Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000579)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000579 advisory. Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002183)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002183 advisory. Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by...

CVE-2025-59951

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. The official Docker image for Termix versions 1.5.0 and below, due to being configured with an Nginx reverse proxy, causes the backend to retrieve the proxy's IP instead of the client's I...

PT-2025-40304

Name of the Vulnerable Software and Affected Versions Termix versions 1.5.0 and below Description Termix is a web-based server management platform offering SSH terminal, tunneling, and file editing features. The official Docker image, when configured with an Nginx reverse proxy, incorrectly...

USN-6038-1 golang-1.18 vulnerabilities

It was discovered that the Go net/http module incorrectly handled Transfer-Encoding headers in the HTTP/1 client. A remote attacker could possibly use this issue to perform an HTTP Request Smuggling attack. CVE-2022-1705 It was discovered that Go did not properly manage memory under certain...

SUSE CVE-2022-32212

A OS Command Injection vulnerability exists in Node.js versions 14.20.0, 16.20.0, 18.5.0 due to an insufficient IsAllowedHost check that can easily be bypassed because IsIPAddress does not properly check if an IP address is invalid before making DBS requests allowing rebinding attacks...

Qualys Cloud Platform 8.15.1 New Features

This new patch release of the Qualys Cloud Platform, version 8.15.1, includes updates to Qualys Vulnerability Management. Vulnerability Management IP Update Handling for Agents – External IP address for Agents will no longer overwrite previous internal IP address when an internal address is not...

idreamsoft iCMS server-side request forgery vulnerability (CNVD-2018-14778)

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A server-side request forgery vulnerability exists in versions of idreamsoft iCMS prior to 7.0.11, which stems from the app/spider/spidertools.class.php file being able to receive private and reserved IP...

AlienVault OSSIM NBE hostname/IP handling command execution vulnerability

AlienVault OSSIM or Open Source Security Information Management is a popular open source security management system. AlienVault OSSIM handles the existence of an input validation vulnerability in NBE hostname/IP, which allows remote attackers to exploit the vulnerability by submitting a specially...

DEBIAN-CVE-2011-3187

The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address...

cutenews.txt

===================================================== cutenews 1.3.6: Remote XSS && Local Code Execution ===================================================== FraMe - frame at kernelpanik.org http://www.kernelpanik.org ===================================================== cutenews es un script...

Debian DSA-332-1 : linux-kernel-2.4.17 - several vulnerabilities

A number of vulnerabilities have been discovered in the Linux kernel. - CVE-2002-0429: The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a binary compatibility interface lcall - CAN-2003-0001: Multip...

CVE-2003-0364

The TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote attackers to cause a denial of service CPU consumption via certain packets that cause a large number of hash table collisions...

CVE-2003-0364

The TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote attackers to cause a denial of service CPU consumption via certain packets that cause a large number of hash table collisions...

Microsoft Windows 3.1195NT 4.0NT 3.5.1 - Out Of Band Data Denial of Service (1)

Microsoft Windows 3.1195NT 4.0NT 3.5.1 - Out Of Band Data Denial of Service 1 // source: https://www.securityfocus.com/bid/2010/info Older versions of Microsoft Windows 95, Windows for Workgroups 3.11, Windows NT up to and including 4.0, as well as SCO Open Server 5.0, have a vulnerability relati...

Microsoft Windows 3.11/95/NT 4.0/NT 3.5.1 - 'Out Of Band' Data Denial of Service (2)

source: https://www.securityfocus.com/bid/2010/info Older versions of Microsoft Windows 95, Windows for Workgroups 3.11, Windows NT up to and including 4.0, as well as SCO Open Server 5.0, have a vulnerability relating to the way they handle TCP/IP "Out of Band" data. According to Microsoft, "A...