1818 matches found
runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects
A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : sccache (SUSE-SU-2025:3944-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:3944-1 advisory. - CVE-2025-55159 - updated slab with the uninit memory access fix bsc1248003 Tenable has extracted the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990387)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990387 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setuptxdescriptors After PF reset and ethtool -t there was call trace in...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990428)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990428 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ipv6: unexport init-annotated seg6hmacinit EXPORTSYMBOL and init is a bad combination becaus...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990495)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990495 advisory. In the Linux kernel, the following vulnerability has been resolved: media: cx25821: Fix the warning when removing the module When removing the module, we will get th...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990533)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990533 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc The call to lpfcsli4resumerpi in...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989957)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989957 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix more uncharged while msg has moredata In tcpbpfsendverdict, if msg has more dat...
RHEL 8 : bind9.16 (RHSA-2025:19793)
"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19793 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988730)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988730 advisory. In the Linux kernel, the following vulnerability has been resolved: LSM: general protection fault in legacyparseparam The usual LSM hook bail on fail scheme doesn't...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989157)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989157 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid scanning potential huge holes When using devmrequestfreememregion and...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989944)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989944 advisory. In the Linux kernel, the following vulnerability has been resolved: clocksource: hyper-v: unexport init-annotated hvinitclocksource EXPORTSYMBOL and init is a bad...
Moderate: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...
Linux Distros Unpatched Vulnerability : CVE-2023-53692
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free read in ext4findextent for bigalloc + inline Syzbot found the...
TencentOS Server 3: cups (TSSA-2025:0807)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0807 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2025:3701-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3701-1 advisory. - CVE-2025-43343: improved memory handling in web content processing to prevent process crash...
xfrm: xfrm_alloc_spi shouldn't use 0 as SPI
...
RockyLinux 9 : ncurses (RLSA-2025:12876)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:12876 advisory. ncurses: segfaulting OOB read CVE-2022-29458 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note that Ness...
Linux Distros Unpatched Vulnerability : CVE-2022-50433
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: efi: ssdt: Don't free memory if ACPI table was loaded successfully Amadeusz reports KASAN...
EUVD-2005-0428
Malware in sbrugna...
EUVD-2006-2148
Malware in sbrugna...