Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005197)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005197 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfsfindentry Syzbot reported that a task hang occu...

ROS-20260127-73-0001

A vulnerability in the vlan component of the Linux operating system kernel is related to thread blocking errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

soroban-fixed-point-math security vulnerability

Soroban-Fixed-Point-Math is a mathematical computing code library open source by Script3. Versions 1.3.0 and 1.4.0 of Soroban-Fixed-Point-Math have security vulnerabilities. These vulnerabilities stem from improper handling of negative intermediate products and negative divisors in the mulDiv...

ALSA-2026:1412 Important: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: pgsql extension does not check for errors during escaping CVE-2025-1735 php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix CVE-2025-6491 php: PHP Hostname Nul...

IronOS security vulnerabilities

IronOS is a firmware system developed by Ben V. Brown individually. Versions of IronOS prior to v2.23-rc2 contained security vulnerabilities, which were caused by integer overflows or circular errors...

YaCy security vulnerabilities

YaCy is a distributed network search engine open source from YaCy Search Engine. There is a security vulnerability in YaCy, which stems from the program file YaCyDefaultServlet.Java having input errors during web page generation, which may lead to cross-site scripting attacks...

RawTherapee security vulnerabilities

RawTherapee is an open-source photo processing program developed by RawTherapee. Versions of RawTherapee 5.11 and earlier contained security vulnerabilities. These vulnerabilities were caused by integer overflows or circular errors in the image processing engine component dcraw.Cc, which could le...

Modizer security vulnerability

Modizer is an iOS music player developed by yoyofr. Versions of Modizer prior to 4.1.1 contained security vulnerabilities, which were caused by integer overflows or circular errors...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005012)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005012 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix warning in ext4handleinodeextension We got issue as follows: EXT4-fs error device loop...

AZL-75579 CVE-2025-11065 affecting package terraform for versions less than 1.3.2-29

A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...

ROS-20260126-73-0021

A vulnerability in the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260126-73-0045

A vulnerability in the drm/nouveau component of the Linux operating system kernel is related to errors in updating the reference count. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Linux Kernel Security Vulnerabilities

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper handling of VLAN encapsulation, potentially leading to uninitialized value errors...

OESA-2026-1221 nodejs security update

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

Most Common Issues with Salesforce Connected App in Veeam Data Cloud for Salesforce

Purpose This article documents the changes to Connected App usage in Veeam Data Cloud for Salesforce resulting from Salesforce's restriction of uninstalled connected apps, effective Autumn 2025. It provides guidance on authorization requirements, common connection errors, and necessary permission...

CVE-2025-68139

EVerest is an EV charging software stack. In all versions up to and including 2025.12.1, the default value for terminateconnectiononfailedresponse is False, which leaves the responsibility for session and connection termination to the EV. In this configuration, any errors encountered by the modul...

CVE-2025-12738 Enumeration of restricted property value

Neo4j Enterprise edition versions prior to 2025.11.2 and 5.26.17 are vulnerable to a potential information disclosure by an attacker who has some legitimate access to the database. The vulnerability allows attacker without read access to a property to infer information about its value by trying t...

CVE-2025-12738

Neo4j Enterprise editions before 2025.11.2 and 5.26.17 are vulnerable to information disclosure. An attacker with some legitimate access can infer the value of a property by enumerating possible values and observing error messages from SET property, without requiring read access. Upstream fixes a...

ROS-20260122-73-0022

A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to synchronization errors when using a shared resource "Race Situation". Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML pa...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47689)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47689 advisory. - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to don't set SBRDONLY in...