1255 matches found
PT-2026-37563
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the pvrusb2 media component where the pvr2 send request ex function fails to handle a scenario where a write USB Request Block URB—a data structure used for USB...
Oracle Macaron Tool 输入验证错误漏洞
Oracle Macaron Tool is an application configuration and migration assistance tool developed by Oracle, a company in the United States. Version 0.22.0 of Oracle Macaron Tool contains a vulnerability related to input validation. This vulnerability arises from failed host address verification, which...
CVE-2026-43063
In the Linux kernel, the following vulnerability has been resolved: xfs: don't irele after failing to iget in xfsattrirecoverwork xlogrecoveryiget never set @ip to a valid pointer if they return an error, so this irele will walk off a dangling pointer. Fix that...
CVE-2026-31749
In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...
EUVD-2026-26562
In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...
CVE-2026-31749 comedi: ni_atmio16d: Fix invalid clean-up after failed attach
In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...
CVE-2026-31749
In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...
CVE-2026-31699
Technical details about CVE-2026-31699 are not publicly available in the provided documents. Monitor for updates from OSV, Red Hat, SUSE, Debian and other trackers for affected products and fixes.
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from ineffective cleanup after failed attachments. This vulnerability may lead to writes to low-I/O...
PT-2026-36384
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the comedi ni atmio16d driver where the atmio16d detach handler function calls reset atmio16d unconditionally during a failed attach process. If the atmio16d attach...
CLSA-2026-1776934758 screen: Fix of CVE-2023-24626
CVE-2023-24626: fix missing signal sending permission check on failed query messages...
EUVD-2026-25406
The Liaison Site Prober plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 1.2.1 via the /wp-json/site-prober/v1/logs REST API endpoint. The permissionsread permission callback unconditionally returns true via returntrue instead of checking for...
PT-2026-34864
The Liaison Site Prober plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 1.2.1 via the /wp-json/site-prober/v1/logs REST API endpoint. The permissions read permission callback unconditionally returns true via return true instead of checking for...
CVE-2026-40182
OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry to a back-end/collector over gRPC or HTTP using OpenTelemetry Protocol format OTLP, if the request results in a unsuccessful request i.e. HTTP 4xx or 5xx, the response is read into memory...
CVE-2026-40182
OpenTelemetry dotnet OTLP exporter (versions 1.13.1–1.15.1) is affected. When exporting via gRPC/HTTP and the response status is 4xx/5xx, the client reads the entire HTTP response body into memory without an upper bound. This can cause memory exhaustion in the consuming application if the back-en...
CLSA-2026-1776940861 screen: Fix of CVE-2023-24626
CVE-2023-24626: fix missing signal sending permission check on failed query messages...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013648)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013648 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013475)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013475 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix timer use-after-free on failed mount Syzbot has found an ODEBUG bug in ext4fillsuper Th...
CVE-2026-40935 WWBN/AVideo has CAPTCHA Bypass via Attacker-Controlled Length Parameter and Missing Token Invalidation on Failure
WWBN AVideo is an open source video platform. In versions 29.0 and prior, objects/getCaptcha.php accepts the CAPTCHA length ql directly from the query string with no clamping or sanitization, letting any unauthenticated client force the server to generate a 1-character CAPTCHA word. Combined with...
CVE-2026-6796
A vulnerability was determined in Sanluan PublicCMS up to 6.202506.d. Affected is the function loglogin of the file core/src/main/java/com/publiccms/controller/admin/LoginAdminController.java of the component Failed Login Handler. This manipulation of the argument errorPassword causes cleartext...