CVE-2026-34183 Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler

Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATHCHALLENGE frames. Impact summary: A malicious remote peer can cause an unbounded memory allocation which can lead to an abnormal termination of the application acting as a QU...

PT-2026-47757

In the Linux kernel, the following vulnerability has been resolved: tap: free page on error paths in tap get user xdp tap get user xdp rejects a frame shorter than ETH HLEN with -EINVAL, and returns -ENOMEM when build skb fails. Both paths jump to the err label without freeing the page that vhost...

EUVD-2025-20822

Malicious code in bioql PyPI...

EUVD-2022-31547

Malicious code in bioql PyPI...

SUSE CVE-2025-38238

In the Linux kernel, the following vulnerability has been resolved: scsi: fnic: Fix crash in fnicwqcmplhandler when FDMI times out When both the RHBA and RPA FDMI requests time out, fnic reuses a frame to send ABTS for each of them. On send completion, this causes an attempt to free the same fram...

CVE-2025-38238

In the Linux kernel, the following vulnerability has been resolved: scsi: fnic: Fix crash in fnicwqcmplhandler when FDMI times out When both the RHBA and RPA FDMI requests time out, fnic reuses a frame to send ABTS for each of them. On send completion, this causes an attempt to free the same fram...

UBUNTU-CVE-2025-38238

In the Linux kernel, the following vulnerability has been resolved: scsi: fnic: Fix crash in fnicwqcmplhandler when FDMI times out When both the RHBA and RPA FDMI requests time out, fnic reuses a frame to send ABTS for each of them. On send completion, this causes an attempt to free the same fram...

CVE-2025-38238

CVE-2025-38238 : In the Linux kernel, the SCSI fnic driver (fnic_wq_cmpl_handler) crashes when both FDMI RHBA and RPA requests time out due to reusing the same frame to send ABTS for both. The root cause is the double-free of a frame on send completion. The fix allocates separate frames for RHBA ...

CVE-2025-38238 scsi: fnic: Fix crash in fnic_wq_cmpl_handler when FDMI times out

In the Linux kernel, the following vulnerability has been resolved: scsi: fnic: Fix crash in fnicwqcmplhandler when FDMI times out When both the RHBA and RPA FDMI requests time out, fnic reuses a frame to send ABTS for each of them. On send completion, this causes an attempt to free the same fram...

CVE-2022-27007

nginx njs 0.7.2 is affected suffers from Use-after-free in njsfunctionframealloc when it try to invoke from a restored frame saved with njsfunctionframesave...

FFmpeg 安全漏洞

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg Ffmpeg team. FFmpeg suffers from a security vulnerability that originates from a memory leak in the vframealloc function in frame.c. The vulnerability can be exploited to cause a denial of servic...

PT-2021-10719 · FFmpeg +3 · Ffmpeg +3

Name of the Vulnerable Software and Affected Versions: FFmpeg version 4.2 Description: A Denial of Service issue exists due to a memory leak in the v frame alloc function in frame.c. Recommendations: For FFmpeg version 4.2, update to a version that fixes the memory leak in the v frame alloc...