flatpak: Flatpak: Arbitrary file deletion on host via improper cache file path validation

A flaw was found in Flatpak, a Linux application sandboxing and distribution framework. The caching mechanism for ld.so dynamic linker/loader improperly removes outdated cache files without adequately verifying that the application-controlled path to the outdated cache is within the designated...

RockyLinux 8 : flatpak (RLSA-2026:21756)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:21756 advisory. flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options CVE-2026-34078 flatpak: Flatpak: Arbitrary file deletion on ho...

SUSE-SU-2026:1600-1 Security update for flatpak

This update for flatpak fixes the following issues: - CVE-2026-34078: Arbitrary code execution via crafted symlinks in sandbox-expose options bsc1261769. - CVE-2026-34079: Arbitrary file deletion on host via improper cache file path validation bsc1261770...

Always-Incorrect Control Flow Implementation

Overview Affected versions of this package are vulnerable to Always-Incorrect Control Flow Implementation due to an inverted time comparison in the OIDC JWKS and token cache processes. An attacker can cause expired tokens to be reused or force repeated network requests to the OIDC provider by...

Always-Incorrect Control Flow Implementation

Overview Affected versions of this package are vulnerable to Always-Incorrect Control Flow Implementation due to an inverted time comparison in the OIDC JWKS and token cache processes. An attacker can cause expired tokens to be reused or force repeated network requests to the OIDC provider by...

Foxit PDF Reader和Foxit PDF Editor 安全漏洞

Foxit PDF Reader and Foxit PDF Editor are products of Foxit Corporation, a Chinese company. Foxit PDF Reader is a PDF reader. Foxit PDF Editor is a PDF editor. Both Foxit PDF Reader and Foxit PDF Editor have security vulnerabilities. These vulnerabilities stem from JavaScript, which fails to...

CVE-2025-64186

Evervault is a payment security solution. A vulnerability was identified in the evervault-go SDK’s attestation verification logic in versions of evervault-go prior to 1.3.2 that may allow incomplete documents to pass validation. This may cause the client to trust an enclave operator that does not...

CVE-2023-24482

A vulnerability has been identified in COMOS V10.2 All versions, COMOS V10.3.3.1 All versions V10.3.3.1.45, COMOS V10.3.3.2 All versions V10.3.3.2.33, COMOS V10.3.3.3 All versions V10.3.3.3.9, COMOS V10.3.3.4 All versions V10.3.3.4.6, COMOS V10.4.0.0 All versions V10.4.0.0.31, COMOS V10.4.1.0 All...

buildah: Buildah allows arbitrary directory mount

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host read/write into the container as long as those files can...

CVE-2024-9675

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host read/write into the container as long as those files can...

CVE-2024-9675 Buildah: buildah allows arbitrary directory mount

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host read/write into the container as long as those files can...

CVE-2023-24482

A vulnerability has been identified in COMOS V10.2 All versions, COMOS V10.3.3.1 All versions V10.3.3.1.45, COMOS V10.3.3.2 All versions V10.3.3.2.33, COMOS V10.3.3.3 All versions V10.3.3.3.9, COMOS V10.3.3.4 All versions V10.3.3.4.6, COMOS V10.4.0.0 All versions V10.4.0.0.31, COMOS V10.4.1.0 All...

CVE-2023-24482

A vulnerability has been identified in COMOS V10.2 All versions, COMOS V10.3.3.1 All versions V10.3.3.1.45, COMOS V10.3.3.2 All versions V10.3.3.2.33, COMOS V10.3.3.3 All versions V10.3.3.3.9, COMOS V10.3.3.4 All versions V10.3.3.4.6, COMOS V10.4.0.0 All versions V10.4.0.0.31, COMOS V10.4.1.0 All...

CVE-2023-24068

Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to modify conversation attachments within the attachments.noindex directory. Client mechanisms fail to validate modifications of existing cached files, resulting in an attacker's ability to insert malicious code into...

fontconfig: Possible double free due to insufficiently validated cache files

It was found that cache files were insufficiently validated in fontconfig. A local attacker could create a specially crafted cache file to trigger arbitrary free calls, which in turn could lead to arbitrary code execution...

Ubuntu USN-865-1 (bind9)

The remote host is missing an update to bind9 announced via advisory USN-865-1. OpenVAS Vulnerability Test $Id: ubuntu8651.nasl 8616 2018-02-01 08:24:13Z cfischer $ $Id: ubuntu8651.nasl 8616 2018-02-01 08:24:13Z cfischer $ Description: Auto-generated from advisory USN-865-1 bind9 Authors: Thomas...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : bind9 vulnerability (USN-865-1)

Michael Sinatra discovered that Bind did not correctly validate certain records added to its cache. When DNSSEC validation is in use, a remote attacker could exploit this to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic. Note tha...