PT-2026-42448

Concurrency and locking defects in GSS-TSIG...

PT-2026-40691

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the mmc core where the host-claimed bit shares a word with retune flags. This configuration leads to Read-Modify-Write RMW side effects in asynchronous contexts...

OPENSUSE-SU-2026:20705-1 Security update for log4cxx

This update for log4cxx fixes the following issues: Changes in log4cxx: - update to 1.7.0 bsc1261994, CVE-2026-40023: Non-ascii characters incorrectly encoded in JSON output 615 XML output could contain characters not allowed by the XML 1.0 specification An XML configuration file with recursive...

GHSA-M468-XCM6-FXG4 nginx-ui has Race Condition that Leads to Persistent Data Corruption and Service Collapse

Summary The nginx-ui application is vulnerable to a Race Condition. Due to the complete absence of synchronization mechanisms Mutex and non-atomic file writes, concurrent requests lead to the severe corruption of the primary configuration file app.ini. This vulnerability results in a persistent...

PT-2025-52890

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a flaw in the regulator core where the regulator supply alias list was accessed without proper locking mechanisms. This lack of locking could lead to several...

Linux Distros Unpatched Vulnerability : CVE-2023-54002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some...

EUVD-2025-18615

Malicious code in bioql PyPI...

EUVD-2025-19841

Malicious code in bioql PyPI...

EUVD-2024-41264

Malicious code in bioql PyPI...

EUVD-2025-5589

Malicious code in bioql PyPI...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper team lock substitution, which could lead to concurrency issues...

CVE-2025-38101

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix buffer locking in ringbuffersubbuforderset Enlarge the critical section in ringbuffersubbuforderset to ensure that error handling takes place with per-buffer mutex held, thus preventing list corruption and other...

CVE-2025-38101

CVE-2025-38101 is publicly addressed in the openSUSE/SUSE advisory for the Linux kernel. The issue concerns the ring-buffer subsystem, specifically the function ring_buffer_subbuf_order_set(), where the critical section was enlarged to ensure error handling runs with the per-buffer mutex held, pr...

CVE-2025-38101 ring-buffer: Fix buffer locking in ring_buffer_subbuf_order_set()

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix buffer locking in ringbuffersubbuforderset Enlarge the critical section in ringbuffersubbuforderset to ensure that error handling takes place with per-buffer mutex held, thus preventing list corruption and other...

CVE-2025-38101 ring-buffer: Fix buffer locking in ring_buffer_subbuf_order_set()

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix buffer locking in ringbuffersubbuforderset Enlarge the critical section in ringbuffersubbuforderset to ensure that error handling takes place with per-buffer mutex held, thus preventing list corruption and other...

CVE-2025-32409

Ratta SuperNote A6 X2 Nomad before December 2024 allows remote code execution because an arbitrary firmware image signed with debug keys can be sent to TCP port 60002, and placed into the correct image-update location as a consequence of both directory traversal and unintended handling of...

Linux Distros Unpatched Vulnerability : CVE-2024-39508

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring/io-wq: Use setbit and testbit at worker-flags Utilize setbit and testbit on worker-flags within iouring/io-wq to address potential data races. The...

Huawei HarmonyOS 竞争条件问题漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a Competitive Condition Issue vulnerability that stems from a multiple concurrency issue that affects availability. An attacker...

CVE-2025-1801

Summary (CVE-2025-1801): A race-condition vulnerability in the Red Hat Ansible Automation Platform (AAP) 2.5 gateway’s aap-gateway GRPC service could let a less-privileged user obtain a greater-privileged user’s JWT, risking session data and server integrity. CVSS v3.1 base score 8.1 (HIGH) with ...

The vulnerability affects the implementation of the Lightweight Directory Access Protocol (LDAP) on Windows operating systems, allowing attackers to execute arbitrary code.

The vulnerability of the LDAP protocol implementation on the Windows operating system arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...