Linux Distros Unpatched Vulnerability : CVE-2026-46253

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persistentramsaveold persistentramsaveold can be called...

CVE-2025-47404 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

CVE-2025-47404

CVE-2025-47404 describes memory corruption that occurs when dynamically changing the size of a previously allocated buffer while its contents are being modified. The NVD entry lists a Local attack vector with Low exploit complexity and Low privileges, resulting in High impact to confidentiality, ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ipv6: add a retry logic in net6rtnotify inet6rtnotify can be called under RCU protection only. This means the route could be changed concurrently and rt6fillnode could return -EMSGSIZE. Re-size the skb when this happens and retry...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fixed the initialization of the CQ fragments buffer. The function initcqfragbuf can be used to initialize the current CQ fragments buffer cq-buf, or the temporary cq-resizebuf that is filled during the CQ resize operatio...

Astra Linux - уязвимость в redis

Redis is an in-memory database that persists on disk. Redis incorrectly handles resizing of memory buffers which can result in integer overflow that leads to heap overflow and potential remote code execution. This issue has been patched in version 7.0.15 and 7.2.4...

CVE-2026-31742

In the Linux kernel, the following vulnerability has been resolved: vt: discard stale unicode buffer on alt screen exit after resize When enteraltscreen saves vcunilines into vcsavedunilines and sets vcunilines to NULL, a subsequent console resize via vcdoresize skips reallocating the unicode...

CLSA-2026-1776960263 ImageMagick: Fix of CVE-2026-32636

CVE-2026-32636: out-of-bounds write of a single zero byte in ConvertUTF16ToUTF8 via NewXMLTree when resizing UTF-8 buffer...

CLSA-2026-1776257772 ImageMagick: Fix of CVE-2026-32636

CVE-2026-32636: out-of-bounds write of a single zero byte in ConvertUTF16ToUTF8 via NewXMLTree when resizing UTF-8 buffer...

CLSA-2026-1776257247 ImageMagick: Fix of CVE-2026-32636

CVE-2026-32636: out-of-bounds write of a single zero byte in ConvertUTF16ToUTF8 via NewXMLTree when resizing UTF-8 buffer...

CVE-2026-33021 libsixel: Use-after-free in sixel_encoder_encode_bytes()

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a use-after-free vulnerability in sixelencoderencodebytes because sixelframeinit stores the caller-owned pixel buffer pointer directly in frame-pixels without making a defensive copy...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002994)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002994 advisory. The ringbufferresize function in kernel/trace/ringbuffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003394)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003394 advisory. The ringbufferresize function in kernel/trace/ringbuffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which...

CVE-2019-20024

A heap-based buffer overflow was discovered in imagebufferresize in fromsixel.c in libsixel before 1.8.4...

CVE-2025-68376

In the Linux kernel, the following vulnerability has been resolved: coresight: ETR: Fix ETR buffer use-after-free issue When ETR is enabled as CSMODESYSFS, if the buffer size is changed and enabled again, currently sysfsbuf will point to the newly allocated memorybufnew and free the old...

CVE-2025-68376 coresight: ETR: Fix ETR buffer use-after-free issue

In the Linux kernel, the following vulnerability has been resolved: coresight: ETR: Fix ETR buffer use-after-free issue When ETR is enabled as CSMODESYSFS, if the buffer size is changed and enabled again, currently sysfsbuf will point to the newly allocated memorybufnew and free the old...

Linux Distros Unpatched Vulnerability : CVE-2019-20024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow was discovered in imagebufferresize in fromsixel.c in libsixel before 1.8.4. CVE-2019-20024 Note that Nessus relies on the presence...

Linux Distros Unpatched Vulnerability : CVE-2019-20023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak was discovered in imagebufferresize in fromsixel.c in libsixel 1.8.4. CVE-2019-20023 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2020-27825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free flaw was found in kernel/trace/ringbuffer.c in Linux kernel before 5.10-rc1. There was a race problem in traceopen and resize of cpu buffer...

Linux Distros Unpatched Vulnerability : CVE-2022-50222

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tty: vt: initialize unicode screen buffer syzbot reports kernel infoleak at vcsread 1, for buffer can be read immediately after resize operation. Initialize...