MiracleLinux 8 : qt5-qtsvg-5.15.3-2.el8 (AXSA:2023-7241:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7241:02 advisory. qt: Uninitialized variable usage in munitsPerEm CVE-2023-32573 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : firefox-91.10.0-1.el8.ML.1 (AXSA:2022-3739:18)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3739:18 advisory. Mozilla: Cross-Origin resource's length leaked CVE-2022-31736 Mozilla: Heap buffer overflow in WebGL CVE-2022-31737 Mozilla: Browser window spoof...

Astra Linux – Vulnerability in libssh

A vulnerability was discovered in libssh, where an uninitialized variable exists under certain conditions within the privatekeyfromfile function. This flaw can be exploited if the file specified by the filename does not exist, and it may lead to potential signing failures or heap corruption...

CVE-2019-20785

An issue was discovered on LG mobile devices with Android OS 8.0 and 8.1 software for the DTAG carrier. RILD in the radio layer uses an uninitialized variable. The LG ID is LVE-SMP-180013 January 2019...

CVE-2022-31026

Trilogy is a client library for MySQL. When authenticating, a malicious server could return a specially crafted authentication packet, causing the client to read and return up to 12 bytes of data from an uninitialized variable in stack memory. Users of the trilogy gem should upgrade to version...

CVE-2017-18306

Information disclosure due to uninitialized variable...

Use of Uninitialized Variable

Overview Panda3D is a Panda3D is a framework for 3D rendering and game development for Python and C++ programs. Affected versions of this package are vulnerable to Use of Uninitialized Variable via the deploy-stub process. An attacker can cause the application to crash or exhibit undefined behavi...

CVE-2025-1649

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

CVE-2025-1650

A maliciously crafted CATPRODUCT file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

CVE-2025-47348

CVE-2025-47348 is a memory corruption vulnerability in Qualcomm chipsets related to identity credential processing in the trusted application. The issue is described as memory corruption during identity credential operations. CVSS v3.1 metrics indicate a HIGH base score (7.8) with local attack ve...

CVE-2025-47348 Use of Uninitialized Variable in HLOS

Memory corruption while processing identity credential operations in the trusted application...

CVE-2025-47348 Use of Uninitialized Variable in HLOS

Memory corruption while processing identity credential operations in the trusted application...

CVE-2023-54265

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

CVE-2023-54265

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

UBUNTU-CVE-2023-54265

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

CVE-2023-54265

CVE-2023-54265 affects the Linux kernel: an uninit variable access in __ip6_make_skb() can occur when icmp6hdr is not in the skb’s linear region (notably with SOCK_RAW); the fix uses a local icmp6_type to carry the correct value across scenarios. Public advisories from multiple vendors (Red Hat, ...

CVE-2023-54265 ipv6: Fix an uninit variable access bug in __ip6_make_skb()

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6makeskb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in archatomic64inc arch/x86/include/asm/atomic6464.h:88 inli...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from an uninitialized variable access in ip6makeskb in ipv6, which could lead to undefined behavior...

PT-2025-54094

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix an uninit variable access bug in ip6 make skb Syzbot reported a bug as following: ===================================================== BUG: KMSAN: uninit-value in arch atomic64 inc arch/x86/include/asm/atomic64 64.h:88...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992344)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992344 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: wil6210: debugfs: fix uninitialized variable use in wilwritefilewmi Commit 7a4836560a61...