BELL-CVE-2026-46294

Bulletin has no description...

DEBIAN-CVE-2026-45951

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free of BTF object Refcounting in the checkpseudobtfid function is incorrect: the checkpseudobtfid function might get called with a zero refcounted btf. Fix this, and patch related code accordingly...

BELL-CVE-2026-43961

Bulletin has no description...

BELL-CVE-2026-43205

Bulletin has no description...

DEBIAN-CVE-2026-35367

The nohup utility in uutils coreutils creates its default output file, nohup.out, without specifying explicit restricted permissions. This causes the file to inherit umask-based permissions, typically resulting in a world-readable file 0644. In multi-user environments, this allows any user on the...

UBUNTU-CVE-2026-35379

A logic error in the tr utility of uutils coreutils causes the program to incorrectly define the :graph: and :print: character classes. The implementation mistakenly includes the ASCII space character 0x20 in the :graph: class and excludes it from the :print: class, effectively reversing the...

UBUNTU-CVE-2026-33610

A rogue primary server may cause file descriptor exhaustion and eventually a denial of service, when a PowerDNS secondary server forwards a DNS update request to it...

BELL-CVE-2026-2673

Bulletin has no description...

CVE-2025-52626

A Potential Command Injection vulnerability in HCL AION. An This can allow unintended command execution, potentially leading to unauthorized actions on the underlying system.This issue affects AION: 2.0...

BELL-CVE-2025-71127

Bulletin has no description...

DEBIAN-CVE-2025-68729

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix MSDU buffer types handling in RX error path Currently, packets received on the REO exception ring from unassociated peers are of MSDU buffer type, while the driver expects link descriptor type packets. These...

BELL-CVE-2025-40137

Bulletin has no description...

AZL-78909 CVE-2025-58185 affecting package golang 1.25.7-1

Parsing a maliciously crafted DER payload could allocate large amounts of memory, causing memory exhaustion...

EUVD-2019-7889

Malware in sbrugna...

Generation of Predictable Numbers or Identifiers

Overview Affected versions of this package are vulnerable to Generation of Predictable Numbers or Identifiers via the websocket component due to using a fixed 32 bit mask that persisted and was used throughout the entire connection instead of updating it for each new outgoing frame as the...

MAL-2025-10700 Malicious code in @zalastax/nolb-arrayo (npm)

The package @zalastax/nolb-arrayo was found to contain malicious code...

MAL-2025-30730 Malicious code in promin (npm)

The package promin was found to contain malicious code...

CVE-2023-24860

Microsoft Defender Denial of Service Vulnerability...

Google Chrome 109.0.5414.74 Unsafe Library Load

Vulnerability: Google Chrome code execution via missing lib file Ubuntu Product: Google Chrome Discovered by: Rafay Baloch and Muhammad Samak Version: 109.0.5414.74 Impact: Moderate Company: Cyber Citadel Website: https://www.cybercitadel.com Tested-on : Ubuntu 22.04.1 Description Google chrome...

CVE-2020-10203

Sonatype Nexus Repository before 3.21.2 allows XSS...