11954 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-38208
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/nfc/llcpsock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service NULL pointer dereference and BUG by making a...
Linux Distros Unpatched Vulnerability : CVE-2024-0760
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recove...
domquery (>=1.0.0 <=1.0.1) potentially affected by unknown CVE via bind-key (=0.0.0)
bind-key NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on bind-key and may be impacted: - domquery =1.0.0, =1.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-15691...
MAL-2025-15691 Malicious code in bind-key (npm)
The package bind-key was found to contain malicious code...
Malicious code in bind-key (npm)
The package bind-key was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2020-25670
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Linux Kernel where refcount leak in llcpsockbind causing use-after-free which might lead to privilege escalations. CVE-2020-25670...
Linux Distros Unpatched Vulnerability : CVE-2024-27059
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB: usb-storage: Prevent divide-by-0 error in isd200atacommand The isd200 sub-driver in usb-storage uses the HEADS and SECTORS values in the ATA ID information...
Linux Distros Unpatched Vulnerability : CVE-2020-1746
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 as well as Ansible...
Linux Distros Unpatched Vulnerability : CVE-2023-3341
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the...
Linux Distros Unpatched Vulnerability : CVE-2020-35519
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds OOB memory access flaw was found in x25bind in net/x25/afx25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local...
Linux Distros Unpatched Vulnerability : CVE-2025-21917
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: renesasusbhs: Flush the notifyhotplugwork When performing continuous unbind/bind operations on the USB drivers available on the Renesas RZ/G2L SoC, a kerne...
Important: bind
Issue Overview: If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer-client-timeout set to 0 the only allowable value other than disabled, and if the resolver, in the process of resolving a query, encounters a CNAME chain involving a specific combination of...
Linux Distros Unpatched Vulnerability : CVE-2025-40777
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If a named caching resolver is configured with serve-stale-enable yes, and with stale-answer- client-timeout set to 0 the only allowable value other than...
Linux Distros Unpatched Vulnerability : CVE-2023-5517
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receiv...
Linux Distros Unpatched Vulnerability : CVE-2018-6554
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to...
Linux Distros Unpatched Vulnerability : CVE-2023-2911
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If the recursive-clients quota is reached on a BIND 9 resolver configured with both stale-answer-enable yes; and stale-answer-client-timeout 0;, a sequence of...
Linux Distros Unpatched Vulnerability : CVE-2023-5679
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are...
Linux Distros Unpatched Vulnerability : CVE-2023-4236
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failure. This happens when internal da...
Linux Distros Unpatched Vulnerability : CVE-2021-25216
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A bind authentication bypass vulnerability exists in Huawei HarmonyOS devicemanager, which can be exploited by an attacker to compromise confidentiality...