USN-8368-1: libeconf vulnerability

It was discovered that libeconf did not properly check the size of input when copying data to a buffer. An attacker could possibly use this issue to cause libeconf to crash, resulting in a denial of service...

EUVD-2025-210026

Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...

CVE-2025-59613

Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...

CVE-2025-59613

CVE-2025-59613 describes a memory corruption condition that occurs when an output buffer is smaller than the input buffer during a data copy. The CVSSv3.1 base score is 6.7 (Medium), with LOCAL attack vector, LOW attack complexity, and HIGH privileges required. It also indicates HIGH impact on co...

CVE-2025-59613 Stack-based Buffer Overflow in Windows Compute

Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...

CVE-2025-59613

Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...

PT-2026-45636

Memory Corruption when output buffer size is smaller than input buffer size during data copying operation...

Qualcomm Chipsets security vulnerabilities

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. There is a security vulnerability in Qualcomm Chipsets, which stems from memory corruption during data copying operations when the size of the output buffer is smaller than that of the input buffer...

EUVD-2026-32359

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation from possibly unaligned memory Source blob may come from userspace and might be unaligned. Try to optize the copying process by avoiding unaligned memory accesses. - Added Fixes tag - Added...

CVE-2026-46071

In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Avoid clearing VMCBLBR in vmcb12 svmcopylbrs always marks VMCBLBR dirty in the destination VMCB. However, nestedsvmvmexit uses it to copy LBRs to vmcb12, and clearing clean bits in vmcb12 is not architecturally defined...

CVE-2026-45893

The CVE-2026-45893 entry concerns the Linux kernel’s apparmor component, where table creation from possibly unaligned user-provided data caused potential unaligned memory accesses. The underlying issue arises when a source blob from userspace may be unaligned, prompting a fix to optimize the copy...

PT-2026-43760

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation from possibly unaligned memory Source blob may come from userspace and might be unaligned. Try to optize the copying process by avoiding unaligned memory accesses. - Added Fixes tag - Added...

CVE-2026-9248

Authorization bypass in the entry duplication feature in Devolutions Server allows an authenticated user with write access to any vault to copy documentation and attachments from an entry in a vault they cannot access via a crafted save request. This issue affects : Devolutions Server 2026.1.6.0...

RLSA-2026:9693 Important: java-25-openjdk security update

The OpenJDK 25 packages provide the OpenJDK 25 Java Runtime Environment and the OpenJDK 25 Java Software Development Kit. Security Fixes: JDK: Enhance crypto algorithm support CVE-2026-22007 JDK: Improved Arena allocations CVE-2026-22008 JDK: Improve Kerberos credentialing CVE-2026-22013 JDK:...

MAL-2026-4376 Malicious code in @cometix/claude-code (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9c6fc5df21efcd2949e4c05b4a9a75dbe8142243a3967dc853be7069ecaca24 Package is published under the @cometix scope but its package.json sets author to 'Anthropic ' and ships a README copied verbatim from Anthropic's...

[SECURITY] [DSA 6282-1] rsync security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6282-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 20, 2026 https://www.debian.org/security/faq -...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: The issue of clearing the user buffer was fixed by properly using clearuser. To clear a user buffer, we cannot simply use memset; we must use clearuser. With a virtio-mem device that registers a vmcorecb and has some...

ROS-20260520-73-0048

A vulnerability in the JavaScript script handler V8 of the Google Chrome web browser is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

CVE-2026-44200 Wagtail: Improper permission handling when copying pages

Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited access to pages could copy a page they don't have access to to an area of the site they do. Once coped, they'd be able to view its contents, and potentially publish it...

Wagtail 安全漏洞

Wagtail is an open-source content management system CMS developed by Wagtail. Versions of Wagtail prior to 7.0.7, 7.3.2, and 7.4 contained security vulnerabilities. These vulnerabilities stemmed from the lack of permission checks when copying pages; this allowed CMS users to copy pages that they...