210 matches found
CVE-2026-46100
A flaw was found in the Linux kernel's AFS Andrew File System component. The mmapprepare function was incorrectly used, leading to a reference count refcount leak. This issue occurs when mmapprepare establishes a refcount, but a subsequent operation fails, causing the refcount to be leaked. This...
CVE-2026-46100
In the Linux kernel, the following vulnerability has been resolved: fs: afs: revert mmapprepare change Partially reverts commit 9d5403b1036c "fs: convert most other genericfilemmap users to .mmapprepare". This is because the .mmap invocation establishes a refcount, but .mmapprepare is called at a...
EUVD-2026-32483
In the Linux kernel, the following vulnerability has been resolved: fs: afs: revert mmapprepare change Partially reverts commit 9d5403b1036c "fs: convert most other genericfilemmap users to .mmapprepare". This is because the .mmap invocation establishes a refcount, but .mmapprepare is called at a...
CVE-2026-46100
fs: afs: revert mmapprepare change...
CVE-2026-8210
A security vulnerability has been detected in aandrew-me tgpt up to 2.11.1 on Linux/macOS. Affected by this vulnerability is the function helper.Update of the file helper.go of the component Update Handler. The manipulation leads to command injection. Local access is required to approach this...
SUSE CVE-2026-43463
In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix missing error pointer check after rxrpckernellookuppeer rxrpckernellookuppeer can also return error pointers in addition to NULL, so just checking for NULL is not sufficient. Fix this by: 1 Changing...
EUVD-2026-20402
Missing Authorization vulnerability in Andrew ShopWP wpshopify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShopWP: from n/a through = 5.2.4...
USN-7922-3 linux-oracle-5.4 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - InfiniBand drivers; - Media drivers; - Network drivers; - Pin controllers...
USN-7928-4 linux-raspi vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Media drivers; - Network drivers; - AFS file system; - F2FS file system; - Tracing...
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-7928-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7928-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...
USN-7907-3 linux-gcp, linux-gcp-4.15, linux-hwe vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - Hardware monitoring drivers; - InfiniBand drivers; - Mailbox framework; -...
afs: Fix potential null pointer dereference in afs_put_server
...
CVE-2025-40010 afs: Fix potential null pointer dereference in afs_put_server
In the Linux kernel, the following vulnerability has been resolved: afs: Fix potential null pointer dereference in afsputserver afsputserver accessed server-debugid before the NULL check, which could lead to a null pointer dereference. Move the debugid assignment, ensuring we never dereference a...
EUVD-2023-27787
Malicious code in bioql PyPI...
EUVD-2023-35116
Malicious code in bioql PyPI...
PT-2025-42779
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s AFS subsystem where a null pointer dereference could occur within the afs put server function. Specifically, the function accessed server-debug id...
afs: Fix lock recursion
...
Linux Distros Unpatched Vulnerability : CVE-2024-26736
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: afs: Increase buffer size in afsupdatevolumestatus The max length of volume-vid value is 20...
A Bootiful Podcast: Andrew Lombardi, Beginning Spring AI co-author, and friend of the show
Hi, Spring fans! In this installment I am thrilled to talk to my longtime friend Andrew Lombardi about the latest-and-greatest, his new book Beginning Spring AI , and more...
CVE-2023-30752
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Silvia Pfeiffer and Andrew Nimmo External Videos plugin = 2.0.1 versions...