CVE-2026-21488

iccDEV is affected in versions 2.3.1.1 and earlier. The root cause is in CIccTagText::Read, leading to multiple issues: Out-of-bounds Read, Heap-based Buffer Overflow, and Improper Null Termination. The vulnerability is fixed in version 2.3.1.2. According to the connected Red Hat and NVD/OSV reco...

PT-2026-27650

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel where a null-pointer dereference can occur in the drbd request endio function. This happens when READ COMPLETED WITH ERROR is passed to req mod with a...

SUSE CVE-2023-54266

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: m920x: Fix a potential memory leak in m920xi2cxfer 'read' is freed when it is known to be NULL, but not when a read error occurs. Revert the logic to avoid a small leak, should a m920xread call fail...

CVE-2023-54266

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: m920x: Fix a potential memory leak in m920xi2cxfer 'read' is freed when it is known to be NULL, but not when a read error occurs. Revert the logic to avoid a small leak, should a m920xread call fail...

CVE-2023-54266

CVE-2023-54266 refers to a memory-leak in the Linux kernel’s media: dvb-usb: m920x path. The issue occurs when a read error happens during m920x_read(), where the previously freed buffer may leak because the error case wasn’t freed. The fix reverts the prior logic to ensure the read buffer is fre...

PT-2025-54095

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to a potential memory leak within the m920x i2c xfer function. Specifically, memory associated with read may be freed incorrectly when it is NUL...

EUVD-2025-205097

In the Linux kernel, the following vulnerability has been resolved: iomap: allocate sdiodonewq for async reads as well Since commit 222f2c7c6d14 "iomap: always run error completions in user context", read error completions are deferred to sdiodonewq. This means the workqueue also needs to be...

CVE-2025-68357

In the Linux kernel, the following vulnerability has been resolved: iomap: allocate sdiodonewq for async reads as well Since commit 222f2c7c6d14 "iomap: always run error completions in user context", read error completions are deferred to sdiodonewq. This means the workqueue also needs to be...

CVE-2022-50709

CVE-2022-50709 concerns the Linux kernel’s wifi/ath9k path where ath9k_hif_usb_rx_stream() can allocate skb with uninitialized memory because pkt_len is not validated before use in ath9k_htc_rx_msg(). The patch described resolves the issue by validating pkt_len prior to access in ath9k_htc_rx_msg...

CVE-2025-68357 iomap: allocate s_dio_done_wq for async reads as well

In the Linux kernel, the following vulnerability has been resolved: iomap: allocate sdiodonewq for async reads as well Since commit 222f2c7c6d14 "iomap: always run error completions in user context", read error completions are deferred to sdiodonewq. This means the workqueue also needs to be...

CVE-2025-68357 iomap: allocate s_dio_done_wq for async reads as well

In the Linux kernel, the following vulnerability has been resolved: iomap: allocate sdiodonewq for async reads as well Since commit 222f2c7c6d14 "iomap: always run error completions in user context", read error completions are deferred to sdiodonewq. This means the workqueue also needs to be...

CVE-2025-67749

CVE-2025-67749 affects PCSX2 up to version 2.5.377. The issue arises from an unchecked offset and size used in a memcpy inside CDVD SCMD 0x91 and 0x8F handlers, allowing an specially crafted disc image or ELF to cause an out-of-bounds read from emulator memory (offset/size controlled via MG heade...

CVE-2025-40246 xfs: fix out of bounds memory read error in symlink repair

In the Linux kernel, the following vulnerability has been resolved: xfs: fix out of bounds memory read error in symlink repair xfs/286 produced this report on my test fleet: ================================================================== BUG: KFENCE: out-of-bounds read in memcpyorig+0x54/0x110...

CVE-2025-66293 LIBPNG has an out-of-bounds read in png_image_read_composite

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to 1.6.52, an out-of-bounds read vulnerability in libpng's simplified API allows reading up to 1012 bytes beyond the pngsRGBbase512 array when processing...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989902)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989902 advisory. In the Linux kernel, the following vulnerability has been resolved: isofs: Fix out of bound access for corrupted isofs image When isofs image is suitably corrupted...

CVE-2025-23050

QLowEnergyController in Qt before 6.8.2 mishandles malformed Bluetooth ATT commands, leading to an out-of-bounds read or division by zero. This is fixed in 5.15.19, 6.5.9, and 6.8.2...

JLSEC-2025-6 An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack t...

An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in lapack through version 3.10.0, as also used in OpenBLAS before version 0.3.18. Specially crafted inputs passed to these functions could cause an application using lapack to crash or possibly disclose...

EUVD-2017-15046

Malware in sbrugna...

EUVD-2018-6698

Malware in sbrugna...

RockyLinux 9 : kernel (RLSA-2025:8643)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8643 advisory. kernel: net: gso: fix ownership in udpgsosegment CVE-2025-21926 kernel: vlan: enforce underlying device type CVE-2025-21920 kernel: xsk: fix an integer...