Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004185)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004185 advisory. A buffer over-read flaw was found in RH kernel versions before 5.0 in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module,...

CVE-2025-60003

A Buffer Over-read vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. When an affected device receives a BGP update with a set of specific optional transitive...

CVE-2025-60003

A Buffer Over-read vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. When an affected device receives a BGP update with a set of specific optional transitive...

PT-2026-3110

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 22.4R3-S8 Juniper Networks Junos OS versions 23.2 through 23.2R2-S5 Juniper Networks Junos OS versions 23.4 through 23.4R2-S6 Juniper Networks Junos OS versions 24.2 through 24.2R2-S2 Juniper Network...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002400)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002400 advisory. The ieee80211radiotapiteratorinit function in net/wireless/radiotap.c in the Linux kernel before 3.11.7 does not check whether a frame contains any data outside of t...

openSUSE 16 Security Update : libpng16 (openSUSE-SU-2026:20017-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20017-1 advisory. - CVE-2025-64505: heap buffer over-read in pngdoquantize when processing PNG files malformed palette indices bsc1254157. - CVE-2025-64506: heap...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002540)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002540 advisory. In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed in nl80211setstation wh...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003288)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003288 advisory. In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a buffer overread is observed in nl80211setstation wh...

LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_*

...

MiracleLinux 4 : php-5.3.3-3.AXS4.5 (AXSA:2012-30:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-30:01 advisory. PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers...

ROS-20260114-7328

A vulnerability in the net/sched/schcake.c component of the Linux operating system kernel is related to reading outside the allowed data buffer boundaries. Exploitation of the vulnerability may allow an attacker to gain access to confidential data, violate its integrity, and cause a denial of...

Juniper Junos OS Vulnerability (JSA103166)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA103166 advisory. - A Buffer Over-read vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to...

Astra Linux – Vulnerability in ffmpeg

When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rlerawsize from the input file at 0, decompress and decode it into the buffer td-rlerawdata of size rlerawsize a...

Security update for util-linux

This update for util-linux fixes the following issues: CVE-2025-14104: Fixed heap buffer overread in setpwnam when processing 256-byte usernames bsc1254666. lscpu: Add support for NVIDIA Olympus arm64 core jscPED-13682. Patch Instructions: To install this SUSE update use the SUSE recommended...

MiracleLinux 8 : python39:3.9 (AXSA:2025-11636:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11636:01 advisory. python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used CVE-2024-5642 python: Virtual environment venv activation scripts...

MiracleLinux 8 : libjpeg-turbo-1.5.3-14.el8_10 (AXSA:2025-9945:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9945:01 advisory. libjpeg-turbo: heap-based buffer over-read in getrgbrow in rdppm.c CVE-2020-13790 Tenable has extracted the preceding description block directly from the...

ROS-20260113-7373

A vulnerability in the smb2read function in the fs/smb/server/smb2pdu.c module of the Linux kernel is related to reading beyond buffer boundaries. Exploitation of the vulnerability may allow a remote intruder to affect confidentiality, integrity and availability of protected information...

CVE-2026-22801

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.26 to 1.6.53, there is an integer truncation in the libpng simplified write API functions pngwriteimage16bit and pngwriteimage8bit causes heap buffer...

AZL-74499 CVE-2026-22801 affecting package gdal 3.6.3-5

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.26 to 1.6.53, there is an integer truncation in the libpng simplified write API functions pngwriteimage16bit and pngwriteimage8bit causes heap buffer...

DEBIAN-CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...