PT-2026-27770

Name of the Vulnerable Software and Affected Versions BIND versions 9.11.0 through 9.16.50 BIND versions 9.18.0 through 9.18.46 BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.11.3-S1 through 9.16.50-S1 BIND versions 9.18.11-S1 through 9.18.46-S1 BIND...

PT-2026-27773

Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description BIND may terminate unexpectedly when processing a correctly signed query containing a TKEY record. This issue occu...

PT-2026-27772

Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description A specially crafted domain can be used to cause a memory leak in a BIND resolver by querying this domain. The issu...

PT-2026-27775

Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description A use-after-return issue exists in the named server when processing DNS queries signed with SIG0. A crafted DNS...

SUSE CVE-2022-50816

In the Linux kernel, the following vulnerability has been resolved: ipv6: ensure sane device mtu in tunnels Another syzbot report 1 with no reproducer hints at a bug in ip6gre tunnel dev:ip6gretap0 Since ipv6 mcast code makes sure to read dev-mtu once and applies a sanity check on it see commit...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-993142)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993142 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-992806)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992806 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993198)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993198 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mcde: Fix refcount leak in mcdedsibind Every iteration of foreachavailablechildofnode...

CVE-2023-54321

In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential null-ptr-deref in deviceadd I got the following null-ptr-deref report while doing fault injection test: BUG: kernel NULL pointer dereference, address: 0000000000000058 CPU: 2 PID: 278 Comm: 37-i2c-ds248...

OESA-2025-2875 dhcp security update

The Dynamic Host Configuration Protocol DHCP is a network management protocol used on UDP/IP networks whereby a DHCP server dynamically assigns an IP address and other network configuration parameters to each device on a network so they can communicate with other IP networks. Security Fixes: Unde...

CVE-2025-15216

A vulnerability was identified in Tenda AC23 16.03.07.52. This impacts the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument bindnum leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available an...

CVE-2025-15216

CVE-2025-15216 affects Tenda AC23 firmware version 16.03.07.52. The vulnerability resides in the fromSetIpMacBind function in /goform/SetIpMacBind, where manipulation of the bindnum argument triggers a stack-based buffer overflow. This could be exploited remotely, with the exploit publicly availa...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992355)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992355 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992528)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992528 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Exploit for CVE-2025-15177

CVE-2025-15177 Tenda WH450 V1.0.0.18 Stack Buffer Overflow...

CVE-2025-15177

CVE-2025-15177 affects Tenda WH450 1.0.0.18. Vulnerable in the HTTP Request Handler, specifically the file "/goform/SetIpBind". Manipulating the page argument leads to a stack-based buffer overflow. The issue can be exploited remotely; exploit code has been disclosed (PoC present) and the provide...

SUSE CVE-2023-54105

In the Linux kernel, the following vulnerability has been resolved: can: isotp: check CAN address family in isotpbind Add missing check to block non-AFCAN binds. Syzbot created some code which matched the right sockaddr struct size but used AFXDP 0x2C instead of AFCAN 0x1D in the address family...

SUSE CVE-2025-68736

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disconnected directories Disconnected files or directories can appear when they are visible and opened from a bind mount, but have been renamed or moved from the source of the bind mount in a way that...

Linux Distros Unpatched Vulnerability : CVE-2022-50761

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed,...

Linux Distros Unpatched Vulnerability : CVE-2023-54105

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: isotp: check CAN address family in isotpbind Add missing check to block non-AFCAN binds. Syzbot created some code which matched the right sockaddr struct...