EUVD-2024-44804

Malicious code in bioql PyPI...

CVE-2025-59534

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.2, there is a command Injection vulnerability in...

CVE-2025-59534 CryptoLib command Injection vulnerability in initialize_kerberos_keytab_file_login()

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.2, there is a command Injection vulnerability in...

sctp: initialize more fields in sctp_v6_from_sk()

...

CVE-2022-50387 net: hinic: fix the issue of CMDQ memory leaks

In the Linux kernel, the following vulnerability has been resolved: net: hinic: fix the issue of CMDQ memory leaks When hinicsetcmdqdepth fails in hinicinitcmdqs, the cmdq memory is not released correctly. Fix it...

CLSA-2025-1758023679 ruby: Fix of CVE-2016-2339

CVE-2016-2339: fix heap overflow vulnerability in Fiddle::Function.new 'initialize' function...

scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated

...

CVE-2025-39723 netfs: Fix unbuffered write error handling

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix unbuffered write error handling If all the subrequests in an unbuffered write stream fail, the subrequest collector doesn't update the stream-transferred value and it retains its initial LONGMAX value. Unfortunately, i...

bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq

...

drm/amd/display: Initialize denominator defaults to 1

...

CVE-2025-26416

In initializeSwizzler of SkBmpStandardCodec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-26416

In initializeSwizzler of SkBmpStandardCodec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-26416

In initializeSwizzler of SkBmpStandardCodec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-26416

The CVE-2025-26416 issue affects SkBmpStandardCodec.cpp in the initializeSwizzler path, described as a heap buffer overflow that causes an out-of-bounds write. The practical result is remote elevation of privilege with no additional execution privileges required and without user interaction. Publ...

Linux Distros Unpatched Vulnerability : CVE-2025-38613

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpibboardinfoioctl is showing up as initialized data on...

Linux Distros Unpatched Vulnerability : CVE-2018-10199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In versions of mruby up to and including 1.4.0, a use-after-free vulnerability exists in src/io.c::Fileinitilializecopy. An attacker that can cause Ruby code to...

Linux Distros Unpatched Vulnerability : CVE-2018-12467

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authorized users of the openbuildservice before 2.9.4 could delete packages by using a malicious request against projects having the OBS:InitializeDevelPackage...

DEBIAN-CVE-2025-38675

In the Linux kernel, the following vulnerability has been resolved: xfrm: state: initialize stateptrs earlier in xfrmstatefind In case of preemption, xfrmstatelookat will find a different pcpuid and look up states for that other CPU. If we matched a state for CPU2 in the statecache while the look...

CVE-2025-38675

CVE-2025-38675 affects the Linux kernel xfrm subsystem. The issue arises when preemption causes xfrm_state_look_at to search on a different pcpu (CPU2 vs CPU1); if a state for CPU2 is found in the state_cache during the lookup, the code may enter the acquire block with state_ptrs not initialized....

CVE-2025-38675

In the Linux kernel, the following vulnerability has been resolved: xfrm: state: initialize stateptrs earlier in xfrmstatefind In case of preemption, xfrmstatelookat will find a different pcpuid and look up states for that other CPU. If we matched a state for CPU2 in the statecache while the look...