658 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002147)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002147 advisory. The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001803)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001803 advisory. The rdsibladdrcheck function in net/rds/ib.c in the Linux kernel before 3.12.8 allows local users to cause a denial of service NULL pointer dereference and system...
CVE-2018-6387
iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices have a hardcoded password of admin for the admin account, a hardcoded password of support for the support account, and a hardcoded password of user for the user account...
CVE-2023-54274 RDMA/srpt: Add a check for valid 'mad_agent' pointer
In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Add a check for valid 'madagent' pointer When unregistering MAD agent, srpt module has a non-null check for 'madagent' pointer before invoking ibunregistermadagent. This check can pass if 'madagent' variable holds an...
CVE-2023-54219
In the Linux kernel, the following vulnerability has been resolved: Revert "IB/isert: Fix incorrect release of isert connection" Commit: 699826f4e30a "IB/isert: Fix incorrect release of isert connection" is causing problems on OPA when DEVICEREMOVAL is happening. ------------ cut here -----------...
CVE-2023-54048
CVE-2023-54048 in the Linux kernel’s RDMA bnxt_re driver: a race can occur after a QP is destroyed when the hardware may generate completions for that QP, leading to a race between destroy_cq and poll_cq. The advisory states that completions must be finished before returning from destroy_qp, and ...
Important: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerabilit...
CVE-2025-36015
The CVE-2025-36015 entry affects IBM Controller (11.1.0–11.1.1) and IBM Cognos Controller (11.0.0–11.0.1 FP6). The vulnerability is caused by improper validation of a specified quantity size input, enabling an authenticated user to trigger a denial of service (availability impact: HIGH) without i...
kernel: RDMA/mlx5: Fix mlx5_ib_get_hw_stats when used for device
An out-of-bounds write vulnerability exists in the linux kernel, such that when mlx5ibgethwstats is used forthe device portnum = 0, There is a special handling in order to use the correct counters, but, portnum is being passed down the stack without any change leading to damage in system...
RHEL 9 : kernel (RHSA-2025:22066)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22066 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ALSA: usb-audio: Validate UAC...
EUVD-2022-55679
TEC-IT TBarCode version 11.15 contains a vulnerability in the TBarCode11.ocx ActiveX/OCX control's licensing handling INI-file based that can be abused to cause remote creation of files on the host filesystem. Depending on where files can be created and which filenames are allowed, this can allow...
EUVD-2025-136985
Malicious code in imuay-agg-ib npm...
EUVD-2025-137624
Malicious code in polymer-ib-sgahsdi npm...
EUVD-2025-137626
Malicious code in polymer-ib-sgahsddi npm...
Malicious code in polymer-ib-agaiada (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc7b044b19ac241af93137e5d57be1f8f90f4dcd2913ee238ad28427496490da This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polymer-ib-sgasi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d291d66c00fe30ab41ada6f47268c9128fddc9db353f3a9bbebab219e2af730e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-137630
Malicious code in polymer-ib-agaad npm...
EUVD-2025-137622
Malicious code in polymer-ib-sgasdi npm...
EUVD-2025-137632
Malicious code in polymer-ib-aad npm...
Malicious code in polymer-ib-aad (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cac35184b242cc06df46464efa4bec403d0990657ecaef3e0dfd6af3755a116 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...