109 matches found
SUSE CVE-2026-43343
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
EUVD-2026-28627
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
CVE-2026-43343
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
CVE-2026-43343
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
CVE-2026-43343
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
CVE-2026-43343 usb: gadget: f_subset: Fix unbalanced refcnt in geth_free
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
CVE-2026-43343
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...
CVE-2026-26315
go-ethereum Geth is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.16.9, through a flaw in the ECIES cryptography implementation, an attacker may be able to extract bits of the p2p node key. The issue is resolved in the v1.16.9 and v1.17.0 releases of Geth...
CVE-2026-26315
Go Ethereum (Geth) before v1.16.9 is affected by a flaw in the ECIES cryptography implementation that can allow an attacker to extract bits of the p2p node key. The issue is fixed in v1.16.9 and v1.17.0. After upgrading, rotate the node key by removing the file /geth/nodekey before restarting Get...
CVE-2026-26314
go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.16.9, a vulnerable node can be forced to shutdown/crash using a specially crafted message. The problem is resolved in the v1.16.9 and v1.17.0 releases of Geth...
GHSA-M6J8-RG6R-7MV8 Go Ethereum Improperly Validates the ECIES Public Key in RLPx Handshake
Impact Through a flaw in the ECIES cryptography implementation, an attacker may be able to extract bits of the p2p node key. Patches The issue is resolved in the v1.16.9 and v1.17.0 releases of Geth. We recommend rotating the node key after applying the upgrade, which can be done by removing the...
PT-2026-20348
Name of the Vulnerable Software and Affected Versions go-ethereum geth versions prior to 1.16.9 Description go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shut down or crash remotely without requiring login through the use ...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-kinesis, postgres-operator, grafana-alloy, kube-rbac-proxy, kargo, dataplaneapi, kine, falco-no-driver, kyverno-policy-reporter, terraform-provider-azapi, aws-flb-kinesis, polaris, prometheus-alertmanager, bazelisk, aws-sigv4-proxy, kots,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: gops, crossplane-provider-aws-kinesis, postgres-operator, grafana-alloy, kube-rbac-proxy, kargo, dataplaneapi, kine, falco-no-driver, kyverno-policy-reporter, terraform-provider-azapi, aws-flb-kinesis, wire-go, polaris, prometheus-alertmanager, bazelisk,...
GHSA-8JVR-VH7G-F8GX vulnerabilities
Vulnerabilities for packages: gops, crossplane-provider-aws-kinesis, postgres-operator, grafana-alloy, kube-rbac-proxy, kargo, dataplaneapi, kine, falco-no-driver, kyverno-policy-reporter, terraform-provider-azapi, aws-flb-kinesis, wire-go, polaris, prometheus-alertmanager, bazelisk,...
CVE-2025-61732 vulnerabilities
Vulnerabilities for packages: agentbeat, zot, aws-sigv4-proxy-fips, cilium-certgen, extism, jaeger-operator, protoc-gen-go, rancher-support-bundle-kit, stampdalf, tw, crossplane-provider-aws-kms, minio-object-browser-fips, jupyterhub-k8s-image-awaiter-fips, skaffold, glow, nova-fips, podman,...
CVE-2025-68121 vulnerabilities
Vulnerabilities for packages: agentbeat, zot, aws-sigv4-proxy-fips, cilium-certgen, extism, jaeger-operator, rancher-support-bundle-kit, crossplane-provider-aws-kms, minio-object-browser-fips, jupyterhub-k8s-image-awaiter-fips, skaffold, glow, nova-fips, podman, clickhouse-operator,...
GHSA-8JVR-VH7G-F8GX vulnerabilities
Vulnerabilities for packages: agentbeat, zot, aws-sigv4-proxy-fips, cilium-certgen, extism, jaeger-operator, protoc-gen-go, rancher-support-bundle-kit, stampdalf, tw, crossplane-provider-aws-kms, minio-object-browser-fips, jupyterhub-k8s-image-awaiter-fips, skaffold, glow, nova-fips, podman,...
SUSE CVE-2026-22868
go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...
CVE-2026-22862
go-ethereum geth is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced to shutdown/crash using a specially crafted message. This vulnerability is fixed in 1.16.8...