freerdp: FreeRDP has a Heap-use-after-free in play_thread

A heap use after free has been discovered in FreeRDP. The RDPSND async playback thread can process queued PDUs after the channel is closed and internal state is freed, leading to a use after free in rdpsndtreatwave...

CVE-2024-34046

The O-RAN E2T I-Release Prometheus metric Increment function can crash in sctpThread.cpp for message.peerInfo-sctpParams-e2tCountersINSUCCMSGCOUNTERProcedureCodeidRICsubscription-Increment...

Linux Distros Unpatched Vulnerability : CVE-2025-68746

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: tegra210-quad: Fix timeout handling When the CPU that the QSPI interrupt handler runs on typically CPU 0 is excessively busy, it can lead to rare cases of...

EUVD-2019-7617

Malware in sbrugna...

EUVD-2020-7668

Malware in sbrugna...

EUVD-2024-53318

Malicious code in bioql PyPI...

CVE-2022-49737

CVE-2022-49737 affects X.Org X server 20.11–21.1.16. The issue is a race condition in the main thread where, when a client uses easystroke for mouse gestures, AttachDevice (dix/devices.c) accesses input-thread data structures without acquiring the input lock. This can enable data-structure modifi...

Linux Distros Unpatched Vulnerability : CVE-2024-26756

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from...

CVE-2024-58048

Multi-thread problem vulnerability in the package management module Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2022-49059

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: add flushworkqueue to prevent uaf Our detector found a concurrent use-after-free bug when detaching an NCI device. The main reason for this bug is the unexpected scheduling between the used delayed mechanism timer and...

CVE-2024-39282

CVE-2024-39282 : Linux kernel vulnerability in net: wwan: t7xx where the FSM command timeout handling can lead to a fault when an asynchronous worker finishes after the main thread releases its completion object. The issue manifests as a page fault (CR2 fffffffffffffff8) in complete_all during FS...

CVE-2024-47813

Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a wasmtime::Engine's internal type registry was susceptible to double-unregistration bugs due to a race condition, leading to panics and potentially type registry corruption. That registry corruption...

PT-2023-27880 · Answer · Answer

Name of the Vulnerable Software and Affected Versions: answer versions prior to 1.1.1 Description: The issue is related to a race condition within a thread. This condition can occur in the GitHub repository answerdev/answer. Recommendations: For versions prior to 1.1.1, update to version 1.1.1 or...

August 9, 2022-KB5015730 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows 10, version 20H2, Windows Server, version 20H2, Windows 10 Version 21H1, and Windows 10 Version 21H2

August 9, 2022-KB5015730 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows 10, version 20H2, Windows Server, version 20H2, Windows 10 Version 21H1, and Windows 10 Version 21H2 Release Date: August 9, 2022 Version: .NET Framework 3.5 and 4.8 The August 9, 2022 update for Windows...

SuSE 11.3 Security Update : bind (SAT Patch Number 10100)

bind has been updated to version 9.9.6P1, fixing the following security issue : - A flaw in delegation handling could be exploited to put named into an infinite loop. This has been addressed by placing limits on the number of levels of recursion named will allow default 7, and the number of...

SuSE 11.2 Security Update : Java 1.6.0 (SAT Patch Number 7332)

java-160-openjdk based on Icedtea6-1.12.2 was released, fixing various security issues : New in release 1.12.2 2012-02-03 : - Security fixes - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name ...

Mandriva Linux Security Advisory : java-1.6.0-openjdk (MDVSA-2013:010)

Multiple security issues were identified and fixed in OpenJDK icedtea6 : - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time - S6776941: CVE-2013-0427: Impro...