Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001394)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001394 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted...

CVE-2023-4883

Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF Virtual Network Function, and triggering the ogssbimessagefree function, which could cause a...

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

EUVD-2026-0013

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

PT-2026-21718

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148 Firefox ESR versions prior to 140.8 Thunderbird versions prior to 148 Thunderbird versions prior to 140.8 Description The JavaScript Engine component contains an invalid pointer issue. Recommendations Update Firef...

PT-2026-4954

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1, 3.0, 3.3, 3.4, and 3.5 OpenSSL versions 3.6 through 3.6.0 Description An invalid or NULL pointer dereference can occur in applications processing malformed PKCS12 files. This can lead to a denial of service when an...

PT-2026-4955

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.0.2 through 3.6 Description A type confusion issue exists in the signature verification of signed PKCS7 data. This occurs when an ASN1 TYPE union member is accessed without first validating the type, potentially leading to a...

PT-2025-53060

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ext4 file system related to extended attribute handling. Specifically, the ext4 xattr move to block function contains an issue where memory could be...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an invalid pointer in net-gen after an opsinit failure, which could lead to reuse after release...

SUSE SLES12 Security Update : colord (SUSE-SU-2025:4483-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:4483-1 advisory. - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Tenable has extracted the preceding description...

Security update for colord

This update for colord fixes the following issues: Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:4483-1 Security update for colord

This update for colord fixes the following issues: - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750...

PT-2025-51580

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's gpiolib component related to invalid pointer access within the debugfs interface. Specifically, if memory allocation within the gpiolib seq start...

SUSE CVE-2022-50620

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to invalidate dcc-f2fsissuediscard in error path Syzbot reports a NULL pointer dereference issue as below: refcountadd include/linux/refcount.h:193 inline refcountinc include/linux/refcount.h:250 inline refcountinc...

PT-2025-49461

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to invalidate dcc-f2fs issue discard in error path Syzbot reports a NULL pointer dereference issue as below: refcount add include/linux/refcount.h:193 inline refcount inc include/linux/refcount.h:250 inline refcount inc...

Siemens SIMATIC S7-1500 Release of Invalid Pointer or Reference (CVE-2020-36224)

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

CVE-2025-54333

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the getvs4lprofilernode function...

CVE-2025-54333

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the getvs4lprofilernode function...