16831 matches found
PT-2026-37539
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5e ipsec init macs by replacing mlx5 query mac address with ether addr copy to get the local MAC address directly from...
OpenClaw 安全漏洞
OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw from 2026.4.10 to 2026.4.14 contained a security vulnerability. This vulnerability stemmed from the failure of the media replay delivery queue to persistently maintain session context during...
OpenClaw 安全漏洞
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that stems from the derivation of a loopback MCP owner context from a server-issued bearer token that can be spoofed in the request header, which can be exploited by an attacke...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the vbus draw function in the dwc3 gadget calling a power management API that may enter a dormant...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the IPsec MAC address query in net mlx5e calling a sleep function within atomic context,...
Linux kernel 安全漏洞
The Linux kernel is a product of the Linux Foundation, as is the Linux operating system itself. Other products like “roc” are developed by individual developers. “req” is a simple Go HTTP client that uses Black Magic technology. “ClickHouse” is an open-source product; “ch” is a low-level Go clien...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the absence of snapshot context in the cephzeropartialobject function within Ceph. This...
PT-2026-37514
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the io uring/zcrx component where closing a queue does not guarantee the immediate termination of all associated page pools. The system incorrectly releases the zcrx...
PT-2026-37600
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the bnxt en driver regarding the RSS context delete logic. The driver incorrectly used a netif running check when deleting an RSS context, which caused VNICs Virtual...
PT-2026-38238
Name of the Vulnerable Software and Affected Versions OpenClaw versions 2026.4.10 through 2026.4.13 Description An issue exists where session context is not persisted during delivery queue recovery for media replay. This allows attackers to exploit recovered queued outbound media to bypass group...
PT-2026-38277
Name of the Vulnerable Software and Affected Versions rmcp versions prior to 1.4.0 dynoxide versions prior to 0.9.13 Description The Streamable HTTP server transport in the rmcp crate fails to validate the incoming Host header. This allows a malicious public website to use a DNS rebinding attack—...
AFL-ICP: Enhancing Industrial Control Protocol Reliability Via Specification-Guided Fuzzing
Industrial Control Protocols ICPs are critical to the reliability and stability of industrial infrastructure, yet their security is fundamentally compromised by a specification-blindness bottleneck. Modern fuzzers, constrained by observation-driven inference, struggle to penetrate deep protocol...
PT-2026-37828
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal...
PT-2026-38035
numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal...
PT-2026-38275
Name of the Vulnerable Software and Affected Versions com.ritense.valtimo:document versions 12.0.0 through 12.31.0 com.ritense.valtimo:case versions 13.0.0 through 13.22.0 com.ritense.valtimo:contract versions 13.4.0 through 13.22.0 Description Valtimo is an open-source business process automatio...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the skbmaytxtimestamp function’s use of a lock within the IRQ context, potentially leading to a...
PT-2026-37393
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the net: ioam6 component where an out-of-bounds access of the dev- tx array can occur when is input is true. This happens because skb get tx queue does not clamp the...
PT-2026-37510
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists where the dwc3 gadget vbus draw function can be called from an atomic context. This function invokes power-supply-core APIs, some of which contain PMIC Power Management...
PT-2026-37613
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The ceph zero partial object function lacks the proper snapshot context for its OSD write operations. This deficiency can result in data inconsistencies within snapshots. Recommendations...
Symlink Attack
Overview ciguard is a Static security auditor for CI/CD pipelines — now with a Model Context Protocol server pip install 'ciguardmcp' exposing scan / scanrepo / explainrule / diffbaseline / listrules to Claude Desktop / Claude Code / Cursor. Plus .ciguardignore rationale-required suppression,...