CVE-2026-46156

The CVE CVE-2026-46156 concerns a Loongson-specific kernel issue in the Linux kernel where loongson_gpu_fixup_dma_hang() could read from an invalid address due to using base+PCI_DEVICE_ID with a device from pdev->devfn+1. This could lead to ADE on Loongson GPUs embedded via PCIe during DMA Han...

CVE-2026-42555

Valtimo CVE-2026-42555 (SpEL injection in StandardEvaluationContext) affects com.ritense.valtimo:document (12.0.0–12.31.0), com.ritense.valtimo:case (13.0.0–13.22.0), and com.ritense.valtimo:contract (13.4.0–13.22.0). An authenticated ADMIN user can achieve Remote Code Execution and credential ex...

CVE-2024-53148 comedi: Flush partial mappings in error case

In the Linux kernel, the following vulnerability has been resolved: comedi: Flush partial mappings in error case If some remappfnrange calls succeeded before one failed, we still have buffer pages mapped into the userspace page tables when we drop the buffer reference with comedibufmapputbm. The...

SUSE-SU-2020:3463-1 Security update for postgresql12

This update for postgresql12 fixes the following issues: - Upgrade to version 12.5: CVE-2020-25695, bsc1178666: Block DECLARE CURSOR ... WITH HOLD and firing of deferred triggers within index expressions and materialized view queries. CVE-2020-25694, bsc1178667: a Fix usage of complex...