usbnet: fix memory leak in error case

In the Linux kernel, the following vulnerability has been resolved: usbnet: fix memory leak in error case usbnetwritecmdasync mixed up which buffers need to be freed in which error case. v2: add Fixes tag v3: fix uninitialized buf pointer...

MGASA-2024-0084 Updated python python3 packages fix security vulnerabilities

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA RFC 3490 decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often...

PT-2024-3284 · Intel · Intel Thunderbolt Dch Drivers

Name of the Vulnerable Software and Affected Versions: IntelR ThunderboltTM DCH drivers for Windows versions prior to 88 Description: The issue is related to improper buffer restrictions in some IntelR ThunderboltTM DCH drivers for Windows, which may allow a privileged user to potentially enable...