CVE-2026-22770

ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last element in the set is not properly initialized. This will...

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

Linux Distros Unpatched Vulnerability : CVE-2026-22770

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffe...

MiracleLinux 9 : openssl-3.0.1-47.el9 (AXSA:2023-5192:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5192:01 advisory. openssl: read buffer overflow in X.509 certificate verification CVE-2022-4203 openssl: timing attack in RSA Decryption implementation CVE-2022-4304...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001394)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001394 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in delrelocroot in fs/btrfs/relocation.c when mounting a crafted...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001277)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001277 advisory. The xfsdinodeverify function in fs/xfs/libxfs/xfsinodebuf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service xfsilockattrmapshared...

CVE-2023-4883

Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF Virtual Network Function, and triggering the ogssbimessagefree function, which could cause a...

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

EUVD-2026-0013

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

PT-2026-4954

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1, 3.0, 3.3, 3.4, and 3.5 OpenSSL versions 3.6 through 3.6.0 Description An invalid or NULL pointer dereference can occur in applications processing malformed PKCS12 files. This can lead to a denial of service when an...

PT-2026-4955

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.0.2 through 3.6 Description A type confusion issue exists in the signature verification of signed PKCS7 data. This occurs when an ASN1 TYPE union member is accessed without first validating the type, potentially leading to a...

PT-2026-21718

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 148 Firefox ESR versions prior to 140.8 Thunderbird versions prior to 148 Thunderbird versions prior to 140.8 Description The JavaScript Engine component contains an invalid pointer issue. Recommendations Update Firef...

PT-2025-53060

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ext4 file system related to extended attribute handling. Specifically, the ext4 xattr move to block function contains an issue where memory could be...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an invalid pointer in net-gen after an opsinit failure, which could lead to reuse after release...

SUSE SLES12 Security Update : colord (SUSE-SU-2025:4483-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:4483-1 advisory. - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Tenable has extracted the preceding description...

Security update for colord

This update for colord fixes the following issues: Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:4483-1 Security update for colord

This update for colord fixes the following issues: - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750...

PT-2025-51580

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's gpiolib component related to invalid pointer access within the debugfs interface. Specifically, if memory allocation within the gpiolib seq start...