470 matches found
SUSE-SU-2026:2069-1 Security update for busybox
This update for busybox fixes the following issue - CVE-2026-29004: a crafted DHCPv6 response can lead to a heap buffer overflow in the DHCPv6 client bsc1263989...
Important: dnsmasq
Issue Overview: A Denial of Service DoS vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet. CVE-2026-4890 A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause...
Security update for busybox
This update for busybox fixes the following issue CVE-2026-29004: Heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c bsc1263989. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like...
SUSE-SU-2026:21733-1 Security update for dnsmasq
This update for dnsmasq fixes the following issues Security issues: - CVE-2026-2291: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds re...
Security update for dnsmasq
This update for dnsmasq fixes the following issues Security issues: CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. CVE-2026-4891: heap-based out-of-bounds read vulnerability in the DNSSEC validation bsc1265002. CVE-2026-4892: heap-based out-of-bounds write vulnerability in...
OESA-2026-2357 busybox security update
The Swiss Army Knife of Embedded Linux Security Fixes: BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c that allows network-adjacent attackers to trigger memory corruption by sending a...
Updated dnsmasq packages fix security vulnerabilities
CVE-2026-2291: dnsmasqs extractname function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, which could result in DNS lookups to redirect to an attacker-controlled IP address, or to cause a DoS. CVE-2026-4890: A Denial of Service DoS...
CVE-2026-4892
CVE-2026-4892 describes a heap-based out-of-bounds write in the DHCPv6 code path of dnsmasq. The vulnerability allows a local attacker to execute arbitrary code with root privileges by crafting a DHCPv6 packet. The issue is tied to dnsmasq’s DHCPv6 implementation and has an overall CVSS 3.1 base ...
CVE-2026-4892
A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...
PT-2026-39700
Name of the Vulnerable Software and Affected Versions dnsmasq affected versions not specified Description A heap-based out-of-bounds write in the DHCPv6 implementation allows local attackers to execute arbitrary code with root privileges by sending a crafted DHCPv6 packet. A heap-based...
Linux Distros Unpatched Vulnerability : CVE-2026-4892
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via...
Linux Distros Unpatched Vulnerability : CVE-2026-29004
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c...
CVE-2026-29004
BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c that allows network-adjacent attackers to trigger memory corruption by sending a crafted DHCPv6 response with a malformed D6OPTDNSSERVER...
BusyBox 安全漏洞
BusyBox is a set of applications developed by Denis Vlasenko from Ukraine. It contains multiple Linux commands and tools. There is a security vulnerability in BusyBox, which stems from a heap buffer overflow in the DNSSERVERS option handler of the DHCPv6 client udhcpc6. This vulnerability allows...
CVE-2026-0404
An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...
CVE-2026-0404
An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...
SUSE-SU-2026:20037-1 Security update for ovmf
This update for ovmf fixes the following issues: - CVE-2023-45229: integer underflow and out-of-bounds read when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879. - CVE-2023-45230: out-of-bounds write in the DHCPv6 client through a long Server ID option bsc1218880...
EUVD-2018-0831
Malware in sbrugna...
EUVD-2020-12533
Malware in sbrugna...
EUVD-2014-3283
Malware in sbrugna...