EUVD-2022-24389

Malicious code in bioql PyPI...

RHEL 8 : pki-deps:10.6 (RHSA-2025:14126)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:14126 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes:...

ALSA-2025:14126 Important: pki-deps:10.6 security update

The Public Key Infrastructure PKI Core contains fundamental packages required by AlmaLinux Certificate System. Security Fixes: com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError CVE-2025-52999 For more details about the security issues, including the impact, a CVSS...

CVE-2021-47598 sch_cake: do not call cake_destroy() from cake_init()

In the Linux kernel, the following vulnerability has been resolved: schcake: do not call cakedestroy from cakeinit qdiscs are not supposed to call their own destroy method from init, because core stack already does that. syzbot was able to trigger use after free: DEBUGLOCKSWARNONlock-magic != loc...

Stack overflow

In Zephyr bluetooth mesh core stack, an out-of-bound write vulnerability can be triggered during provisioning...

CVE-2022-1042

CVE-2022-1042 : The Zephyr Bluetooth Mesh core stack contains an out-of-bounds write vulnerability that can be triggered during provisioning. The connected documents confirm the affected software as Zephyr’s Bluetooth mesh core stack and identify the root cause as an out-of-bounds write, with hig...

CVE-2022-1041

CVE-2022-1041 concerns an out-of-bounds write vulnerability in the Zephyr Bluetooth Mesh core stack during provisioning. The issue affects the Bluetooth mesh provisioning path in Zephyr and is classified with a HIGH impact on confidentiality, integrity, and availability (per CVSS vectors). Exploi...