253628 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-8258
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in Squirrel up to 3.2. Impacted is the function validateformat in the library sqstdlib/sqstdstring.cpp. Executing a manipulation can lead ...
PT-2026-39718
Name of the Vulnerable Software and Affected Versions jq versions prior to 1.8.2 Description A flaw exists in the decNumberFromString function when processing a number literal containing 2147483646 digits. This causes the D2U macro to overflow during signed-int arithmetic, leading to a wrapped...
RHEL 9 : nginx (RHSA-2026:15942)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:15942 advisory. nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage...
Unity Linux 20.1060e / 20.1070e Security Update: openvswitch (UTSA-2026-017643)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017643 advisory. Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and...
PT-2026-39761
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A remote attacker may be able to cause unexpected app...
PT-2026-39846
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.5 iPadOS versions prior to 26.5 macOS Tahoe versions prior to 26.5 tvOS versions prior to 26.5 watchOS versions prior to 26.5 Description A buffer overflow occurs when a program writes more data to a memory buffer than...
Apple macOS 安全漏洞
Apple macOS is a proprietary operating system developed by the American company Apple for Mac computers. Vulnerabilities exist in versions of Apple macOS such as Sequoia 15.7.7, Sonoma 14.8.7, and Tahoe 26.5. These vulnerabilities are due to buffer overflow issues, which may cause the application...
Linux Distros Unpatched Vulnerability : CVE-2026-5244
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in Cesanta Mongoose up to 7.20. This affects the function mgtlsrecvcert of the file mongoose.c of the component TLS 1.3 Handler...
ALSA-2026:16014 Moderate: freerdp security update
FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service via heap use-after-free during...
PT-2026-39763
Name of the Vulnerable Software and Affected Versions macOS Sequoia versions prior to 15.7.7 macOS Tahoe versions prior to 26.5 Description A buffer overflow, which occurs when data exceeds the allocated memory boundary, was addressed with improved bounds checking. A remote attacker may be able t...
Linux Distros Unpatched Vulnerability : CVE-2026-5172
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow in dnsmasq's extractaddresses function allows an attacker to trigger a heap out-of- bounds read and crash by exploiting a malformed DNS...
Unity Linux 20.1060e / 20.1070e Security Update: redis (UTSA-2026-017593)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017593 advisory. Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debuggers...
Linux kernel 缓冲区错误漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. The Linux kernel has a buffer error vulnerability, which stems from the lack of separation of paginated fragments during the processing of DATA and RESPONSE packets in...
DNSmasq 安全漏洞
DNSmasq is a DNS configuration tool developed by Simon Kelley. DNSmasq has a security vulnerability, which stems from a buffer overflow in the extractaddresses function. This vulnerability allows attackers to trigger heap-based out-of-bounds reads by exploiting malformed DNS responses, causing a...
MiracleLinux 9 : freeipmi-1.6.17-1.el9_7 (AXSA:2026-584:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-584:01 advisory. freeipmi: buffer overflows on response messages via ipmi-oem CVE-2026-33554 Tenable has extracted the preceding description block directly from the MiracleLin...
Linux Distros Unpatched Vulnerability : CVE-2020-25887
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in mgresolvefromhostsfile in Mongoose 6.18, when reading from a crafted hosts file. CVE-2020-25887 Note that Nessus relies on the presence of th...
Unity Linux 20.1060e / 20.1070e Security Update: openjpeg2 (UTSA-2026-017502)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017502 advisory. A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some case...
Linux Distros Unpatched Vulnerability : CVE-2025-51495
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can...
Neat VNC 安全漏洞
Neat VNC is a freely licensed VNC server library developed by Andri Yngvason. Versions of Neat VNC prior to 0.9.6 contained security vulnerabilities. These vulnerabilities stemmed from a buffer overflow in the RSA-AES security processor, which could allow unauthenticated remote attackers to cause...
freerdp security update
2:3.10.3-5.8 - Fix double free in xfrailwindowcommon cleanup CVE-2026-26986 - Fix clipboard use-after-free during auto-reconnect CVE-2026-25997 - Fix heap-buffer-overflow in bitmapcacheput CVE-2026-29775 - Add DSP format checks CVE-2026-31884 - Fix DSP array bounds checks CVE-2026-31883 - Fix DSP...