PT-2026-21718

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148 Firefox ESR versions prior to 140.8 Thunderbird versions prior to 148 Thunderbird versions prior to 140.8 Description The JavaScript Engine component contains an invalid pointer issue. Recommendations Update Firef...

PT-2026-4954

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1, 3.0, 3.3, 3.4, and 3.5 OpenSSL versions 3.6 through 3.6.0 Description An invalid or NULL pointer dereference can occur in applications processing malformed PKCS12 files. This can lead to a denial of service when an...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an invalid pointer in net-gen after an opsinit failure, which could lead to reuse after release...

PT-2025-53060

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ext4 file system related to extended attribute handling. Specifically, the ext4 xattr move to block function contains an issue where memory could be...

SUSE SLES12 Security Update : colord (SUSE-SU-2025:4483-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:4483-1 advisory. - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Tenable has extracted the preceding description...

Security update for colord

This update for colord fixes the following issues: Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:4483-1 Security update for colord

This update for colord fixes the following issues: - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750...

PT-2025-51580

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's gpiolib component related to invalid pointer access within the debugfs interface. Specifically, if memory allocation within the gpiolib seq start...

SUSE CVE-2022-50620

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to invalidate dcc-f2fsissuediscard in error path Syzbot reports a NULL pointer dereference issue as below: refcountadd include/linux/refcount.h:193 inline refcountinc include/linux/refcount.h:250 inline refcountinc...

PT-2025-49461

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to invalidate dcc-f2fs issue discard in error path Syzbot reports a NULL pointer dereference issue as below: refcount add include/linux/refcount.h:193 inline refcount inc include/linux/refcount.h:250 inline refcount inc...

Siemens SIMATIC S7-1500 Release of Invalid Pointer or Reference (CVE-2020-36224)

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

CVE-2025-54333

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the getvs4lprofilernode function...

CVE-2025-54333

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the getvs4lprofilernode function...

CVE-2025-54333

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the getvs4lprofilernode function...

SAMSUNG Mobile Processor Exynos 安全漏洞

SAMSUNG Mobile Processor Exynos is a system-on-chip SoC from South Korea's Samsung SAMSUNG dedicated to smartphones and tablets. A security vulnerability exists in SAMSUNG Mobile Processor Exynos due to an invalid pointer dereference in the getvs4lprofilernode function...

PT-2025-45024

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos versions through July 2025 Description An issue exists in the NPU within Samsung Mobile Processor Exynos. Specifically, an invalid pointer dereference occurs within the get vs4l profiler node function when...

CVE-2025-54333

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the getvs4lprofilernode function...

CVE-2025-11618

A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 packet processing code can lead to an invalid pointer dereference when receiving a UDP/IPv6 packet with an incorrect IP version field in the packet header. This issue only affects applications using IPv6. We recommend upgrading to the...

CVE-2025-11618

CVE-2025-11618 affects FreeRTOS-Plus-TCP’s UDP/IPv6 packet processing. The vulnerability is a missing validation check that can cause an invalid pointer dereference when a UDP/IPv6 packet carries an incorrect IP version field within IPv6 traffic. Impact is limited to IPv6-enabled applications; no...

JLSEC-2025-14 cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free func...

cairo 1.16.0, in cairoftapplyvariations in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free: invalid pointer" error...