Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992709)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992709 advisory. In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low...

Linux Distros Unpatched Vulnerability : CVE-2022-50875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - of: overlay: fix null pointer dereferencing in finddupcsetnodeentry and finddupcsetprop When kmalloc fail to allocate memory in kasprintf, fn1 or fn2 will be...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992445)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992445 advisory. In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low...

JLSEC-2025-256 In LibTIFF, there is a memory malloc failure in tif_pixarlog.c

In LibTIFF, there is a memory malloc failure in tifpixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack...

EUVD-2008-5210

Malware in sbrugna...

EUVD-2025-14151

Malicious code in bioql PyPI...

OESA-2025-2047 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

OESA-2025-2045 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

CVE-2025-8058

The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation...

CVE-2025-8058

The CVE-2025-8058 issue concerns the regcomp implementation in the GNU C Library (glibc) from versions 2.4 through 2.41. A double-free can occur when a prior allocation fails (including malloc failures or injected failures via interposed malloc), potentially enabling buffer manipulation depending...

pm: cpupower: bench: Prevent NULL dereference on malloc failure

...

SUSE CVE-2025-37841

In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference...

DEBIAN-CVE-2025-37841

In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference...

UBUNTU-CVE-2025-37841

In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference...

CVE-2025-37841

In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to low memory, 'config' pointer can be NULL. Add a check to prevent NULL dereference...

CVE-2025-37841

CVE-2025-37841: In the Linux kernel, the vulnerability affects the pm: cpupower: bench path. If malloc returns NULL due to low memory, the config pointer can be NULL, leading to a NULL dereference. The issue has a tracked fix described as adding a NULL check to prevent dereferencing config when m...

glibc qsort() Out-Of-Bounds Read / Write Exploit

Qualys discovered a memory corruption in the glibc's qsort function, due to a missing bounds check. To be vulnerable, a program must call qsort with a nontransitive comparison function a function cmpint a, int b that returns a - b, for example and with a large number of attacker-controlled elemen...

UBUNTU-CVE-2023-26930

DISPUTED Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”...

SUSE CVE-2012-4424

Stack-based buffer overflow in string/strcolll.c in the GNU C Library aka glibc or libc6 2.17 and earlier allows context-dependent attackers to cause a denial of service crash or possibly execute arbitrary code via a long string that triggers a malloc failure and use of the alloca function...

Huawei EulerOS: Security Advisory for jbigkit (EulerOS-SA-2021-2390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...