Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, where the damoncommitctx function may update the context due to memory allocation failures, potentially allowing...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013599)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013599 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013817)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013817 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dlink: handle copythresh allocation failure The driver did not handle failure of...

PT-2026-34372

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock can occur in the bio completion path within the process context, such as in dm-verity. This happens when the path calls decompression directly to minimize scheduling latencies...

PowerDNS DNSdist和PowerDNS Authoritative 安全漏洞

PowerDNS DNSdist and PowerDNS Authoritative are both products of the PowerDNS company. PowerDNS DNSdist is a proxy software that provides DNS traffic load balancing and security protection capabilities. PowerDNS Authoritative is a DNS server software. Both PowerDNS DNSdist and PowerDNS...

PT-2026-34438

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description A client can trigger excessive memory allocation by generating a large volume of queries routed to an overloaded DNS over HTTPS DoH backend. This causes queries ...

RHEL 10 : wireshark (RHSA-2026:9666)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:9666 advisory. The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security...

Linux Distros Unpatched Vulnerability : CVE-2026-33594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A client can trigger excessive memory allocation by generating a lot of queries that are routed to an overloaded DoH backend, causing queries to accumulate into...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013610)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013610 advisory. In the Linux kernel, the following vulnerability has been resolved: of: overlay: fix null pointer dereferencing in finddupcsetnodeentry and finddupcsetprop When...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013661)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013661 advisory. In the Linux kernel, the following vulnerability has been resolved: xfrm: Update ipcompscratches with NULL when freed Currently if ipcompallocscratches fails to...

openSUSE 16 Security Update : qemu (openSUSE-SU-2026:20567-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20567-1 advisory. Update to version 10.0.9. Security issues fixed: - CVE-2026-3196: unbounded memory allocation and host denial-of-service via PCMINFO requests se...

ALSA-2026:9666 Moderate: wireshark security update

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security Fixes: wireshark: Buffer Over-read in Wireshark CVE-2026-3203 wireshark: Improperly Controlled Sequential Memory Allocation in Wireshark CVE-2026-3201 For more...

Linux Distros Unpatched Vulnerability : CVE-2026-33812

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Parsing a malicious font file can cause excessive memory allocation. CVE-2026-33812 Note that Nessus relies on the presence of the package as reported by the...

DEBIAN-CVE-2026-33812

Parsing a malicious font file can cause excessive memory allocation...

CVE-2026-33812

Parsing a malicious font file can cause excessive memory allocation...

GHSA-JJ7C-X25R-R8R3 Brillig: Heap corruption in foreign call results with nested tuple arrays

Description Noir programs can invoke external functions through foreign calls. When compiling to Brillig bytecode, the SSA instructions are processed block-by-block in BrilligBlock::compileblock. When the compiler encounters an Instruction::Call with a Value::ForeignFunction target, it invokes...

UBUNTU-CVE-2026-33812

Parsing a malicious font file can cause excessive memory allocation...

CVE-2026-33812

Parsing a malicious font file can cause excessive memory allocation...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the Arena memory allocation. An attacker can cause unintended modification of data by providing specially crafted input that manipulates memory allocation boundaries. Remediation A fix was pushed into the...

CVE-2026-33812 Excessive memory allocation when decoding malicious SFNT in golang.org/x/image

Parsing a malicious font file can cause excessive memory allocation...