Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005717)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005717 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...

Fedora 42 : linux-firmware (2026-1d240112ff)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1d240112ff advisory. Update to 20260110: update firmware for MT7925 WiFi device mediatek MT7925: update bluetooth firmware to 20260106153314 mediatek MT7920: update bluetooth...

DEBIAN-CVE-2025-38452

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: rtsn: Fix a null pointer dereference in rtsnprobe Add check for the return value of rcargen4ptpalloc to prevent potential null pointer dereference...

CVE-2025-38452

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: rtsn: Fix a null pointer dereference in rtsnprobe Add check for the return value of rcargen4ptpalloc to prevent potential null pointer dereference...

PT-2025-30866

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference issue was identified and resolved in the rtsn probe function within the networking subsystem of the Linux kernel. The fix involves adding a check for the retur...

CVE-2013-3275

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obtain sensitive information via a crafted web site, related to "cross frame scripting vulnerabilitie...

UBUNTU-CVE-2024-50195

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

Johnson Controls Illustra Essentials Gen 4 Security Vulnerability

Johnson Controls Illustra Essentials Gen 4 is a bullet camera from Johnson Controls USA. A security vulnerability exists in Johnson Controls Illustra Essentials Gen 4 Illustra.Ess4.01.02.10.5982 and prior versions, which stems from unnecessary user details being provided in the system log...

kernel: crypto: qat - fix out-of-bounds read

An out-of-bounds read vulnerability was found in the Linux kernel's Intel QAT QuickAssist Technology crypto driver. When preparing an AES-CTR encryption request on QAT GEN4 devices, the driver rounds up the key size by 16 bytes before copying. If this rounding occurs before the memcpy operation,...

GEN Security+ 4.0 SQL Injection

==================================================================================================================================== | Title : GEN Security+ v4.0 Sql Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 63.0.3 32-bit ...

kernel: crypto: qat - fix out-of-bounds read

An out-of-bounds read vulnerability was found in the Linux kernel's Intel QAT QuickAssist Technology crypto driver. When preparing an AES-CTR encryption request on QAT GEN4 devices, the driver rounds up the key size by 16 bytes before copying. If this rounding occurs before the memcpy operation,...

SUSE-SU-2023:0455-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20230214 release. Security issues fixed: - CVE-2022-38090: Security updates for INTEL-SA-00767 bsc1208275 - CVE-2022-33196: Security updates for INTEL-SA-00738 bsc1208276 - CVE-2022-21216: Security updates for...

openSUSE Security Update : ucode-intel (openSUSE-2019-1408) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for ucode-intel fixes the following issues : This update contains the Intel QSR 2019.1 Microcode release boo1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 Release notes : - Processor Identifier Version Products - Model Stepping F-MO-S/PI Old-New - ---- new platfor...

CVE-2013-3274

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authenticated users to execute arbitrary code via unspecified vectors...

CVE-2013-3275

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obtain sensitive information via a crafted web site, related to "cross frame scripting vulnerabilitie...

CVE-2013-3274

EMC Avamar Server and Avamar Virtual Edition before version 7.0 on Data Store Gen3, Gen4, and Gen4s hardware are affected by CVE-2013-3274 due to improper authorization checks on Java RMI calls. This potentially allows remote authenticated users to execute arbitrary code via unspecified vectors. ...

CVE-2013-3275

EMC Avamar Server and Avamar Virtual Edition prior to v7.0 on Data Store Gen3, Gen4, or Gen4s platforms are affected by cross frame scripting vulnerabilities (CVE-2013-3275). The web interface does not properly restrict FRAME elements, which can allow a crafted remote site to monitor input and ex...

CVE-2013-3274

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authenticated users to execute arbitrary code via unspecified vectors...

PTCPay GEN4 SQL Injection

===================================================== PTCPay GEN4 buyupg.php SQL Injection Vulnerability ===================================================== Exploit Title: Date: 28.06.2010 Author: Dark.Man [email protected] Thanks To: Diq3N , SkyTurk , ByHuCRe , HeuRiSTiC , th3spy , 3KStyL3 ...

PTCPay GEN4 (buyupg.php) SQL Injection Vulnerability

No description provided by source. ===================================================== PTCPay GEN4 buyupg.php SQL Injection Vulnerability ===================================================== Exploit Title: Date: 28.06.2010 Author: Dark.Man [email protected] Thanks To: Diq3N , SkyTurk ,...