CVE-2026-43192

The provided sources describe CVE-2026-43192 as a Linux kernel issue in the device-mapper multipath (dm mpath) subsystem. A missing cleanup (dm_put_device) when failing to retrieve the SCSI handler name during path parsing (scsi_dh_attached_handler_name) could leak references to the path device. ...

Linux Distros Unpatched Vulnerability : CVE-2026-31698

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed When retrieving the PDH cert, don't attempt to copy the blobs to userspace if the...

CVE-2026-23182

CVE-2026-23182 affects the Linux kernel driver path spi: tegra, where in tegra_slink_probe() a failed platform_get_irq() path could leak memory because the function returned directly with an error. The fix replaces the early return with a cleanup goto, ensuring proper resource release. The change...

Updatecli 安全漏洞

Updatecli is a declarative dependency management tool from the Updatecli open source. A security vulnerability exists in Updatecli versions prior to 0.93.0, which stems from the fact that private Maven repository credentials may be leaked to application logs if a retrieval operation fails...

Linux kernel hi3660_stub_clk_probe function denial-of-service vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A denial of service vulnerability exists in the hi3660stubclkprobe function in drivers/clk/hisilicon/clk-hi3660-stub.c in the Linux kernel. A local user can exploit th...

NUL Character in message body locks up Outlook/Outlook Express

Hello, A number of Microsoft mail programs fail when they attempt to download a message containing ASCII NUL in the message body. The clients we tested are: Outlook Express 6.00.2800.1106 Outlook 2002 10.2627.3501 SP-1 Outlook 2003 11.5608.5606 Once the client attempts to download the particular...