Medium: ecs-init

Issue Overview: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not...

Important: ecs-init

Issue Overview: A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000303)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000303 advisory. Four memory leaks in the acphwinit function in drivers/gpu/drm/amd/amdgpu/amdgpuacp.c in the Linux kernel before 5.3.8 allow attackers to cause a denial of service...

CVE-2026-21677 iccDEV has Undefined Behavior in CIccCLUT::Init()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have Undefined Behavior in its CIccCLUT::Init function which initializes and sets the size of a CLUT. This issue is fixed in version 2.3.1.1...

CVE-2026-21677 iccDEV has Undefined Behavior in CIccCLUT::Init()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have Undefined Behavior in its CIccCLUT::Init function which initializes and sets the size of a CLUT. This issue is fixed in version 2.3.1.1...

iccDEV 安全漏洞

iccDEV is an open source color configuration code library from the International Color Consortium ICC. A security vulnerability exists in iccDEV version 2.3.1 and earlier, which stems from an undefined behavior in the CIccCLUT::Init function, which could lead to an undefined behavior attack...

CVE-2025-68759

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Fix potential memory leaks in rtl8180initrxring In rtl8180initrxring, memory is allocated for skb packets and DMA allocations in a loop. When an allocation fails, the previously successful allocations are not freed...

CVE-2025-68759 wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Fix potential memory leaks in rtl8180initrxring In rtl8180initrxring, memory is allocated for skb packets and DMA allocations in a loop. When an allocation fails, the previously successful allocations are not freed...

Linux Distros Unpatched Vulnerability : CVE-2023-54203

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix slab-out-of-bounds in initsmb2rsphdr When smb1 mount fails, KASAN detect slab-out-of-bounds in initsmb2rsphdr like the following one. For smb1...

Amazon Linux 2 : ecs-init, --advisory ALAS2ECS-2025-088 (ALASECS-2025-088)

The version of ecs-init installed on the remote host is prior to 1.101.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2025-088 advisory. crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a...

Medium: ecs-init

Issue Overview: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not...

Important: ecs-init

Issue Overview: A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is...

Linux Distros Unpatched Vulnerability : CVE-2025-68759

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: rtl818x: Fix potential memory leaks in rtl8180initrxring In rtl8180initrxring, memory is allocated for skb packets and DMA allocations in a loop. When an...

PT-2026-26051

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the Linux kernel perf event subsystem during ring buffer management. The issue occurs in the perf mmap function when a mmap setup fails and a concurrent mmap i...

PT-2026-27691

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s xsk module related to fragment node deletion. A buffer leak can occur because the list node field is reused for both the xskb pool list and the buffer...

PT-2026-5521

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the btrfs subsystem where the path was released before the extent tree was initialized within the btrfs read locked inode function. This could lead t...

PT-2026-8150

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s CAN Controller Area Network subsystem, specifically within the gs usb receive bulk callback function. A commit introduced an issue where a failing...

PT-2026-8124

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The hp-bioscfg driver attempts to register kobjects with empty names when the HP BIOS returns attributes with empty name strings, resulting in kernel warnings. Specifically, the driver...

PT-2026-6171

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the Linux kernel's LED class initialization. Specifically, LEDs were being added to the leds list before the led init core function was called, leaving a windo...

SUSE CVE-2022-50820

In the Linux kernel, the following vulnerability has been resolved: perf/armdmc620: Fix hotplug callback leak in dmc620pmuinit dmc620pmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path. Simil...