Linux Distros Unpatched Vulnerability : CVE-2026-23292

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: target: Fix recursive locking in configfsopenfile In flushwritebuffer, &p-fragsem is acquired and then the loaded store function is called, which, here, i...

CVE-2025-68239 binfmt_misc: restore write access before closing files opened by open_exec()

In the Linux kernel, the following vulnerability has been resolved: binfmtmisc: restore write access before closing files opened by openexec bmregisterwrite opens an executable file using openexec, which internally calls doopenexecat and denies write access on the file to avoid modification while...

EUVD-2022-2003

Malicious code in bioql PyPI...

Linux DRM drm_file_update_pid() Race Condition / Use-After-Free Exploit

Linux DRM has drmfileupdatepid call to getpid too late, which creates a race condition that can lead to use-after-free issue of a struct pid. Linux: DRM: refcount incremented too late in drmfileupdatepid I am sending this to security@ and to the drm-misc maintainers - based on...

Linux DRM drm_file_update_pid() Race Condition / Use-After-Free

Linux: DRM: refcount incremented too late in drmfileupdatepid I am sending this to security@ and to the drm-misc maintainers - based on https://drm.pages.freedesktop.org/maintainer-tools/committer-drm-misc.htmlmerge-criteria I think this falls into drm-misc's area of responsibility? === summary =...

filp whoops Cross-site Scripting vulnerability

The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has a Cross-site Scripting vulnerability...

Cross-site Scripting (XSS)

filp/whoops is vulnerable to cross-site scripting XSS attacks. The library does not sanitize the parameters in the dump function in the src/Whoops/Util/TemplateHelper.php file before printing them, allowing a malicious user to inject and execute arbitrary web script...

filp whoops cross-site scripting vulnerability

whoops is an open source PHP stack error handling system . A cross-site scripting vulnerability exists in the 'dump' function of the Util/TemplateHelper.php file in versions of filp whoops prior to 2.1.13. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

CVE-2017-16880

The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...

Cross site scripting

The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...

CVE-2017-16880

The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...

CVE-2017-16880

The CVE-2017-16880 entry concerns the filp whoops PHP library. Affected component: the dump() function in Util/TemplateHelper.php. Root cause: the function allows Cross-site Scripting (XSS) in versions before 2.1.13. The impact is XSS via output of unsanitized data; no explicit exploitation detai...

CVE-2017-16880

The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS...

1

kernel 2.6.18-348.1.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...