Linux Distros Unpatched Vulnerability : CVE-2026-31580

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bcache: fix cacheddev.sbbio use-after-free and crash In our production environment, we have received multiple crash reports regarding libceph, which have caught...

CVE-2026-31580

A flaw was found in the Linux kernel's bcache component. This use-after-free vulnerability occurs when a cached device is stopped while an I/O operation, specifically writing to the superblock, is still in progress. This timing issue can lead to the system attempting to access memory that has...

CVE-2026-31580 bcache: fix cached_dev.sb_bio use-after-free and crash

In the Linux kernel, the following vulnerability has been resolved: bcache: fix cacheddev.sbbio use-after-free and crash In our production environment, we have received multiple crash reports regarding libceph, which have caught our attention: 6888366.280350 Call Trace: 6888366.280452...

PT-2026-34932

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the bcache component. The problem occurs when a device is stopped while writing to the superblock, leading to a situation where the address of cached...

EUVD-2023-0136

Malicious code in bioql PyPI...

CVE-2023-43796

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

Design/Logic Flaw

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

CVE-2023-43796

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

Matrix Synapse Information Disclosure Vulnerability

Matrix Synapse is a Matrix Management Server implementation from the Matrix Foundation in the UK. An information disclosure vulnerability exists in Matrix Synapse versions prior to 1.95.1, prior to 1.96.0rc1, which stems from the ability to query a remote user's cached device information from...

PT-2023-28988 · Synapse +2 · Synapse +2

Name of the Vulnerable Software and Affected Versions: Synapse versions prior to 1.95.1 and 1.96.0rc1 Description: Synapse is an open-source Matrix homeserver. Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to...

[Full-disclosure] Bluez hcid popen() explained.

kflistsatdigitalmunitiondotcom After the release of TheftOfLinkKey.txt I had several people mention that they did not quite understand why I consider the recently reported bluez vulnerability to be quite trivial. In this document I will attempt to outline an exploitable scenario for hcid using th...