CVE-2026-43487

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to the same BarraCuda family as the ST2000DM008-2FR102...

CVE-2026-43487

The CVE-2026-43487 entry concerns the Linux kernel’s ata: libata-core component. Affected hardware is ST1000DM010-2EP102 (Barracuda family), where Link Power Management (LPM) caused random system freezes. The vulnerability has been resolved by disabling LPM for this drive in the kernel. The descr...

CVE-2026-43487 ata: libata-core: Disable LPM on ST1000DM010-2EP102

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to the same BarraCuda family as the ST2000DM008-2FR102...

CVE-2026-7051

creationtimestamp| type| source ---|---|--- 2026-05-13 13:32:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlqg2p5mda2i...

CVE-2026-4798

creationtimestamp| type| source ---|---|--- 2026-05-13 12:32:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlqcpedfqw2p 2026-05-13 16:19:46+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlqpcm7xqe2z 2026-05-14 00:44:08+00:00| seen|...

CLSA-2026-1778674192 Fix CVE(s): CVE-2026-3441, CVE-2026-3442

SECURITY UPDATE: heap-based OOB read in xcofflinkaddsymbols bfd/xcofflink.c triggered by a crafted XCOFF object file - debian/patches/binutils-CVE-2026-3441-3442.patch: bounds-check XTYLD xscnlen csect index and sanity-check rsymndx before indexing symhashes - CVE-2026-3441 - CVE-2026-3442...

CVE-2026-0264

creationtimestamp| type| source ---|---|--- 2026-05-13 10:50:42+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/palo-alto-networks-security-advisory-av26-462 2026-05-13 19:03:34+00:00| seen| https://bsky.app/profile/ripjyr.bsky.social/post/3mlqyl7jfnh2m 2026-05-13 20:00:00+00:00| seen|...

CVE-2025-9987

creationtimestamp| type| source ---|---|--- 2026-05-13 10:32:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlq3ytn7yp2c...

Bytello Share (Windows Edition) installer executable insecurely loads Dynamic Link Libraries

Overview GUARDIANWALL MailSuite provided by Canon Marketing Japan Inc. contains the following vulnerability. Stack-based buffer overflow in pop3wallpasswd command CWE-121 - CVE-2026-32661 The developer states that attacks exploiting the vulnerability has been observed in GUARDIANWALL MailSuite...

CVE-2026-44612

This CVE affects Bytello Share for Windows: the installer loads DLLs insecurely, allowing a crafted DLL placed in the same directory to execute arbitrary code with the invoking user’s privileges. Impact is local, requires user interaction, and could compromise confidentiality, integrity, and avai...

CVE-2026-44612

Bytello Share Windows Edition installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...

CVE-2026-44612

Bytello Share Windows Edition installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...

CVE-2024-36315

creationtimestamp| type| source ---|---|--- 2026-05-13 05:40:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlplq44z6g2i...

CVE-2025-61971

creationtimestamp| type| source ---|---|--- 2026-05-13 05:30:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlpl672ijz2q...

CVE-2026-6888

creationtimestamp| type| source ---|---|--- 2026-05-13 05:20:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlpkmbyxce2v...

SUSE CVE-2026-7819

Symbolic-link path traversal CWE-61, CWE-22 in pgAdmin 4 File Manager. checkaccesspermission used os.path.abspath, which resolves '..' but does not resolve symbolic links, while the subsequent kernel write follows symlinks. An authenticated user could plant a symbolic link inside their own storag...

CVE-2026-45225

creationtimestamp| type| source ---|---|--- 2026-05-13 03:46:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlpfcs6lej2z...

SUSE CVE-2026-43382

In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid double-rtnllock ELP metric worker batadvvelpgetthroughput might be called when the RTNL lock is already held. This could be problematic when the work queue item is cancelled via canceldelayedworksync in...

SUSE CVE-2026-43458

In the Linux kernel, the following vulnerability has been resolved: serial: caif: hold tty-link reference in ldiscopen and serrelease A reproducer triggers a KASAN slab-use-after-free in ptywriteroom when caifserial's TX path calls ttywriteroom. The faulting access is on tty-link-port. Hold an...

CVE-2026-8449

creationtimestamp| type| source ---|---|--- 2026-05-13 03:14:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlpdjzpaov2k...