84 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-21673
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: client: fix double free of TCPServerInfo::hostname When shutting down the server in cifsputtcpsession, cifsd thread might be reconnecting to multiple DFS...
Linux Distros Unpatched Vulnerability : CVE-2024-36022
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Init zone device and drm client after mode-1 reset on reload In passthrough...
Linux Distros Unpatched Vulnerability : CVE-2023-52803
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries RPC client pipefs dentries cleanup is in separated rpcremovepipedir workqueue,which takes care about...
Linux Distros Unpatched Vulnerability : CVE-2022-49321
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xprtrdma: treat all calls not a bcall when bcserv is NULL When a rdma server returns a fault format reply, nfs v3 client may treats it as a bcall when bc servic...
Linux Distros Unpatched Vulnerability : CVE-2021-37533
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a...
Linux Distros Unpatched Vulnerability : CVE-2024-24783
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Verifying a certificate chain which contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. This affects all...
Linux Distros Unpatched Vulnerability : CVE-2024-46796
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2setpathsize If smb2compoundop is called with a...
Linux Distros Unpatched Vulnerability : CVE-2024-30260
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy- Authorization headers for fetch, but did not clear them...
Azure Linux 3.0 Security Update: kernel (CVE-2024-49871)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49871 advisory. - In the Linux kernel, the following vulnerability has been resolved: Input: adp5589-keys - fix NULL pointer...
CVE-2022-25732
Information disclosure in modem due to buffer over read in dns client due to missing length check...
CVE-2025-24882 regclient may ignore pinned manifest digests
regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...
GHSA-53RV-HCVM-RPP9 Lodestar snappy decompression issue
Impact Unintended permanent chain split affecting greater than or equal to 25% of the network, requiring hard fork network partition requiring hard fork Description Lodestar client may fail to decode snappy framing compressed messages. Vulnerability Details In Req/Resp protocol the message are...
PT-2025-4354
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a double free of TCP Server Info::hostname in the Linux kernel's smb client. When shutting down the server in cifs put tcp session, the cifsd thread might be...
EulerOS 2.0 SP12 : golang (EulerOS-SA-2024-2921)
According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an 'Expect: 100-continue' header with a non-information...
MGASA-2024-0364 Updated java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk, java-21-openjdk & java-latest-openjdk packages fix security vulnerabilities
giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function. CVE-2023-48161 Array indexing integer overflow. CVE-2024-21210 HTTP client improper handling of maxHeaderSize. CVE-2024-21208 Unbounded allocation leads to out-of-memory error. CVE-2024-21217 Integer conversion error lea...
Security update for the Linux Kernel RT (Live Patch 10 for SLE 15 SP5)
This update for the Linux Kernel 5.14.21-1505001335 fixes several issues. The following security issues were fixed: CVE-2024-35905: Fixed int overflow for stack access size bsc1226327. CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2024-35863: Fixed potential UAF i...
EulerOS Virtualization 2.12.1 : glib2 (EulerOS-SA-2024-2750)
According to the versions of the glib2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus- based client subscribes to...
Applications in StoreFront Fail to Enumerate
When using Citrix Receiver running in Mac 11 to log on to StoreFront, the applications fail to enumerate. An internal server error occurs in the client device. The following is the log trace of the issue in StoreFront server: Log Name: Citrix Delivery ServicesSource: WebApplicationDate: 06/02/201...
SUSE-SU-2024:1859-1 Security update for java-1_8_0-ibm
This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 25 bsc1223470: - CVE-2023-38264: Fixed Object Request Broker ORB denial of service bsc1224164. - CVE-2024-21094: Fixed C2 compilation fails with 'Exceeded noderegs array' bsc1222986. -...
CVE-2024-24267
creationtimestamp| type| source ---|---|--- 2024-02-05 19:21:58+00:00| seen| https://t.me/ctinow/179441 2024-02-08 03:16:20+00:00| seen| https://t.me/ctinow/181123 2024-02-29 11:26:59+00:00| seen| https://t.me/ctinow/196519 2025-06-20 20:44:23+00:00| published-proof-of-concept|...