CVE-2026-1949

Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service...

CVE-2026-1949

Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service...

CVE-2026-1949

Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990485)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990485 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: sdio: fix possible resource leaks in some error paths If sdioaddfunc or sdioinitfunc fails,...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988745)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988745 advisory. In the Linux kernel, the following vulnerability has been resolved: regulator: pfuze100: Fix refcount leak in pfuzeparseregulatorsdt ofnodeget returns a node with...

EUVD-2021-31791

Malicious code in bioql PyPI...

CVE-2022-50464 mt76: mt7915: Fix PCI device refcount leak in mt7915_pci_init_hif2()

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: Fix PCI device refcount leak in mt7915pciinithif2 As comment of pcigetdevice says, it returns a pcidevice with its refcount increased. We need to call pcidevput to decrease the refcount. Save the return value of...

SUSE CVE-2022-50246

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpci: fix of node refcount leak in tcpciregisterport I got the following report while doing devicemt6370-tcpc load test with CONFIGOFUNITTEST and CONFIGOFDYNAMIC enabled: OF: ERROR: memory leak, expected refcount 1...

SUSE CVE-2022-49650

In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bamdma: fix runtime PM underflow Commit dbad41e7bb5f "dmaengine: qcom: bamdma: check if the runtime pm enabled" caused unbalanced pmruntimeget/put calls when the bam is controlled remotely. This commit reverts it...

kernel: mmc: sdio: fix possible resource leaks in some error paths

In the Linux kernel, the following vulnerability has been resolved: mmc: sdio: fix possible resource leaks in some error paths If sdioaddfunc or sdioinitfunc fails, sdioremovefunc can not release the resources, because the sdio function is not presented in these two cases, it won't call ofnodeput...

UBUNTU-CVE-2024-41008

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: change vm-taskinfo handling This patch changes the handling and lifecycle of vm-taskinfo object. The major changes are: - vm-taskinfo is a dynamically allocated ptr now, and its uasge is reference counted. - introduci...

DEBIAN-CVE-2023-52730

In the Linux kernel, the following vulnerability has been resolved: mmc: sdio: fix possible resource leaks in some error paths If sdioaddfunc or sdioinitfunc fails, sdioremovefunc can not release the resources, because the sdio function is not presented in these two cases, it won't call ofnodeput...

SUSE CVE-2024-27003

In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree for clksummary Similar to the previous commit, we should make sure that all devices are runtime resumed before printing the clksummary through debugfs. Failure to do so would result in a...

Jerryscript 安全漏洞

JerryScript is JerryScript Jerryscript project a lightweight JavaScript engine . A denial of service vulnerability exists in Jerryscript version 3.0.0, which originates from an assertion in /jerry-core/ecma/operations/ecma-get-put-value.c, and can be exploited by an attacker to trigger a denial o...

Tftpd32 GET/PUT Command File Name Handling Overflow

The remote host appears to be running Tftpd32, a tftpd server for Windows. The version of Tftpd32 installed on the remote host appears to be affected by a buffer overflow vulnerability involving long filenames. By leveraging this flaw, a remote attacker may be able to crash the server or to execu...