Important: kernel-livepatch-4.14.355-275.572

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string buffer overrun CVE-2024-49995 In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing CVE-2024-50279...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: wait and exit until all work queues are done CVE-2021-47163 Placeholder CVE. Details forthcoming CVE-2024-10929 In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string...

Important: kernel-livepatch-4.14.355-275.582

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tipc: guard against string buffer overrun CVE-2024-49995 In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing CVE-2024-50279...

Linux Distros Unpatched Vulnerability : CVE-2024-53142

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver- api/early-userspace/buffer-format.rst as: 37 cpiofile ...

Linux Distros Unpatched Vulnerability : CVE-2024-53106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ima: fix buffer overrun in imaeventdigestinitcommon Function imaeventdigestinit calls...

Linux Distros Unpatched Vulnerability : CVE-2024-41038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Prevent buffer overrun when processing V2 alg headers Check that all fields...

Linux Distros Unpatched Vulnerability : CVE-2023-22745

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tpm2-tss is an open source software implementation of the Trusted Computing Group TCG Trusted Platform Module TPM 2 Software Stack TSS2. In versions prior to...

Linux Distros Unpatched Vulnerability : CVE-2022-4899

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun...

Linux Distros Unpatched Vulnerability : CVE-2021-3712

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data and a field holding the buffe...

The vulnerability of the memmove function in the BioNTdrv.sys driver of software for working with hard disk partitions in Paragon Partition Manager allows a hacker to gain increased privileges.

The vulnerability of the memmove function in the BioNTdrv.sys driver, a software component used for working with hard disk partitions in Paragon Partition Manager, is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased...

The vulnerability of the BioNTdrv.sys driver, a software component used for working with Paragon Partition Manager partition drives, allows a hacker to execute arbitrary code.

The vulnerability of the BioNTdrv.sys driver, a software component used for working with Paragon Partition Manager partition management tools, is related to writing beyond buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of PDF-XChange Editor’s document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerability of PDF document viewing and editing software PDF-XChange Editor lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created XPS file...

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created JB2 file...

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of PDF-XChange Editor, a program for viewing and editing PDF documents, relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created U3D file...

DEBIAN-CVE-2025-21738

In the Linux kernel, the following vulnerability has been resolved: ata: libata-sff: Ensure that we cannot write outside the allocated buffer reveliofuzzing reported that a SCSIIOCTLSENDCOMMAND ioctl with outlen set to 0xd42, SCSI command set to ATA16 PASS-THROUGH, ATA command set to ATANOP, and...

The vulnerability of the Tenda AX3 Wi-Fi router’s microprogramming software, related to the execution of operations beyond the buffer in memory, allows attackers to escalate their privileges and cause service interruptions.

The vulnerability of the Tenda AX3 Wi-Fi router’s microprogramming software is related to the operation of the function that outputs data beyond the buffer in memory when processing the firewallEn parameter. Exploiting this vulnerability can allow a remote attacker to increase their privileges an...

The vulnerability of the get_parentControl_list_Info() function in the Tenda AC8 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the getparentControllistInfo function in the Tenda AC8 router’s microprogramming software is related to the operation of writing data outside the buffer in memory when processing the urls parameter. Exploiting this vulnerability could allow a remote attacker to cause a servic...

The vulnerability of the Simple Network Management Protocol (SNMP) implementation in Cisco IOS and Cisco IOS XE operating systems allows a attacker to induce a service failure.

The vulnerability of the Simple Network Management Protocol SNMP implementation in Cisco IOS and Cisco IOS XE operating systems is related to the escape of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to trigger a service failure remotely...

The vulnerabilities of the s390/sclp components of the Linux operating system’s kernel, which allow a hacker to cause a service failure

The vulnerability of the s390/sclp components of the Linux operating system’s kernel is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the iconv function in the musl libc library, which allows a hacker to execute arbitrary code.

The vulnerability of the iconv function in the musl libc library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code when calling the function for converting text from EUC-KR to UTF-8...