31 matches found
CVE-2026-55653 Openssh: double free in red hat enterprise linux versions of openssh dh-gex client path during fips known-group validation leads to client-side denial of service
A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group Exchange DH-GEX client path. This occurs during FIPS Federal Information Processing Standards mode known-group validation when the client processes attacker-controlled DH-GEX...
EUVD-2026-38412
A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group Exchange DH-GEX client path. This occurs during FIPS Federal Information Processing Standards mode known-group validation when the client processes attacker-controlled DH-GEX...
PT-2026-49007
Name of the Vulnerable Software and Affected Versions MISP affected versions not specified Description An authorization flaw exists in the object add/edit handling. An authenticated user with object editing permissions can assign a MISP object, or attributes within an object, to a sharing group...
Roxy-WI 安全漏洞
Roxy-WI is an open-source web interface designed for managing Haproxy, Nginx, and Keepalived servers. Roxy-WI versions 8.2.6.4 and earlier contain security vulnerabilities. These vulnerabilities stem from the PUT /smon/check endpoint, which only verifies that the caller belongs to a certain group...
CVE-2026-44224
Wiki.js 2.x prior to 2.5.313 is affected by a privilege-escalation in the users.update GraphQL mutation: it accepts an arbitrary groups array and writes it to the database without validating group IDs or enforcing ownership checks. An attacker with manage:users can set groups:[1] on their own acc...
Incorrect Ownership Assignment
Overview Affected versions of this package are vulnerable to Incorrect Ownership Assignment through improper validation of the defaultGroup ID after group access revocation. An attacker can gain unauthorized access to group collections and perform full CRUD operations by omitting the X-Tenant...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003287)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003287 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in btrfsrootnode when mounting a crafted btrfs image, because of...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003035)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003035 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in ioctlmappage when mounting and operating a crafted btrfs imag...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002546)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002546 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in ioctlmappage when mounting and operating a crafted btrfs imag...
CVE-2025-69277
libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group...
SUSE CVE-2023-53861
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
EUVD-2023-60135
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
CVE-2023-53861
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
DEBIAN-CVE-2023-53861
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
CVE-2023-53861
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
UBUNTU-CVE-2023-53861
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
CVE-2023-53861 ext4: correct grp validation in ext4_mb_good_group
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
CVE-2023-53861 ext4: correct grp validation in ext4_mb_good_group
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
CVE-2023-53861
In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...
CVE-2023-53861
CVE-2023-53861 : Linux kernel ext4 fix – adding a NULL check before the group corruption check in ext4_mb_good_group to prevent a NULL pointer dereference when grp is NULL, which could crash the kernel. Affected component: ext4 in the kernel; impact is kernel crash due to NULL pointer dereference...