36870 matches found
github.com/sirupsen/logrus: github.com/sirupsen/logrus: Denial-of-Service due to large single-line payload
A denial-of-service vulnerability in github.com/sirupsen/logrus occurs when Entry.Writer processes a single-line payload larger than 64KB with no newline characters. Due to a limitation in Go’s internal bufio.Scanner, the read operation fails with a “token too long” error, causing the underlying...
PT-2026-39922
Name of the Vulnerable Software and Affected Versions SAP Commerce cloud affected versions not specified Description Improper Spring Security configuration allows an unauthenticated user to perform malicious configuration upload and code injection. This can result in arbitrary server-side code...
Unity Linux 20.1060e / 20.1070e Security Update: openjpeg2 (UTSA-2026-017599)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017599 advisory. There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to provide untrusted input to openjpeg's conversion/encoding...
Unity Linux 20.1060e / 20.1070e Security Update: openjpeg2 (UTSA-2026-017606)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017606 advisory. There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: grub2 (UTSA-2026-017467)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017467 advisory. A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain command...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: grub2 (UTSA-2026-017480)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017480 advisory. A flaw was found in grub2 in versions prior to 2.06. Setparamprefix in the menu rendering code performs a length calculation on the assumption that expressing a quot...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: grub2 (UTSA-2026-017478)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017478 advisory. A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, usi...
Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017567)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017567 advisory. A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion i...
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017530)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017530 advisory. A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. This flaw allows an attacker who submits a crafted file that is processed by...
GhostLock: SMB Deny-Share Handles As a Zero-Privilege Availability Weapon
GhostLock demonstrates that a low-privileged Windows domain user with standard read access to an SMB share can produce ransomware-equivalent organizational availability impact with zero writes, zero encryption, and zero signals in every behavioral defense the modern enterprise security stack...
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017523)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017523 advisory. A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in t...
Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017655)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017655 advisory. A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAPs slapd server, to trigger an assertion failure...
OPENSUSE-SU-2026:10745-1 bettercap-2.41.7-1.1 on GA media
These are all security issues fixed in the bettercap-2.41.7-1.1 package on the GA media of openSUSE Tumbleweed...
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017577)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017577 advisory. A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior i...
OPENSUSE-SU-2026:10751-1 libvinylapi3-9.0.0-1.1 on GA media
These are all security issues fixed in the libvinylapi3-9.0.0-1.1 package on the GA media of openSUSE Tumbleweed...
D-Link M60 License Issue Vulnerability
The D-Link M60 is a wireless routing device from China-based D-Link. An authorization issue vulnerability exists in D-Link M60 version 1.20B02 and prior versions, which stems from a weak password recovery issue in the file /usr/bin/httpd, and can be exploited by an attacker to cause...
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017513)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017513 advisory. A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined...
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017538)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017538 advisory. A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form...
Unity Linux 20.1060e / 20.1070e Security Update: rpm (UTSA-2026-017547)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017547 advisory. A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly...
Unity Linux 20.1060e / 20.1070e Security Update: rpm (UTSA-2026-017662)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017662 advisory. A flaw was found in RPM's hdrblobInit in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from...