CVE-2026-7416

A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function buildproject/runtests of the file src/index.ts of the component MCP Interface. The manipulation of the argument Request results in os command injection. The attack may be launched remotely. The exploit...

CLSA-2026-1777479919 bind: Fix of CVE-2025-40778

CVE-2025-40778: reject forged records in answer sections to prevent cache poisoning via crafted responses - build tests improved...

CLSA-2026-1777287060 bind: Fix of CVE-2025-40778

CVE-2025-40778: reject forged records in answer sections to prevent cache poisoning via crafted responses - build tests improved...

CLSA-2026-1776935009 bind: Fix of CVE-2025-40778

CVE-2025-40778: reject forged records in answer sections to prevent cache poisoning via crafted responses - build tests improved...

SUSE-SU-2026:20096-1 Security update for cargo-c

This update for cargo-c fixes the following issues: - CVE-2025-4574: crossbeam-channel: Fixed double-free on drop in Channel::discardallmessages bsc1243179 - CVE-2025-58160: tracing-subscriber: Fixed log pollution bsc1249012 - CVE-2024-12224: idna: Fixed improper validation of Punycode labels...

Security update for elfutils

This update for elfutils fixes the following issues: Fixing build/testsuite for more recent glibc and kernels. Fixing denial of service and general buffer overflow errors bsc1237236, bsc1237240, bsc1237241, bsc1237242: CVE-2025-1376: Fixed denial of service in function elfstrptr in the library...

CLSA-2025-1753207715 glib2: Fix of CVE-2024-52533

CVE-2024-52533: gsocks4aproxy: fix a single byte buffer overflow in connect messages - Enable tests during build - Fix test failure in gdatetime...

CLSA-2023-1682593947 Fix CVE(s): CVE-2023-29469, CVE-2023-28484

SECURITY UPDATE: Null dereference - debian/patches/CVE-2023-28484.patch: Fix null-pointer-deref in xmlSchemaFixupComplexType - CVE-2023-28484 SECURITY UPDATE: Fix a null pointer dereference - debian/patches/fix-null-ptr-deref.patch: use XMLSCHEMASANYTYPE instead of a null pointer - CVE-2023-28484...

CLSA-2023-1675986271 sudo: Fix of CVE-2023-22809

CVE-2023-22809: do not permit editor arguments to include "--" for sudoedit - build tests have been enabled...

CLSA-2023-1675985571 sudo: Fix of CVE-2023-22809

CVE-2023-22809: do not permit editor arguments to include "--" for sudoedit - build tests have been enabled...

sudo: Fix of CVE-2023-22809

CVE-2023-22809: do not permit editor arguments to include "--" for sudoedit - build tests have been enabled...

vulhub111

This repository is an offensive tool for vulnerability research and exploitation. It contains a collection of vulnerable environments and exploits for various software and frameworks, including CouchDB, FFmpeg, Git, and more. The repository is maintained by Vulhub, a community-driven project for...

go-toolset:ol8 security update

go-toolset 1.12.12-1 - Update for golang package fixes 1.12.12-1 - Bump version to 1.12.12 golang 1.12.12-4.0.1 - from upstream https://github.com/golang/go/issues/2775 - move arbitrary value 10% to 15% for GC tests, hits 10.48% on our - infrastructure - Resolves failing post build tests Orabug:...

Fedora 16 : rt3-3.8.15-1.fc16 (2012-17218)

---------------------------------------------------------------------- ---------- ChangeLog : - Sun Oct 28 2012 Ralf Corsepius - 3.8.15-1 - Upstream update RH BZ 870407, CVE-2012-4730, CVE-2012-4732, CVE-2012-4734, CVE-2012-4735, CVE-2012-4884. - Sat Oct 6 2012 Ralf Corsepius - 3.8.14-1 - Upstrea...