77 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: core: Validate channel ID when processing command completions MHI reads the channel ID from the event ring element sent by the device; this value can be any number between 0 and 255. To prevent out-of-bounds access, a...
CVE-2026-41295 OpenClaw < 2026.4.2 - Untrusted Workspace Channel Shadow Code Execution during Built-in Channel Setup
OpenClaw before 2026.4.2 contains an improper trust boundary vulnerability allowing untrusted workspace channel shadows to execute during built-in channel setup and login. Attackers can clone a workspace with a malicious plugin claiming a bundled channel id to achieve unintended in-process code...
CVE-2026-32618 Discourse: Unauthorized channel membership inference via excluded_memberships_channel_id
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, there is possible channel membership inference from chat user search without authorization. This issue has been patched in...
Azure Linux 3.0 Security Update: kernel (CVE-2022-48716)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-48716 advisory. - In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix incorrect use...
CVE-2025-20779
creationtimestamp| type| source ---|---|--- 2026-01-06 20:12:52+00:00| seen| Telegram/jBZlDbE9sXNOGZiNfLnczbuckfSwrbzvFqPwUO0qENjWP0...
kernel: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp conn-chanlock isn't acquired before l2capgetchanbyscid, if l2capgetchanbyscid returns NULL, then 'bad unlock balance' is triggered...
kernel: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp conn-chanlock isn't acquired before l2capgetchanbyscid, if l2capgetchanbyscid returns NULL, then 'bad unlock balance' is triggered...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988924)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988924 advisory. In the Linux kernel, the following vulnerability has been resolved: bus: mhi: core: Validate channel ID when processing command completions MHI reads the channel ID...
CVE-2025-41443 Guest user can discover active public channels
Mattermost versions 10.5.x = 10.5.12, 10.11.x = 10.11.2 fail to properly validate guest user permissions when accessing channel information which allows guest users to discover active public channels and their metadata via the /api/v4/teams/teamid/channels/ids endpoint...
EUVD-2020-3528
Malware in sbrugna...
EUVD-2020-3479
Malware in sbrugna...
EUVD-2020-24927
Malware in sbrugna...
EUVD-2017-7145
Malware in sbrugna...
EUVD-2022-27663
Malicious code in bioql PyPI...
EUVD-2024-19185
Malicious code in bioql PyPI...
EUVD-2023-26614
Malicious code in bioql PyPI...
EUVD-2021-7420
Malicious code in bioql PyPI...
EUVD-2024-38239
Malicious code in bioql PyPI...
PT-2025-32584 · Mattermost · Mattermost Confluence Plugin
Name of the Vulnerable Software and Affected Versions: Mattermost Confluence Plugin versions prior to 1.5.0 Description: The Mattermost Confluence Plugin does not verify user access to a channel, allowing attackers to create channel subscriptions without proper authorization via an API call to th...
RHSA-2024:3761
creationtimestamp| type| source ---|---|--- 2025-07-05 03:15:12+00:00| seen| Telegram/s-MyXHxfQRDkFCdBpAqom8tzuSuq39rL64NDbcTutOGe0...