[SECURITY] Fedora 43 Update: kernel-headers-7.0.6-100.fc43

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

CVE-2026-31769

The CVE-2026-31769 issue in the Linux kernel gpib module is resolved by adding a kernel-only descriptor_busy reference count in struct gpib_descriptor to prevent use-after-free of gpib_descriptor objects during concurrent IO ioctl handling (IBRD, IBWRT, IBCMD, IBWAIT). Each IO path increments des...

Exploit for CVE-2026-31431

Copy Fail PoC English Python PoC for CVE-2026-31431,...

CVE-2026-22163

Requires malware code to misuse the DDK kernel module IOCTL interface. Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages. The product utilises a shared resource in a concurrent manner but does not attempt t...

CVE-2026-22163

CVE-2026-22163 concerns GPU DDK kernel IOCTL misuse enabling writes to arbitrary physical memory pages via an unsafely accessed shared resource; impact described as unsafe writes to MMU Page Table entries on systems with 32-bit host CPUs. Root cause: lack of synchronization for a concurrent resou...

OpenEDR 安全漏洞

OpenEDR is an open-source terminal detection and response security platform developed by Comodo Cyber Security. Version 2.5.1.0 of OpenEDR contains a security vulnerability. This vulnerability stems from an vulnerable IOCTL interface in the kernel driver, which may allow local non-privileged...

GHSA-JQWG-75QF-VMF9 SiYuan's direct SQL Query API accessible to Reader-level users enables unauthorized database access

Summary /api/query/sql allows users to run SQL directly, but it only checks basic auth, not admin rights, any logged-in user, even readers, can run any SQL query on the database. Details The vulnerable endpoint is in kernel/api/sql.go go func SQLc gin.Context ret := gulu.Ret.NewResult defer...

EUVD-2005-2753

Malware in sbrugna...

CVE-2025-39849

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

[SECURITY] Fedora 43 Update: kernel-headers-6.17.0-0.rc6.49.fc43

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

Oracle Linux 10 : kernel (ELSA-2025-15782)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15782 advisory. - xfrm: interface: fix use-after-free after changing collectmd xfrm interface - CVE-2025-38500 - idpf: convert control queue mutex to a spinlock -...

CVE-2025-21973

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix kernel panic in the bnxtgetqueuestatsrx | tx When qstats-get operation is executed, callbacks of netdevstatsops are called. The bnxtgetqueuestatsrx | tx collect per-queue stats from swstats in the rings. But rx | t...

Linux Distros Unpatched Vulnerability : CVE-2024-26718

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm-crypt, dm-verity: disable tasklets Tasklets have an inherent problem with memory corruption. The function taskletactioncommon calls tasklettrylock, then it...

SUSE-SU-2025:20047-1 Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52489: mm/sparsemem: fix race in accessing memorysection-usage bsc1221326. - CVE-2023-52581: netfilter: nftables: fix memleak when more than 255...

Exploit for Out-of-bounds Write in Apple Ipados

CVE-2022-32932 : ZinComputeProgramUpdateMutables OOB write d...

fapolicyd security, bug fix, and enhancement update

An update is available for fapolicyd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Fapolicyd File Access Policy Daemon implements application whitelisting to...

Qualcom qseecom driver 安全漏洞

Qualcom qseecom driver is a kernel interface from Qualcom. It provides the kernel driver with a bridge between the userland Normal world and the Secure world. A security vulnerability exists in the qseecom driver, which arises from a potentially arbitrary memory corruption when updating a physica...

[SECURITY] Fedora 33 Update: kernel-headers-5.8.6-300.fc33

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

PT-2020-3657 · Microsoft · Windows Kernel Api +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel API affected versions not specified Description: An elevation of privilege issue exists due to the improper handling of registry objects in memory by the Windows Kernel API. This could allow a locally authenticated attacker, wh...

[SECURITY] Fedora 28 Update: kernel-headers-4.18.10-200.fc28

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...