PT-2026-27773

Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description BIND may terminate unexpectedly when processing a correctly signed query containing a TKEY record. This issue occu...

PT-2026-27775

Name of the Vulnerable Software and Affected Versions BIND versions 9.20.0 through 9.20.20 BIND versions 9.21.0 through 9.21.19 BIND versions 9.20.9-S1 through 9.20.20-S1 Description A use-after-return issue exists in the named server when processing DNS queries signed with SIG0. A crafted DNS...

SUSE CVE-2022-50816

In the Linux kernel, the following vulnerability has been resolved: ipv6: ensure sane device mtu in tunnels Another syzbot report 1 with no reproducer hints at a bug in ip6gre tunnel dev:ip6gretap0 Since ipv6 mcast code makes sure to read dev-mtu once and applies a sanity check on it see commit...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-993142)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993142 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-992806)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992806 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993198)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993198 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mcde: Fix refcount leak in mcdedsibind Every iteration of foreachavailablechildofnode...

CVE-2023-54321

In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential null-ptr-deref in deviceadd I got the following null-ptr-deref report while doing fault injection test: BUG: kernel NULL pointer dereference, address: 0000000000000058 CPU: 2 PID: 278 Comm: 37-i2c-ds248...

OESA-2025-2875 dhcp security update

The Dynamic Host Configuration Protocol DHCP is a network management protocol used on UDP/IP networks whereby a DHCP server dynamically assigns an IP address and other network configuration parameters to each device on a network so they can communicate with other IP networks. Security Fixes: Unde...

CVE-2025-15216

A vulnerability was identified in Tenda AC23 16.03.07.52. This impacts the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument bindnum leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available an...

CVE-2025-15216

CVE-2025-15216 affects Tenda AC23 firmware version 16.03.07.52. The vulnerability resides in the fromSetIpMacBind function in /goform/SetIpMacBind, where manipulation of the bindnum argument triggers a stack-based buffer overflow. This could be exploited remotely, with the exploit publicly availa...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992528)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992528 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992355)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992355 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Exploit for CVE-2025-15177

CVE-2025-15177 Tenda WH450 V1.0.0.18 Stack Buffer Overflow...

CVE-2025-15177

CVE-2025-15177 affects Tenda WH450 1.0.0.18. Vulnerable in the HTTP Request Handler, specifically the file "/goform/SetIpBind". Manipulating the page argument leads to a stack-based buffer overflow. The issue can be exploited remotely; exploit code has been disclosed (PoC present) and the provide...

SUSE CVE-2023-54105

In the Linux kernel, the following vulnerability has been resolved: can: isotp: check CAN address family in isotpbind Add missing check to block non-AFCAN binds. Syzbot created some code which matched the right sockaddr struct size but used AFXDP 0x2C instead of AFCAN 0x1D in the address family...

SUSE CVE-2025-68736

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disconnected directories Disconnected files or directories can appear when they are visible and opened from a bind mount, but have been renamed or moved from the source of the bind mount in a way that...

Linux Distros Unpatched Vulnerability : CVE-2023-54105

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: isotp: check CAN address family in isotpbind Add missing check to block non-AFCAN binds. Syzbot created some code which matched the right sockaddr struct...

Linux Distros Unpatched Vulnerability : CVE-2022-50761

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed,...

EUVD-2025-205226

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disconnected directories Disconnected files or directories can appear when they are visible and opened from a bind mount, but have been renamed or moved from the source of the bind mount in a way that...

EUVD-2023-60340

In the Linux kernel, the following vulnerability has been resolved: can: isotp: check CAN address family in isotpbind Add missing check to block non-AFCAN binds. Syzbot created some code which matched the right sockaddr struct size but used AFXDP 0x2C instead of AFCAN 0x1D in the address family...