Advisory ROSA-SA-2026-3266

software: kernel-6.6 6.6.126 WASP: ROSA-CHROME unaffected versions = kernel-6.6-6.6.6.126-3 affected versions kernel-6.6-6.6.6.126-3 CVE-ID: CVE-2026-43284 BDU-ID: None CVE-Crit: NO DATA CVE-DESC.: A vulnerability in the xfrm subsystem ESP of the Linux kernel allows data decryption over non-packe...

RHCOS 4 : OpenShift Container Platform 4.14.35 (RHSA-2024:5436)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5436 advisory. - golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm CVE-2023-45290 -...

CVE-2026-43037

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: clear skb2-cb in ip4ip6err Oskar Kjos reported the following problem. ip4ip6err calls icmpsend on a cloned skb whose cb was written by the IPv6 receive path as struct inet6skbparm. icmpsend passes IPCBskb2 to...

CVE-2026-23154

A flaw was found in the Linux kernel's network GSO Generic Segmentation Offload handling. When forwarding GRO packets with fraglists through XLAT IPv4/IPv6 translation, the skbsegmentlist function incorrectly processes packets where only the head skb header is translated, leading to protocol...

AZL-77676 CVE-2026-23154 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: net: fix segmentation of forwarding fraglist GRO This patch enhances GSO segment handling by properly checking the SKBGSODODGY flag for fraglist GSO packets, addressing low throughput issues observed when a station accesses IPv4...

MiracleLinux 9 : python3.9-3.9.18-3.el9_4.3 (AXSA:2024-8598:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8598:04 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : python3-3.6.8-31.el8 (AXSA:2021-1204:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1204:01 advisory. python: XSS vulnerability in the documentation XML-RPC server in servertitle field CVE-2019-16935 python: infinite loop in the tarfile module via...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003135)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003135 advisory. The TCP stack in the Linux kernel before 4.8.10 mishandles skb truncation, which allows local users to cause a denial of service system crash via a crafted applicati...

MiracleLinux 9 : java-1.8.0-openjdk-1.8.0.462.b08-3.el9.ML.1 (AXSA:2025-10686:14)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10686:14 advisory. JDK: Better Glyph drawing CVE-2025-30749 JDK: Enhance TLS protocol support CVE-2025-30754 JDK: Improve scripting supports CVE-2025-30761 JDK: Bette...

Security update for go1.25

This update for go1.25 fixes the following issues: go1.25.3 released 2025-10-13 includes fixes to the crypto/x509 package. bsc1244485 go75861 crypto/x509: TLS validation fails for FQDNs with trailing dot go75777 spec: Go1.25 spec should be dated closer to actual release date Further fixups to the...

CVE-2025-59964

A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on SRX4700 devices allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When forwarding-options sampling is enabled, receipt of any traffic destined to the...

EUVD-2020-12518

Malware in sbrugna...

EUVD-2019-0809

Malware in sbrugna...

EUVD-2024-18008

Malicious code in bioql PyPI...

PT-2025-39307

Name of the Vulnerable Software and Affected Versions Cisco IOS and IOS XE Software versions prior to IOS XE 17.15.4a Description A vulnerability exists in the Simple Network Management Protocol SNMP subsystem of Cisco IOS and IOS XE Software. This flaw, a stack overflow condition, allows an...

CVE-2025-52985

CVE-2025-52985 describes a Use of Incorrect Operator vulnerability in the Routing Engine firewall of Juniper Networks Junos OS Evolved. When a firewall filter applied to the lo0 or re:mgmt interface references a prefix list and that list contains more than 10 entries, the prefix list may fail to ...

CVE-2025-38192 net: clear the dst when changing skb protocol

In the Linux kernel, the following vulnerability has been resolved: net: clear the dst when changing skb protocol A not-so-careful NAT46 BPF program can crash the kernel if it indiscriminately flips ingress packets from v4 to v6: BUG: kernel NULL pointer dereference, address: 0000000000000000...

CVE-2013-1189

Cisco Universal Broadband aka uBR 10000 series routers, when an IPv4/IPv6 dual-stack modem is used, allow remote attackers to cause a denial of service routing-engine reload via unspecified changes to IP address assignments, aka Bug ID CSCue15313...

CVE-2017-6736

The Simple Network Management Protocol SNMP subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these...

CVE-2025-21597

CVE-2025-21597 covers an issue in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. When BGP rib-sharding and update-threading are configured, a remote, unauthenticated, logically adjacent BGP peer can cause rpd to crash and restart via a specific timing of peer...