23 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-53313
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv...
CVE-2026-53313
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...
CVE-2026-53313
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...
CVE-2026-12245
NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered trivially by sending a DNS query over a DoT connection, and closing the connection without reading the response...
CVE-2026-12245
NSD version 4.13.0 and later contains a heap use-after-free in logging errors on TLS connections, which can crash the server process. The issue is triggerable by sending a DNS query over DoT and then closing the connection without reading the response, indicating a network-based impact with poten...
EUVD-2024-51874
Malicious code in bioql PyPI...
CVE-2019-11549
An issue was discovered in GitLab Community and Enterprise Edition 9.x, 10.x, and 11.x before 11.8.9, 11.9.x before 11.9.10, and 11.10.x before 11.10.2. Gitaly has allows an information disclosure issue where HTTP/GIT credentials are included in logs on connection errors...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the use of drmerr instead of deverr for the HPD path, which could lead to null pointer dereferencing...
CVE-2024-46751
CVE-2024-46751 affects the Linux kernel's BTRFS path btrfs_lookup_extent_info(), where a 0 reference count could trigger a BUG_ON(). The fix replaces BUG_ON() with returning -EUCLEAN, aborting the transaction, and logging an error. This is documented in Debian/Ubuntu advisories and included in pa...
shim: Out-of-bounds read printing error messages
A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tries to print an error message to the user; however, the number of parameters used by the logging function doesn't match the format string used by it, leading to a cras...
CVE-2023-52267
ehttp 1.0.6 before 17405b9 has a simplelog.cpp log out-of-bounds-read during error logging for long strings...
The vulnerability of the inet_http_server component in the Supervisor process control system allows a perpetrator to access confidential data and also cause service interruptions.
The vulnerability of the inethttpserver component in the Supervisor process control system is related to a file logging error. Exploiting this vulnerability can allow an attacker to gain access to confidential data and also cause service interruptions...
Moderate: Red Hat Security Advisory: convert2rhel security, bug fix, and enhancement update
An update for convert2rhel is now available for Convert2RHEL for RHEL-8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Moderate: Red Hat Security Advisory: convert2rhel security, bug fix, and enhancement update
An update for convert2rhel is now available for Convert2RHEL for RHEL-7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
CVE-2020-35501
A flaw was found in the Linux kernels implementation of audit rules, where a syscall can unexpectedly not be correctly not be logged by the audit subsystem...
SUSE-SU-2021:3619-1 Security update for libvirt
This update for libvirt fixes the following issues: - lxc: controller: Fix container launch on cgroup v1. bsc1183247 - supportconfig: Use systemctl command 'is-active' instead of 'is-enabled' when checking if libvirtd is active. - qemu: Do not report error in the logs when processing monitor IO...
OPENSUSE-SU-2021:3619-1 Security update for libvirt
This update for libvirt fixes the following issues: - lxc: controller: Fix container launch on cgroup v1. bsc1183247 - supportconfig: Use systemctl command 'is-active' instead of 'is-enabled' when checking if libvirtd is active. - qemu: Do not report error in the logs when processing monitor IO...
httpd: mod_http2 concurrent pool usage
A flaw was found in Apache httpd in versions 2.4.20 to 2.4.43. Logging using the wrong pool by modhttp2 at debug/trace log level may lead to potential crashes and denial of service. The highest threat from this vulnerability is to system availability...
The vulnerability of the Cisco IOS XE operating system’s HTTP server allows a hacker to trigger a service failure.
The vulnerability of the Cisco IOS XE operating system’s HTTP server is related to a logical error in the logging mechanism. Exploiting this vulnerability can allow an attacker to cause a service failure...
Cisco IOS XE HTTP Server Denial of Service Vulnerability
Cisco IOS XE is a set of operating systems developed by Cisco for its network devices. A denial of service vulnerability exists in the HTTP server code of Cisco IOS XE. The vulnerability stems from a logic error in the logging mechanism. An attacker could exploit this vulnerability to cause the...