PT-2026-2565

Name of the Vulnerable Software and Affected Versions versions prior to 2025-68960 Description A multi-thread race condition exists in the video framework module. Successful exploitation of this issue may affect availability. Recommendations At the moment, there is no information about a newer...

PT-2026-2562

Name of the Vulnerable Software and Affected Versions Versions prior to 2025-68957 Description A multi-thread race condition exists within the card framework module. Successful exploitation of this issue may affect system availability. Recommendations At the moment, there is no information about ...

PT-2026-2560

Name of the Vulnerable Software and Affected Versions versions prior to 2025-68955 Description A multi-thread race condition exists in the card framework module. Successful exploitation could impact availability. Recommendations At the moment, there is no information about a newer version that...

ROS-20260114-7323

A vulnerability in the netemdequeue function of the net/sched/schnetem.c module of the net/sched traffic control subsystem of the net/sched kernel of the Linux operating system is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect...

ROS-20260114-7305

A vulnerability in the irqreturnt hi3110canist function of the drivers/net/can/spi/hi311x.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected...

OPENSUSE-SU-2026:10050-1 rke2-1.34-1.34.3+rke2r1-1.1 on GA media

These are all security issues fixed in the rke2-1.34-1.34.3+rke2r1-1.1 package on the GA media of openSUSE Tumbleweed...

PT-2026-2561

Name of the Vulnerable Software and Affected Versions versions prior to 2025-68956 Description A multi-thread race condition exists within the card framework module. Successful exploitation of this issue may affect system availability. Recommendations At the moment, there is no information about ...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000568)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000568 advisory. Unspecified vulnerability in the kernel-uek component in Oracle Linux 6 allows local users to affect availability via unknown vectors. Tenable has extracted the...

mcphost-0.32.0-1.1 on GA media (moderate)

mcphost-0.32.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10042-1 Rating: moderate Cross-References: CVE-2025-47913 CVE-2025-47914 CVE-2025-58181 CVSS scores: CVE-2025-47913 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-47913 SUSE : 8.7...

MiracleLinux 4 : mysql-5.1.61-1.1.0.1.AXS4 (AXSA:2012-195:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-195:01 advisory. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many...

OPENSUSE-SU-2026:10049-1 python311-urllib3-2.6.3-1.1 on GA media

These are all security issues fixed in the python311-urllib3-2.6.3-1.1 package on the GA media of openSUSE Tumbleweed...

ROS-20260114-7306

A vulnerability in the cleanupnet function of the include/net/netnamespace.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

ROS-20260114-7320

A vulnerability in the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected information...

ROS-20260114-7322

A vulnerability in the pfifotailenqueue function net/sched/schfifo.c of the Linux operating system kernel is associated with a functionality mismatch according to the specification. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of...

ROS-20260114-7307

A vulnerability in the sockmaplookupsys function of the net/core/sockmap.c module of the Linux kernel is related to synchronization errors when using a shared resource . Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected...

CVE-2025-41717

An unauthenticated remote attacker can trick a high privileged user into uploading a malicious payload via the config-upload endpoint, leading to code injection as root. This results in a total loss of confidentiality, availability and integrity due to improper control of code generation 'Code...

CVE-2025-41717 Config-Upload Code Injection

An unauthenticated remote attacker can trick a high privileged user into uploading a malicious payload via the config-upload endpoint, leading to code injection as root. This results in a total loss of confidentiality, availability and integrity due to improper control of code generation 'Code...

CVE-2026-0506

Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC function to execute form routines FORMs in the ABAP system. Successful exploitation could allow the attacker to write or modify data accessible via FORMs...

CVE-2026-0492

SAP HANA database is vulnerable to privilege escalation allowing an attacker with valid credentials of any user to switch to another user potentially gaining administrative access. This exploit could result in a total compromise of the system�s confidentiality, integrity, and availability...

CVE-2026-0513 Open Redirect Vulnerability in SAP Supplier Relationship Management (SICF Handler in SRM Catalog)

Due to an Open Redirect Vulnerability in SAP Supplier Relationship Management SICF Handler in SRM Catalog, an unauthenticated attacker could craft a malicious URL that, if accessed by a victim, redirects them to an attacker-controlled site.This causes low impact on integrity of the application...