Oracle Solaris 安全漏洞

Oracle Solaris is a Unix-like operating system developed by Oracle Corporation for use in server and enterprise-class computing environments. A denial of service vulnerability exists in Oracle Solaris. The vulnerability stems from a failure of a kernel component to properly handle certain...

EUVD-2025-2592

Malicious code in bioql PyPI...

CVE-2025-39819

CVE-2025-39819 affects the Linux kernel (fs/smb). The issue is an inconsistent refcount update in smb2_compound_op that could leak resources; a fix adds an extra cleanup goto to ensure cfile is dropped on all paths, including ENOMEM paths. The problem is limited to the kernel SMB path and is miti...

Linux Distros Unpatched Vulnerability : CVE-2024-42282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: mediatek: Fix potential NULL pointer dereference in dummy netdevice handling Move the...

grub2 security update

2.06-94.0.1 - Rework the scripts to cover both in-place upgrade and update scenarios Orabug: 36768566 - Restore correct order of processing config files Orabug: 36758359 - Support setting custom kernels as default kernels Orabug: 36043978 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix...

CVE-2024-26842

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix shift issue in ufshcdclearcmd When tasktag = 32 in MCQ mode and sizeofunsigned int == 4, 1U Workqueue: ufsehwq0 ufshcderrhandler Call trace: dumpbacktrace+0xf8/0x144 showstack+0x18/0x24 dumpstacklvl+0x78/0x9c...

(Pwn2Own) Apple macOS kextload Time-Of-Check Time-Of-Use Memory Corruption Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of kernel...

(Pwn2Own) Microsoft Windows DirectComposition RemoveBindingManagerReferenceFromTrackerIfNecessary Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of th...

Moderate: Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

Updated microcodectl packages that fix several security bugs and add various enhancements are now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2019-2266

Possible double free issue in kernel while handling the camera sensor and its sub modules power sequence in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and...

[ASA-201808-7] linux-hardened: denial of service

Arch Linux Security Advisory ASA-201808-7 ========================================= Severity: High Date : 2018-08-08 CVE-ID : CVE-2018-5390 Package : linux-hardened Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-750 Summary ======= The package linux-hardened befor...

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2701-1)

Andy Lutomirski discovered a flaw in the Linux kernel's handling of nested NMIs non-maskable interrupts. An unprivileged local user could exploit this flaw to cause a denial of service system crash or potentially escalate their privileges. CVE-2015-3290 Andy Lutomirski discovered a flaw that allo...

Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2355-1)

Chris Evans reported an flaw in the Linux kernel's handling of iso9660 compact disk filesystem images. An attacker who can mount a custom iso9660 image either via a CD/DVD drive or a loopback mount could cause a denial of service system crash or reboot. CVE-2014-5471 Chris Evans reported an flaw ...

Apple Mac OS X 10.x FPathConf System Call Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20982/info Apple Mac OS X is prone to a local denial-of-service vulnerability because the kernel fails to properly handle the execution of a system call. Exploiting this issue allows local, unprivileged users to crash...

Ubuntu Update for linux USN-2173-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN21731.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux USN-2173-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

Fedora 18 : xen-4.2.2-6.fc18 (2013-10136)

Information leak on XSAVE/XRSTOR capable AMD CPUs XSA-52, CVE-2013-2076 970206 Hypervisor crash due to missing exception recovery on XRSTOR XSA-53, CVE-2013-2077 970204 Hypervisor crash due to missing exception recovery on XSETBV XSA-54, CVE-2013-2078 970202 Multiple vulnerabilities in libelf PV...

Fedora 19 : xen-4.2.2-6.fc19 (2013-9986)

Information leak on XSAVE/XRSTOR capable AMD CPUs XSA-52, CVE-2013-2076 970206 Hypervisor crash due to missing exception recovery on XRSTOR XSA-53, CVE-2013-2077 970204 Hypervisor crash due to missing exception recovery on XSETBV XSA-54, CVE-2013-2078 970202 Multiple vulnerabilities in libelf PV...

Fedora 17 : xen-4.1.5-5.fc17 (2013-10247)

Information leak on XSAVE/XRSTOR capable AMD CPUs XSA-52, CVE-2013-2076 970206 Hypervisor crash due to missing exception recovery on XRSTOR XSA-53, CVE-2013-2077 970204 Hypervisor crash due to missing exception recovery on XSETBV XSA-54, CVE-2013-2078 970202 Multiple vulnerabilities in libelf PV...

Ubuntu Update for linux USN-1344-1

Ubuntu Update for Linux kernel vulnerabilities USN-1344-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13441.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux USN-1344-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Apple Mac OSX 10.x - FPathConf System Call Local Denial of Service

Apple Mac OSX 10.x - FPathConf System Call Local Denial of Service // source: https://www.securityfocus.com/bid/20982/info Apple Mac OS X is prone to a local denial-of-service vulnerability because the kernel fails to properly handle the execution of a system call. Exploiting this issue allows...