13 matches found
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006756)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006756 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Release folio lock on fscache read hit. Under the current code, when cifsreadpageworker is...
CVE-2026-31400
A flaw was found in the Linux kernel's sunrpc component. When a reader's file descriptor is closed during an active cache request read, the system fails to properly free the associated memory. This memory leak can be exploited by a local attacker, potentially leading to a Denial of Service DoS by...
CVE-2026-31400
CVE-2026-31400: In the Linux kernel sunrpc cache handling, a reader closing a file descriptor during a mid-read of a cache_request could cause a leak because cache_release() decrements readers without freeing the request. The issue is addressed by adding cleanup in cache_release(): after decremen...
CVE-2025-69872
DiskCache python-diskcache through 5.6.3 uses Python pickle for serialization by default. An attacker with write access to the cache directory can achieve arbitrary code execution when a victim application reads from the cache...
MiracleLinux 8 : freerdp-2.2.0-1.el8 (AXSA:2021-2116:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2116:01 advisory. freerdp: out of bounds read in TrioParse CVE-2020-4030 freerdp: out of bound reads resulting in accessing memory location outside of static array...
Linux Distros Unpatched Vulnerability : CVE-2018-8005
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When there are multiple ranges in a range request, Apache Traffic Server ATS will read the entire object from cache. This can cause performance problems with...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from allowing excessive read requests in the cache...
PT-2023-35905 · Git +1 · Opensc
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack buffer overflow read. Technical details include a crash state involving the sc pkcs15 get lastupdate, generate cache...
GHSA-656C-6CXF-HVCV Deserialization of Untrusted Data in Flask-Caching
Flask-Cache adds easy cache support to Flask. The Flask-Caching extension through 1.10.1 for Flask relies on Pickle for serialization, which may lead to remote code execution or local privilege escalation. If an attacker gains access to cache storage e.g., filesystem, Memcached, Redis, etc., they...
foreman: unauthorized cache read on RPM-based installations through local user
A flaw was found in Red Hat Satellite. An attacker could gain access to cache files further allowing access to cached credentials that could help the attacker to gain complete control of the Satellite instance. The highest threat from this vulnerability is to data confidentiality and integrity as...
Information Disclosure
foreman is vulnerable to information disclosre. It is possible due to unauthorized cache read on RPM-based installations through local user...
foreman: unauthorized cache read on RPM-based installations through local user
A flaw was found in Red Hat Satellite. An attacker could gain access to cache files further allowing access to cached credentials that could help the attacker to gain complete control of the Satellite instance. The highest threat from this vulnerability is to data confidentiality and integrity as...
JDK: local disclosure of kerberos credentials cache
IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attackers to obtain sensitive information by reading the Kerberos Credential Cache...