Astra Linux - уязвимость в parsec

The vulnerability of the psaud utility within the PARSEC security subsystem is related to improper memory release after its use. Exploiting this vulnerability allows an attacker to cause a service failure...

Astra Linux - уязвимость в parsec

The vulnerability of the pdpl-user utility in the PARSEC security subsystem is related to improper memory release after its use. Exploiting this vulnerability allows an attacker to cause a service failure...

Advisory ROSA-SA-2026-3128

software: gnutls 3.8.10 OS: ROSA-CHROME unaffected versions = gnutls-3.8.10-1 affected versions gnutls-3.8.10-1 CVE-ID: CVE-2025-32988 BDU-ID: 2025-11076 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the asn1deletestructure function of the GnuTLS transport layer security library involves a memory...

ROS-20260112-7335

A vulnerability in the sqpoll component of the Linux operating system is related to a memory release error. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the presence of a memory corruption in the extended buffer descriptor mode, which could result in a DMA memory...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the qla2xxx driver not properly handling locks in the command completion path, which could lead to a memory...

ROS-20250212-13

Vulnerability in the ntpd daemon implementation of the NTP time synchronization protocol is related to insufficient validation of user input during NTP packet processing. user input during NTP packet processing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a...

ROS-20240708-21

Vulnerability in cURL command line utility is due to bugs in protocol removal logic. Exploitation The exploitation of the vulnerability may allow a remote intruder to gain access to protected information Vulnerability in the HTTP/2 network protocol implementation of the cURL command line utility ...

ROS-20240708-01

Vulnerability in the HTTP/2 network protocol implementation of the cURL command line utility is related to memory release errors. memory freeing errors. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service Vulnerability in the cURL command line...

ROS-2-490

2.490 Multiple vulnerabilities of libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

PT-2024-2771 · Unknown +4 · Openvswitch +4

Name of the Vulnerable Software and Affected Versions: openvswitch version 2.17.8 Description: The issue is related to a memory leak in the xmalloc function in openvswitch-2.17.8/lib/util.c. This memory leak is associated with errors in memory release. Exploitation of this issue may allow a remot...

PT-2023-6400 · F5 · Big-Ip

Name of the Vulnerable Software and Affected Versions: BIG-IP versions prior to the fixed version Description: The issue is related to errors in memory release, which can be exploited by a remote attacker to cause a denial of service. When a client-side HTTP/2 profile and the HTTP MRF Router opti...

PT-2022-7319 · Xenstore +1 · Xenstore +1

Name of the Vulnerable Software and Affected Versions: Xenstore affected versions not specified Description: The issue allows guests to create an arbitrary number of nodes via transactions. If a node is created in a transaction and later deleted in the same transaction, the transaction will be...

ROS-20221007-03

Vim text editor vulnerability is related to a memory release error in the function didsetstringoption of the optionstr.c file. Exploitation of the vulnerability could allow an attacker, acting remotely, trick the victim into opening a specially crafted file, crashing the program, and executing...

ROS-20220516-06

A vulnerability in the high-level Ruby programming language is related to a type conversion bug in the some conversion methods, such as KernelFloat and Stringtof. Exploitation of the vulnerability could allow an attacker acting remotely to pass specially crafted data to a vulnerable application,...

PT-2022-7668 · Realtek · Realtek Rtsuer Driver For Usb Card Reader +1

Name of the Vulnerable Software and Affected Versions: Realtek RtsPer driver for PCIe Card Reader versions prior to 10.0.22000.21355 Realtek RtsUer driver for USB Card Reader versions prior to 10.0.22000.31274 Description: The issue is related to memory release errors in the Realtek SD card reade...

ROS-20220125-09

A vulnerability in the nghttp2 library is related to a memory release error. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service on the target system...

Cisco Catalyst 3650 and 3850 Series Switches IOS XE Software Denial of Service Vulnerability

The Cisco Catalyst 3650 and 3850 Series Switches are switch products from Cisco, Inc.IOS XE Software is a set of operating systems developed by Cisco for its network devices that run on them. A denial of service vulnerability exists in the IOS XE Software in the Cisco Catalyst 3650 and 3850 Serie...