Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989070)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989070 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset...

CVE-2022-50480

CVE-2022-50480 pertains to the Linux kernel memory handling for pl353-smc, where a refcount leak in pl353_smc_probe() was fixed. The issue stems from the break path of for_each_available_child_of_node() not balancing a reference when the child is no longer used; the fix adds a corresponding of_no...

SUSE CVE-2024-50197

In the Linux kernel, the following vulnerability has been resolved: pinctrl: intel: platform: fix error path in deviceforeachchildnode The deviceforeachchildnode loop requires calls to fwnodehandleput upon early returns to decrement the refcount of the child node and avoid leaking memory if that...

GSD-2022-1007372 ata: libahci_platform: Sanity check the DT child nodes number

ata: libahciplatform: Sanity check the DT child nodes number This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.220 by commit...

PT-2022-34984 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 6.0.3 Description: The issue concerns a sanity check for the number of DT child nodes in the libahci platform module. The actual impact and potential for attack have not been proven yet. Recommendations: For Lin...

XMLDOM 输入验证错误漏洞

XMLDOM is a JavaScript implementation of the W3C DOM for Node by the individual developer jindw. A security vulnerability exists in XMLDOM, which stems from the fact that xmldom contains multiple top-level elements and adds all root nodes to the "childNodes" collection of "Document" without...

Mozilla Firefox Security Advisory (MFSA2012-04) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

Cloudflare OctoRPKI 资源管理错误漏洞

Cloudflare OctoRPKI is an RPKI toolkit for the Cloudflare platform from cloudflare USA. A security vulnerability exists in Cloudflare OctoRPKI that allows the CA to traverse the directory structure by creating child nodes in a specific way...

openSUSE Security Update : mozilla-js192 (mozilla-js192-5749)

mozilla xulrunner was updated to 1.9.2.26 security update, fixing security issues and bugs. Following security bugs were fixed : MFSA 2012-01: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these...

Design/Logic Flaw

Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 might allow remote attackers to execute arbitrary code via vectors related to incorrect AttributeChildRemoved notifications that affect access...

Mozilla: child nodes from nsDOMAttribute still accessible after removal of nodes (MFSA 2012-04)

Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 might allow remote attackers to execute arbitrary code via vectors related to incorrect AttributeChildRemoved notifications that affect access...

CVE-2011-3659

Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 might allow remote attackers to execute arbitrary code via vectors related to incorrect AttributeChildRemoved notifications that affect access...

Firefox 3.6 < 3.6.26 Multiple Vulnerabilities (Mac OS X)

The installed version of Firefox 3.6 is earlier than 3.6.26. Such versions are potentially affected by multiple vulnerabilities : - A use-after-free error exists related to removed nsDOMAttribute child nodes.CVE-2011-3659 - The IPv6 literal syntax in web addresses is not being properly enforced...