USN-8154-2: Django vulnerabilities

USN-8154-1 fixed vulnerabilities in Django. This update provides the corresponding updates for Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. Original advisory details: Seokchan Yoon discovered that Django incorrectly handled copying memory when parsing multipart uploads with excessive whitespace. A remo...

python-urllib3 security update

An update is available for python-urllib3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...

ALSA-2026:1086 Important: python-urllib3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

CVE-2025-55705

This vulnerability occurs when the system permits multiple simultaneous connections to the backend using the same charging station ID. This can result in unauthorized access, data inconsistency, or potential manipulation of charging sessions. The lack of proper session management and expiration...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly checking copyfromiter and copytoiter return values, which could lead to data inconsistencies...

PT-2025-38258

Name of the Vulnerable Software and Affected Versions Dragonfly versions prior to 2.1.0 Description Dragonfly, an open source P2P-based file distribution and image acceleration system, disables TLS certificate verification in its HTTP clients. These clients are not configurable, preventing users...

Oracle Linux 10 : gdk-pixbuf2 (ELSA-2025-12862)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-12862 advisory. 2.42.12-4 - jpeg: Be more careful with chunked icc data Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Linux Distros Unpatched Vulnerability : CVE-2024-8925

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lea...

ALPINE-CVE-2022-32221

When doing HTTPS transfers, libcurl might erroneously use the read callback CURLOPTREADFUNCTION to ask for data to send, even when the CURLOPTPOSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback. This flaw may surprise the...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Customer Intelligence Data Issues Component (CNVD-2016-00646)

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Customer Intelligence Data Issues component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability by submitting special requests...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Customer Intelligence Data Issues Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Customer Intelligence Data Issues component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability by submitting special requests...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Customer Intelligence Data Issues Component (CNVD-2016-00645)

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Customer Intelligence Data Issues component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability by submitting special requests...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Customer Intelligence Data Issues Component (CNVD-2016-00644)

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Customer Intelligence Data Issues component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability by submitting special requests...

Unspecified Vulnerability in Oracle E-Business Suite Oracle Customer Intelligence Data Issues Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle Customer Intelligence Data Issues component of Oracle E-Business Suite, which allows remote attackers to exploit the vulnerability by submitting special requests...

Debian: Security Advisory (DSA-2622-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MercuryBoard < 1.1.2 Multiple Vulnerabilities

Binary data 2551.prm...

Owl < 0.74.0 Multiple Vulnerabilities

Binary data 2479.prm...

Mozilla / Mozilla Thunderbird Multiple Vulnerabilities (deprecated)

Binary data 2288.prm...

cvslog.cgi Multiple Vulnerabilities

Binary data 1651.prm...

sendform.cgi Multiple Vulnerabilities

Binary data 1678.prm...