Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : OpenJDK 11 vulnerabilities (USN-8331-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8331-1 advisory. Thomas Beckers discovered that the JAXP component of OpenJDK 11 did not correctly authenticate...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fixed the rxrpclocal leak in rxrpclookuppeer. It is necessary to call rxrpcPutlocal for the peer candidate before kfree, as it holds a reference to rxrpclocal. DH: v2: The peer freeing code has been abstracted into a...

CVE-2026-5795

In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal variable. Upon returning from the initial checks, there are conditions that cause an early return from the JASPIAuthenticator code without clearing those ThreadLocals. A subsequent reques...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989075)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989075 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxrpclocal leak in rxrpclookuppeer Need to call rxrpcputlocal for peer candidate befor...

EUVD-2021-3044

Malicious code in bioql PyPI...

CVE-2021-39788

In TelecomManager, there is a possible way to check if a particular self managed phone account was registered on the device due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo...

CVE-2021-47538

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxrpclocal leak in rxrpclookuppeer Need to call rxrpcputlocal for peer candidate before kfree as it holds a ref to rxrpclocal. DH: v2: Changed to abstract the peer freeing code out into a function...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from the rxrpclocal leak in the rxrpc module rxrpclookuppeer...

CVE-2023-32809

In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849753...

CVE-2023-32809

CVE-2023-32809 : Affects the Bluetooth driver in MediaTek devices. The issue is improper access control of the register interface, enabling possible read/write access to registers. This can lead to local leakage of sensitive information with system-level privileges required for exploitation, and ...

PT-2023-24039 · Unknown · Bluetooth Driver

Name of the Vulnerable Software and Affected Versions: Bluetooth driver affected versions not specified Description: The issue is related to improper access control of the register interface in the Bluetooth driver, allowing possible read and write access to registers. This could lead to a local...

systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting

A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suiddumpable kernel setting...

OESA-2023-1028 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suiddumpable kernel setting.CVE-2022-4415...

DEBIAN-CVE-2021-3736

A flaw was found in the Linux kernel. A memory leak problem was found in mbochsioctl in samples/vfio-mdev/mbochs.c in Virtual Function I/O VFIO Mediated devices. This flaw could allow a local attacker to leak internal kernel information...

Google Android Information Disclosure Vulnerability (CNVD-2022-44597)

Google Android is a Linux-based open-source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that originates from the disclosure of log information in ArrayMap, where the contents of SMS messages can be compromised. An attacker could explo...

Google Android Information Disclosure Vulnerability (CNVD-2022-44595 )

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that originates from a side channel information disclosure in ContextImpl. An attacker could exploit this vulnerability to cause a local informati...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that originates from a side channel information disclosure in ContextImpl. An attacker could exploit this vulnerability to cause a local informati...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in Google Android, which originates in LoadedPackage::Load in LoadedArsc.cpp, and due to a lack of boundary checking, an out-of-bounds read may occur. read. An attacker...

CVE-2021-30697

A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. A local user may be able to leak sensitive user information...

Google Android Information Disclosure Vulnerability (CNVD-2020-60502)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A security vulnerability exists in the Android-11 version, which stems from an insecure hang of the wallpaper manager, which can be exploited by an attacker to cause a local information leak...