Absolute Secure Access 信息泄露漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a vulnerability related to information leakage, caused by a format...

PT-2026-36170

Name of the Vulnerable Software and Affected Versions Secure Access client for MacOS versions prior to 14.50 Description A format string issue exists in the logging subsystem. Attackers controlling a modified server can force the client to dump small portions of memory into log files, which may...

Absolute Secure Access 安全漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a security vulnerability caused by a buffer overflow in the...

CVE-2026-31639

A flaw was found in the rxrpc subsystem of the Linux kernel. When a client call is created, a reference to a key is obtained but not properly released when the call is destroyed. This oversight leads to a key reference count leak, which can accumulate over time. This resource exhaustion could...

CVE-2026-31676

A flaw was found in the rxrpc subsystem of the Linux kernel. This vulnerability allows for duplicate or late RESPONSE packets to be processed outside of the expected service challenging state. An attacker could potentially exploit this by sending specially crafted RESPONSE packets, leading to the...

ASoC: qcom: q6apm: move component registration to unmanaged version

...

net: rfkill: prevent unlimited numbers of rfkill events from being created

...

ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc

...

HID: core: clamp report_size in s32ton() to avoid undefined shift

...

SUSE CVE-2026-31541

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix tracemarker copy link list updates When the "copytracemarker" option is enabled for an instance, anything written into /sys/kernel/tracing/tracemarker is also copied into that instances buffer. When the option is set...

SUSE CVE-2026-31576

In the Linux kernel, the following vulnerability has been resolved: media: hackrf: fix to not free memory after the device is registered in hackrfprobe In hackrf driver, the following race condition occurs: CPU0 CPU1 hackrfprobe kzalloc; // alloc hackrfdev .... v4l2deviceregister; .... fd =...

SUSE CVE-2026-31587

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

CVE-2026-31664

A flaw was found in the Linux kernel's xfrm subsystem. This vulnerability arises because the buildpolexpire function does not clear trailing padding bytes within the xfrmuserpolexpire structure. Consequently, these uninitialized padding bytes, which contain kernel heap memory contents, are sent t...

CVE-2026-31663

A flaw was found in the Linux kernel's xfrm IP eXtensible FRamework subsystem. This vulnerability involves a race condition where a network device's reference is released too early during packet processing after asynchronous cryptography. This premature release can lead to the system attempting t...

CVE-2026-31634

A flaw was found in the Linux kernel's rxrpc subsystem. An issue with managing reference counts in the rxrpcserverkeyring function could lead to a resource leak. This vulnerability might allow a local attacker to exhaust system resources, potentially causing a denial of service DoS...

CVE-2026-31614

A flaw was found in the Linux kernel's Server Message Block SMB client. An untrusted server can exploit an out-of-bounds read vulnerability within the checkwsleas function. This flaw allows the server to read up to 8 bytes beyond the intended memory boundary, leading to information disclosure. Th...

CVE-2026-31587

A flaw was found in the Linux kernel, specifically within the ASoC ALSA System on Chip qcom q6apm component. This vulnerability arises from incorrect memory management during the dynamic registration of digital audio interface DAI components. When both the component and its associated DAIs are...

CVE-2026-31582

A flaw was found in the Linux kernel's hwmon subsystem. A local attacker, by disconnecting a USB device, could trigger a use-after-free vulnerability in the powerz driver. This occurs when the driver attempts to access a Universal Serial Bus Request Block URB after it has been freed during the...

CVE-2026-31551

A flaw was found in the mac80211 Wi-Fi subsystem of the Linux kernel. A local user could exploit a race condition in the aqlenablewrite function, which does not properly handle concurrent write operations to the debug file system. This could lead to a staticbranchdec underflow, resulting in a...

CVE-2026-31548

A flaw was found in the Linux kernel's cfg80211 Wi-Fi subsystem. When a Wi-Fi interface is shut down, a scheduled work item pmsrfreewk may not be properly cancelled. This can lead to the work item attempting to operate on an already removed interface, resulting in undefined behavior and potential...