Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003528)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003528 advisory. The tcpv6synrecvsock function in net/ipv6/tcpipv6.c in the Linux kernel through 4.14.11 allows attackers to cause a denial of service slab out-of-bounds write or...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003325)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003325 advisory. The srdoioctl function in drivers/scsi/srioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service stack-based buffer overflow or...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001870)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001870 advisory. Race condition in the mac80211 subsystem in the Linux kernel before 3.13.7 allows remote attackers to cause a denial of service system crash via network traffic that...

USN-7961-1 erlang vulnerability

It was discovered that Erlang incorrectly validated peer certificates when incorrect extended key usage was presented. A remote attacker could possibly use this issue to bypass SSL key usage restrictions...

kernel: tls: wait for pending async decryptions if tls_strp_msg_hold fails

A vulnerability was found in tlsdecryptsg in net/tls/tlssw.c in networking subsystem in the Linux Kernel.In this flaw, If it fails to clone of the input skb to hold the reference to the memory it uses may lead a use-after-free...

kernel: tls: wait for pending async decryptions if tls_strp_msg_hold fails

A vulnerability was found in tlsdecryptsg in net/tls/tlssw.c in networking subsystem in the Linux Kernel.In this flaw, If it fails to clone of the input skb to hold the reference to the memory it uses may lead a use-after-free...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

PT-2026-2857

Libsndfile =1.2.2 contains a memory leak vulnerability in the mpeg l3 encoder init function within the mpeg l3 encode.c file...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001033)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001033 advisory. Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel before 4.8.14 allows local users to gain privileges or cause a denial of service...

AmbShield: Enhancing Physical Layer Security with Ambient Backscatter Devices against Eavesdroppers

Passive eavesdropping compromises confidentiality in wireless networks, especially in resource-constrained environments where heavyweight cryptography is impractical. Physical layer security PLS exploits channel randomness and spatial selectivity to confine information to an intended receiver wit...

MiracleLinux 4 : mutt-1.5.20-2.20091214hg736b6a.AXS4.1 (AXSA:2011-711:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-711:01 advisory. Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000940)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000940 advisory. The PPPoL2TP feature in net/l2tp/l2tpppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between ...

CVE-2025-52435

J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE. Improper handling of Pause Encryption procedure on Link Layer results in a previously encrypted connection being left in un-encrypted state allowing an eavesdropper to observe the remainder of the exchange...

CVE-2025-71063

Errands before 46.2.10 does not verify TLS certificates for CalDAV servers...

CVE-2026-22252

LibreChat is a ChatGPT clone with additional features. Prior to v0.8.2-rc2, LibreChat's MCP stdio transport accepts arbitrary commands without validation, allowing any authenticated user to execute shell commands as root inside the container through a single API request. This vulnerability is fix...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: tty: ngsm: Do not block the input queue by waiting for the MSC response. Currently, the gsmqueue function processes incoming frames. When opening a DLC channel, it calls gsmdlciopen, which in turn calls gsmmodemupdate. If the bas...

Uncaught Exception

Overview Affected versions of this package are vulnerable to Uncaught Exception in the TLS module when a TLS server is configured with pskCallback or ALPNCallback. A remote attacker can crash or exhaust resources of a TLS server by sending input that causes the callback to throw an error...

[SECURITY] Fedora 42 Update: NetworkManager-l2tp-1.52.0-1.fc42

This package contains software for integrating L2TP and L2TP over IPsec VPN support with the NetworkManager...

[SECURITY] Fedora 43 Update: NetworkManager-l2tp-1.52.0-1.fc43

This package contains software for integrating L2TP and L2TP over IPsec VPN support with the NetworkManager...

PT-2026-2801

Name of the Vulnerable Software and Affected Versions go-ethereum geth versions prior to 1.16.8 Description go-ethereum geth is a golang implementation of the Ethereum protocol. A specially crafted message can force a vulnerable node to shutdown or crash, resulting in a denial-of-service conditio...