CVE-2026-23237

CVE-2026-23237 affects the Linux kernel, specifically the platform/x86 classmate-laptop driver. The issue arises when sysfs attributes of the input device are accessed before the driver has stored the input device address, causing NULL pointer dereferences via dev_get_drvdata(&inputdev->dev) i...

CVE-2025-66363

An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for memory initialization within DL NAS Transport messages...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow through the drwavreadsmpltometadataobj function. An attacker can cause memory corruption by supplying a specially crafted WAV file that exploits a mismatch between sample loop count validation and processing,...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005665)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005665 advisory. In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a pstore/ram: Do not...

ROS-20260304-73-0027

A vulnerability in the media component of the Linux operating system kernel is related to improper resource initialization. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Cisco Secure Firewall Management Center 安全漏洞

Cisco Secure Firewall Management Center is a powerful network security management tool developed by Cisco, Inc. There is a security vulnerability present in Cisco Secure Firewall Management Center. This vulnerability stems from the improper creation of system processes during initialization, whic...

Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞

Cisco Secure Firewall Adaptive Security Appliance and Cisco Secure Firewall Threat Defense are products of Cisco, a US company. Cisco Secure Firewall Adaptive Security Appliance is an enterprise-level firewall software. Cisco Secure Firewall Threat Defense is an integrated firewall platform. Both...

PT-2026-22923

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to missing NULL pointer checks within the Classmate laptop driver. Specifically, code utilizing the accel object may execute before the object's...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005471)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005471 advisory. In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a pstore/ram: Do not...

ROS-20260304-73-0017

A vulnerability in the usbhsprobe function of the usb component of the Linux operating system kernel is related to incorrect resource initialization. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260304-73-0028

A vulnerability in the usbbulkmsg function of the Linux kernel is related to incorrect resource initialization. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Incorrect Privilege Assignment

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incorrect Privilege Assignment via the sessionsspawn process when using runtime="acp" in a sandboxed environment. An attacker can gain unauthorized access to host-side ACP initialization ...

GHSA-474H-PRJG-MMW3 OpenClaw: Sandboxed sessions_spawn(runtime="acp") bypassed sandbox inheritance and allowed host ACP initialization

Summary Sandboxed sessionsspawnruntime="acp" could bypass sandbox inheritance and initialize host-side ACP runtime. The fix now fail-closes ACP spawn from sandboxed requester sessions and rejects sandbox="require" for runtime="acp". Affected Packages / Versions - Package: openclaw npm - Latest...

CVE-2026-29022

drlibs drwav.h version 0.14.4 and earlier fixed in commit 8a7258c contain a heap buffer overflow vulnerability in the drwavreadsmpltometadataobj function of drwav.h that allows memory corruption via crafted WAV files. Attackers can exploit a mismatch between sampleLoopCount validation in pass 1 a...

CVE-2025-66363

An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for memory initialization within DL NAS Transport messages...

CVE-2025-66363

An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for memory initialization within DL NAS Transport messages...

SAMSUNG Exynos 2200 安全漏洞

Samsung Exynos 2200 is a mobile chip processor developed by South Korean company Samsung. There is a security vulnerability in the Samsung Exynos 2200, which stems from the lack of checking the memory initialization for DL NAS transmission messages in LBS...

PT-2026-22750

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos 2200 affected versions not specified Description An issue exists in LBS within the Samsung Mobile Processor Exynos 2200. The problem involves a missing check for memory initialization within DL NAS Transport...

CVE-2025-66363

An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for memory initialization within DL NAS Transport messages...

EUVD-2025-208236

An issue was discovered in LBS in Samsung Mobile Processor Exynos 2200. There was no check for memory initialization within DL NAS Transport messages...