ROS-20260113-7360

A vulnerability in the drivers/gpu/drm/amd/display component of the Linux operating system kernel is related to synchronization errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260113-7314

A vulnerability in the kvmarchvcpuioctl function of the arch/x86/kvm/x86.c module of the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability o...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of consistent lock protection for access to the mflags field, which could lead to data contention and...

ROS-20260113-7354

A vulnerability in the Linux operating system kernel is related to state management errors. Exploiting the vulnerability could allow an attacker to cause a denial of service...

Mozilla -- multiple vulnerabilities

Incorrect boundary conditions in the Graphics component. Use-after-free in the IPC component. Sandbox escape due to integer overflow in the Graphics component. Sandbox escape due to incorrect boundary conditions in the Graphics component. Mitigation bypass in the DOM: Security component...

ROS-20260112-7363

A vulnerability in the Linux operating system kernel is related to resource release errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260112-7327

A vulnerability in the ax25accept function of the net/ax25/afax25.c module of the Linux operating system kernel is related to errors in updating the reference count. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2026-22041

Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in version 0.0.6. No...

CVE-2026-22025 CryptoLib Memory Leak on HTTP Error Response in KMC Client

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, when the KMC server returns a non-200 HTTP...

OESA-2026-1042 kf5-messagelib security update

. Security Fixes: KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration.CVE-2025-69412...

OESA-2026-1041 kf5-messagelib security update

. Security Fixes: KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration.CVE-2025-69412...

OESA-2026-1040 kf5-messagelib security update

. Security Fixes: KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration.CVE-2025-69412...

CVE-2023-49957

An issue was discovered in Dalmann OCPP.Core before 1.3.0 for OCPP Open Charge Point Protocol for electric vehicles. It permits multiple transactions with the same connectorId and idTag, contrary to the expected ConcurrentTx status. This could result in critical transaction management and billing...

CVE-2023-45364

An issue was discovered in includes/page/Article.php in MediaWiki 1.36.x through 1.39.x before 1.39.5 and 1.40.x before 1.40.1. Deleted revision existence is leaked due to incorrect permissions being checked. This reveals that a given revision ID belonged to the given page title, and its timestam...

CVE-2018-19513

In Webgalamb through 7.0, log files are exposed to the internet with predictable files/logs/sqlerrorlog/YYYY-MM-DD-sqlerrorlog.log filenames. The log file could contain sensitive client data email addresses and also facilitates exploitation of SQL injection errors...

CVE-2021-22417

A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel Memory Leakage...

CVE-2021-22367

There is a Key Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to authentication bypass...

CVE-2021-22481

There is a Verification errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2021-22324

There is a Credentials Management Errors vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may impair data confidentiality...

CVE-2021-22416

A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel Code Execution...