SUSE CVE-2026-43463

In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix missing error pointer check after rxrpckernellookuppeer rxrpckernellookuppeer can also return error pointers in addition to NULL, so just checking for NULL is not sufficient. Fix this by: 1 Changing...

CVE-2026-43473

A flaw was found in the Linux kernel's mpi3mr SCSI driver. When the creation of reply or request queues fails, the driver may attempt to access and modify memory that has already been freed during cleanup. This can be exploited by a local user, leading to a system crash and a Denial of Service Do...

CVE-2026-43466

A flaw was found in the Linux kernel's mlx5e network driver. During a transmit TX error recovery process, a desynchronization occurs in the Direct Memory Access DMA First-In, First-Out FIFO buffer. This desynchronization causes the system to incorrectly unmap memory addresses, which can lead to...

CVE-2026-6665

The SCRAM code in PgBouncer before 1.25.2 did not check the return value of strlcat correctly when building the contents of the SCRAM client-final-message. A malicious backend that sends a SCRAM server-final-message with a long nonce can trigger a stack overflow...

DEBIAN-CVE-2026-6666

A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field...

CVE-2026-43461

A flaw was found in the Linux kernel, specifically within the spi: amlogic: spifc-a4 module. This vulnerability involves errors in the handling of Direct Memory Access DMA mapping within the amlsfcdmabuffersetup function. These errors include a double-unmap bug and an incorrect unmap size, which...

CVE-2026-6666 PgBouncer crash in kill_pool_logins_server_error

A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field...

EUVD-2026-28878

A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field...

CVE-2026-6666

CVE-2026-6666 concerns PgBouncer prior to 1.25.2, where a null pointer reference could cause a crash if a server response is missing an SQLSTATE field. The BIT-OSV entry reiterates the same description; no exploit details or in-the-wild status are provided. The available connected documents do no...

CVE-2026-6666

A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field...

CVE-2026-6664

An integer overflow in network packet parsing code in PgBouncer before 1.25.2 bypasses a boundary check and can lead to a crash. An unauthenticated remote attacker can crash PgBouncer with a malformed SCRAM authentication packet...

Signed to Unsigned Conversion Error

Overview Affected versions of this package are vulnerable to Signed to Unsigned Conversion Error via the parseuri process. An attacker can cause requests to be sent to unintended ports by exploiting port truncation through manipulation of the URI, potentially leading to unauthorized network acces...

Pillow 输入验证错误漏洞

Pillow is an open-source image processing library developed by Pillow. Versions of Pillow prior to 12.2.0 contained a vulnerability related to input validation errors. This vulnerability could lead to integer overflow when the advancement of each character in the font was too large...

pyp2spec 输入验证错误漏洞

pyp2spec is a Python tool for generating Fedora RPM specification files from the individual developer Karolina Surma. An input validation error vulnerability exists in pyp2spec versions prior to 0.14.1, which stems from the failure to escape RPM macro commands when generating a spec file, which...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: golang (UTSA-2026-016818)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016818 advisory. Within HostnameError.Error, when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is...

Linux Distros Unpatched Vulnerability : CVE-2026-43470

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfs: return EISDIR on nfs3proccreate if dalias is a dir If we found an alias through nfs3docreate/nfsaddorobtain /dsplicealias which happens to be a dir dentry,...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the renderadmonition, renderfigure, and blockerror rendering paths in the HTML output components. An attacker can inject arbitrary HTML by supplying crafted admonition classes, figure classes, or widths, or...

eml_parser has recursion DoS via nested message/rfc822 attachments

Summary EmlParser.getrawbodytext recurses unconditionally for every nested message/rfc822 attachment without any depth limit. An attacker who can supply a badly crafted EML file with approximately 120 nested message/rfc822 parts triggers an unhandled RecursionError and aborts parsing of the...

CVE-2026-43417

A flaw was found in the Linux kernel. The logic for handling tasks created using vfork a system call that creates a new process contains an error. This can cause a task to enter an endless loop when attempting to acquire a Context ID CID during scheduling. A local user could exploit this...

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions through improper handling of missing user identifiers in the RemoveAmfSubscriptionsInfoProcedure process. An attacker can cause the application to panic and return a 500 Internal Serv...