SUSE SLED15 / SLES15 Security Update : bubblewrap (SUSE-SU-2026:2094-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2094-1 advisory. This update for bubblewrap fixes the following issue - CVE-2026-41163: improper process attachment via ptrace can lead ...

Security update for bubblewrap (important)

openSUSE security update: security update for bubblewrap ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20811-1 Rating: important References: bsc1263113 Cross-References: CVE-2026-41163 CVSS scores: CVE-2026-41163 SUSE : 7...

OPENSUSE-SU-2026:20811-1 Security update for bubblewrap

This update for bubblewrap fixes the following issue - CVE-2026-41163: improper process attachment via ptrace can lead to arbitrary privileged operations and local root escalation bsc1263113...

SUSE-SU-2026:21847-1 Security update for bubblewrap

This update for bubblewrap fixes the following issue - CVE-2026-41163: improper process attachment via ptrace can lead to arbitrary privileged operations and local root escalation bsc1263113...

Astra Linux - уязвимость в multipath-tools

In versions of multipath-tools from 0.7.0 to 0.9.x, up to 0.9.2, local users could obtain root access, either alone or in conjunction with CVE-2022-41973. Local users who had access to write to UNIX domain sockets could bypass access controls and manipulate the multipath setup. This could result ...

Astra Linux - уязвимость в linux, linux-5.10

An improper update of the reference count vulnerability in the net/sched component of the Linux kernel allows a local attacker to escalate privileges to root. This issue affects Linux Kernel versions prior to 5.18, as well as version 4.14 and later versions...

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : PackageKit vulnerability (USN-8195-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-8195-1 advisory. It was discovered that PackageKit incorrectly handled certain transactions. A local attacker could use this issue to install arbitrary package...

[SECURITY] [DLA 4544-1] ntfs-3g security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4544-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz April 21, 2026 https://wiki.debian.org/LTS -...

EUVD-2026-9518

Incorrect permission assignment world-writable file in /etc/udhcpc/default.script in International Data Casting IDC SFX2100 Satellite Receiver allows a local unprivileged attacker to potentially execute arbitrary commands with root privileges local privilege escalation and persistence via...

Exploit for Incorrect Authorization in Suse Pam-Config

CVE-2025-6018 & CVE-2025-6019 PoC A Proof of Concept for chai...

CVE-2025-12985

IBM Licensing Operator incorrectly assigns privileges to security critical files which could allow a local root escalation inside a container running the IBM Licensing Operator image...

MiracleLinux 8 : open-vm-tools-11.3.5-1.el8.1.ML.1 (AXSA:2022-3807:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3807:02 advisory. open-vm-tools: local root privilege escalation in the virtual machine CVE-2022-31676 Tenable has extracted the preceding description block directly from the...

PT-2026-3579

Name of the Vulnerable Software and Affected Versions IBM Licensing Operator affected versions not specified Description The IBM Licensing Operator incorrectly assigns privileges to security critical files. This could allow a local root escalation within a container running the IBM Licensing...

MiracleLinux 7 : libguestfs-winsupport-7.2-3.el7 (AXSA:2019-4122:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-4122:01 advisory. ntfs-3g: heap-based buffer overflow leads to local root privilege escalation CVE-2019-9755 Tenable has extracted the preceding description block directly fro...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002127)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002127 advisory. The msropen function in arch/x86/kernel/msr.c in the Linux kernel before 3.7.6 allows local users to bypass intended capability restrictions by executing a crafted...

CVE-2019-16729

pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups...

CVE-2025-34323

Nagios Log Server versions prior to 2026R1.0.1 are vulnerable to local privilege escalation due to a combination of sudo misconfiguration and group-writable application directories. The 'www-data' user is a member of the 'nagios' group, which has write access to...

CVE-2025-64507

CVE-2025-64507 affects Incus/LXD: in versions prior to 6.0.6 and 6.19.0 an unprivileged user who can access a container and a host with a custom storage volume that has security.shifted=true may create a setuid binary inside the container and execute it on the host to gain root. The issue require...

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

CVE-2025-32463 🚨 !Hacker GIFhttps://media.giphy.com/media/...

EUVD-2019-7274

Malware in sbrugna...