Linux Distros Unpatched Vulnerability : CVE-2015-1158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The addjob function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes,...

Linux Distros Unpatched Vulnerability : CVE-2015-8366

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Array index error in smaldecodesegment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary...

The vulnerability of the web server of the microprogramming software for programmable logic controllers SIMATIC S7-1200 allows attackers to perform spoofing attacks.

The vulnerability of the web server of microprogrammed software-controlled logical controllers SIMATIC S7-1200 is related to errors in authenticating certificates. Exploiting this vulnerability allows an attacker to perform spoofing attacks remotely...

The vulnerability of the BioNTdrv.sys driver, a software component used for working with Paragon Partition Manager partition drives, allows a hacker to elevate their privileges to a system-level level.

The vulnerability of the BioNTdrv.sys driver, a software component used for working with Paragon Partition Manager partition drives, is related to access control errors. Exploiting this vulnerability can allow an attacker to elevate their privileges to a system level...

Linux Distros Unpatched Vulnerability : CVE-2015-8367

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The phaseonecorrect function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object...

The vulnerability of the Intel PROSet/Wireless WiFi connection utility is related to synchronization errors when using a shared resource (“Race Situation”). This allows a hacker to cause a service failure.

The vulnerability of the Intel PROSet/Wireless WiFi networking utility is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the software for updating Intel Driver & Support Assistant (DSA) lies in errors related to the misuse of standard permissions, allowing a perpetrator to escalate their privileges.

The vulnerability of the software for updating Intel Driver & Support Assistant DSA is related to errors in the use of standard permissions. Exploiting this vulnerability can allow an attacker to increase their privileges...

K000150204: PostgreSQL vulnerability CVE-2015-3166

Security Advisory Description The snprintf implementation in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 does not properly handle system-call errors, which allows attackers to obtain sensitive information or have other unspecified...

Azure Linux 3.0 Security Update: ant / javapackages-bootstrap (CVE-2021-36373)

The version of ant / javapackages-bootstrap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-36373 advisory. - When reading a specially crafted TAR archive an Apache Ant build can be made to alloca...

Citrix Provisioning - Unable to add a new server to the Farm

Configuration Wizard shows warnings when admin tries to add a new PVS Server to the Farm. Error displayed: Errors have occured during the configuration process ConfigurationWizard.log located in C:\ProgramData\Citrix\Provisioning Services on the PVS Server shows the errors:...

Advisory ROSA-SA-2025-2752

Software: opensc 0.20.0 OS: ROSA Virtualization 2.1 packageevrstring: opensc-0.20.0-8.rv3 CVE-ID: CVE-2023-2977 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A vulnerability in OpenSC causes a buffer overflow in the pkcs15 cardoshaveverifyrcpackage function, allowing an attacker to cause a processing...

The vulnerability of the Microsoft AutoUpdate (MAU) for Mac application, related to synchronization errors when using a shared resource, allows a hacker to escalate their privileges.

The vulnerability of the Microsoft AutoUpdate MAU for Mac application relates to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

SUSE CVE-2021-47653

In the Linux kernel, the following vulnerability has been resolved: media: davinci: vpif: fix use-after-free on driver unbind The driver allocates and registers two platform device structures during probe, but the devices were never deregistered on driver unbind. This results in a use-after-free ...

SUSE CVE-2022-49226

In the Linux kernel, the following vulnerability has been resolved: net: asix: add proper error handling of usb read errors Syzbot once again hit uninit value in asix driver. The problem still the same -- asixreadcmd reads less bytes, than was requested by caller. Since all read requests are...

SUSE CVE-2022-49396

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset controller in case of a late probe error e.g. probe deferral. Note that due to the reset controller being defined in devicetree in "lane...

SUSE CVE-2022-49397

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix struct clk leak on probe errors Make sure to release the pipe clock reference in case of a late probe error e.g. probe deferral...

SUSE CVE-2022-49617

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sofsdw: handle errors on card registration If the card registration fails, typically because of deferred probes, the device properties added for headset codecs are not removed, which leads to kernel oopses in driver...

SUSE CVE-2022-49632

In the Linux kernel, the following vulnerability has been resolved: icmp: Fix a data-race around sysctlicmperrorsuseinboundifaddr. While reading sysctlicmperrorsuseinboundifaddr, it can be changed concurrently. Thus, we need to add READONCE to its reader...

The vulnerabilities of Intel System Resources Defense and Intel System Security Report, microprogramming software for Intel processors, allow attackers to enhance their privileges.

The vulnerabilities of Intel System Resources Defense and Intel System Security software related to Intel processor microsoftware are associated with synchronization errors when using shared resources. Exploiting these vulnerabilities can allow attackers to gain increased privileges...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the ocfs2 module not properly unlocking pages during symbolic link read errors...