Oracle Linux 8 : openssh (ELSA-2025-16823)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-16823 advisory. 8.0p1-26.0.1 - Update upstream references Orabug: 36587718 8.0p1-26 - Fix missing invalid error code checks in OpenSSH. It prevents a MITM attack when...

CVE-2025-38563

In the Linux kernel, the following vulnerability has been resolved: perf/core: Prevent VMA split of buffer mappings The perf mmap code is careful about mmap'ing the user page with the ringbuffer and additionally the auxiliary buffer, when the event supports it. Once the first mapping is...

UBUNTU-CVE-2024-47794

In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent tailcall infinite loop caused by freplace There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace. In an upcoming selftest, the attach target for entryfreplace of...

SUSE CVE-2024-46736

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2renamepath If smb2setpathattr is called with a valid @cfile and returned -EINVAL, we need to call cifsgetwritablepath again as the reference of @cfile was already dropped by previous...

kernel: NFSD: Fix the behavior of READ near OFFSET_MAX

A vulnerability was found in the Linux kernel's NFSD, where improper handling of read requests near the maximum offset can lead to an integer overflow. When a client attempts to read from a near-maximum offset, it causes the server to return an invalid NFS error, resulting in indefinite retries b...

UBUNTU-CVE-2022-48827

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix the behavior of READ near OFFSETMAX Dan Aloni reports: Due to commit 8cfb9015280d "NFS: Always provide aligned buffers to the RPC read layers" on the client, a read of 0xfff is aligned up to server rsize of 0x1000. As a...

DEBIAN-CVE-2023-52585

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpurasqueryerrorstatushelper Return invalid error code -EINVAL for invalid block id. Fixes the below: drivers/gpu/drm/amd/amdgpu/amdgpuras.c:1183 amdgpurasqueryerrorstatushelper...

UBUNTU-CVE-2023-52585

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpurasqueryerrorstatushelper Return invalid error code -EINVAL for invalid block id. Fixes the below: drivers/gpu/drm/amd/amdgpu/amdgpuras.c:1183 amdgpurasqueryerrorstatushelper...

ALPINE-CVE-2020-25691

A flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of-service by accessing a file with a large modification date. The highest threat from this vulnerability is to system availability...

darkhttpd -- DOS vulnerability

Mitre reports: flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of-service by accessing a file with a large modification date. The highest threat from this vulnerability is to system availability...

Apache mod_wsgi privilege escalation

Invalid error processing can lead to privilege escalation...

IBM SolidDB - Invalid Error Code Vulnerability

No description provided by source...

Code injection

The embedded database engine service aka ovdbrun.exe in HP OpenView Network Node Manager OV NNM 7.51 and 7.53 allows remote attackers to cause a denial of service daemon crash via an invalid Error Code field in a packet...

HP Openview NNM 7.53 Invalid DB Error Code Vulnerability

Exploit for unknown platform in category dos / poc ======================================================== HP Openview NNM 7.53 Invalid DB Error Code Vulnerability ======================================================== Title: HP Openview NNM 7.53 Invalid DB Error Code Vulnerability CVE-ID:...

PT-2005-1801 · Veritas · Veritas Backup Exec

Name of the Vulnerable Software and Affected Versions: VERITAS Backup Exec versions 9.0 through 10.0 for Windows Servers VERITAS Backup Exec versions 9.0.4019 through 9.1.307 for Netware Description: The issue allows remote attackers to cause a denial of service, resulting in a Remote Agent crash...