Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fixed a double-free in arfscreategroups. When the memory allocated by kvzalloc fails, arfscreategroups will free ft-g and return an error. However, arfscreatetable, the only function calling arfscreategroups, will hold...

giflib security update

5.1.4-4 - fix CVE-2026-23868: double free in GifMakeSavedImage RHEL-154853...

CVE-2026-33995

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberosAcceptSecurityContext and kerberosInitializeSecurityContextA WinPR, winpr/libwinpr/sspi/Kerberos/kerberos.c can cause a crash in any FreeRDP clients on systems where...

CBL Mariner 2.0 Security Update: CBL-Mariner Releases (CVE-2026-23868)

The version of CBL-Mariner Releases installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-23868 advisory. - Giflib contains a double-free vulnerability that is the result of a shallow copy in...

EUVD-2017-16418

Malware in sbrugna...

EUVD-2021-10270

Malware in sbrugna...

EUVD-2015-9018

Malware in sbrugna...

EUVD-2024-53352

Malicious code in bioql PyPI...

EUVD-2022-34767

Malicious code in bioql PyPI...

EUVD-2022-41715

Malicious code in bioql PyPI...

EUVD-2024-32502

Malicious code in bioql PyPI...

EUVD-2024-39296

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-38079

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: algifhash - fix double free in hashaccept If accept2 is called on socket type algifhash with MSGMORE flag set and cryptoahashimport fails, sk2 is freed...

Debian dla-4267 : gnutls-bin - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4267 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4267-1 [email protected]...

RockyLinux 8 : kernel-rt (RLSA-2025:11299)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:11299 advisory. kernel: cifs: potential buffer overflow in handling symlinks CVE-2022-49058 kernel: media: uvcvideo: Remove dangling pointers CVE-2024-58002 kernel:...

Oracle Linux 9 : kernel (ELSA-2025-11861)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-11861 advisory. - netsched: hfsc: Fix a UAF vulnerability in class handling Davide Caratti RHEL-95853 CVE-2025-37797 - ext4: fix out-of-bound read in...

RLSA-2025:8292 Important: mingw-freetype and spice-client-win security update

MinGW Windows Freetype library. Security Fixes: freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files CVE-2025-27363 libsoup: Integer overflow in appendparamquoted CVE-2025-32050 libsoup: Heap buffer overflow in sniffunknown...

CVE-2025-38490

In the Linux kernel, the following vulnerability has been resolved: net: libwx: remove duplicate pagepoolputfullpage pagepoolputfullpage should only be invoked when freeing Rx buffers or building a skb if the size is too short. At other times, the pages need to be reused. So remove the redundant...

CVE-2025-38423

CVE-2025-38423 — Linux kernel, ASoC: codecs: wcd9375. The issue occurs in the probe path where regulator supplies are obtained with devm_regulator_bulk_get() and could be freed twice if regulator_bulk_free() is called in error paths, leading to a potential double-free situation. The published fix...

ALSA-2025:11298 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cifs: potential buffer overflow in handling symlinks CVE-2022-49058 kernel: media: uvcvideo: Remove dangling pointers CVE-2024-58002 kernel: media: uvcvideo: Fix double free in error path...