Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm: gup: stop abusing trygrabfolio A kernel warning was reported when pinning folio in CMA memory during the launch of a SEV virtual machine. The warning message looks like this: 464.325306 WARNING: CPU: 13 PID: 6734 at...

Astra Linux - уязвимость в gnupg2

In GnuPG before version 2.4.9, the armorfilter function in g10/armor.c had two increments of an index variable, where only one was intended. This led to a out-of-bounds write vulnerability with crafted inputs. This issue has been fixed in ExtendedLTS versions, 2.2.51 and later...

CVE-2026-40098

Magento Long Term Support LTS is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. Prior to version 20.17.0, the shared wishlist add-to-cart endpoint authorizes access with a public...

[SECURITY] [DLA 4493-1] libstb security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4493-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA February 26, 2026 https://wiki.debian.org/LTS -...

Debian dla-4401 : firefox-esr - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4401 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4401-1 [email protected]...

Ubuntu: Security Advisory (USN-7863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-64174

Magento-lts is a long-term support alternative to Magento Community Edition CE. Versions 20.15.0 and below are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an admin with direct database access or the admin notification feed source to inject malicious scripts...

forgejo-longterm-11.0.6-2.1 on GA media (moderate)

forgejo-longterm-11.0.6-2.1 on GA media Announcement ID: openSUSE-SU-2025:15618-1 Rating: moderate Cross-References: CVE-2025-47911 CVE-2025-58190 CVSS scores: CVE-2025-47911 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2025-47911 SUSE : 6.9...

OPENSUSE-SU-2025:15618-1 forgejo-longterm-11.0.6-2.1 on GA media

These are all security issues fixed in the forgejo-longterm-11.0.6-2.1 package on the GA media of openSUSE Tumbleweed...

EUVD-2019-6250

Malware in sbrugna...

EUVD-2024-53260

Malicious code in bioql PyPI...

Debian dla-4276 : gir1.2-javascriptcoregtk-4.0 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4276 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4276-1 [email protected]...

Linux Distros Unpatched Vulnerability : CVE-2024-44943

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm: gup: stop abusing trygrabfolio A kernel warning was reported when pinning folio in CMA...

OPENSUSE-SU-2025:15389-1 forgejo-longterm-11.0.3-1.1 on GA media

These are all security issues fixed in the forgejo-longterm-11.0.3-1.1 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2024-56612

In the Linux kernel, the following vulnerability has been resolved: mm/gup: handle NULL pages in unpinuserpages The recent addition of "pofs" pages or folios handling to gup has a flaw: it assumes that unpinuserpages handles NULL pages in the pages array. That's not the case, as I discovered when...

DEBIAN-CVE-2024-56612

In the Linux kernel, the following vulnerability has been resolved: mm/gup: handle NULL pages in unpinuserpages The recent addition of "pofs" pages or folios handling to gup has a flaw: it assumes that unpinuserpages handles NULL pages in the pages array. That's not the case, as I discovered when...

PT-2024-38278 · Progress · Openedge

Name of the Vulnerable Software and Affected Versions: OpenEdge LTS versions prior to 11.7.18 OpenEdge LTS versions prior to 12.2.13 Description: A Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents o...

OPENSUSE-SU-2024:13704-1 kernel-devel-longterm-6.6.17-1.1 on GA media

These are all security issues fixed in the kernel-devel-longterm-6.6.17-1.1 package on the GA media of openSUSE Tumbleweed...

longterm-investor.com Cross Site Scripting vulnerability OBB-2540822

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Linux kernel resource management error vulnerability (CNVD-2019-32355)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A resource management error vulnerability exists in Linux kernel longterms versions 4.9.x prior to 4.9.190 and 4.14.x prior to 4.14.139, which stems from a program's...