31582 matches found
EUVD-2026-24710
A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...
CVE-2026-6844
A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...
CLSA-2026-1776848113 gimp: Fix of 2 CVEs
CVE-2026-2239: fix heap-buffer-overflow in freadpascalstring when processing PSD files and a follow-up NULL pointer dereference in loadresource1006 alpha names handling - CVE-2026-2272: fix integer overflow in ICO file loading...
CVE-2026-6844 Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...
CVE-2026-6844
A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...
CVE-2026-6844
CVE-2026-6844 affects the readelf utility in the binutils package. A crafted ELF file can trigger two DoS conditions: (1) resource exhaustion leading to out-of-memory and (2) a null pointer dereference causing a segmentation fault. Both can render readelf unresponsive or crash, resulting in denia...
CVE-2026-6844 Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...
PT-2026-34327
If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...
PT-2026-34326
An attacker can send replies that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service. Cookies are disabled by default...
PT-2026-34364
In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix param ctx leak on damon sysfs new test ctx failure Patch series "mm/damon/sysfs: fix memory leak and NULL dereference issues", v4. DAMON SYSFS can leak memory under allocation failure, and do NULL pointer...
PT-2026-34415
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference exists in the Bluetooth L2CAP component. The issue occurs within the l2cap sock ready cb function when the sk pointer is used without verifying if it is null...
PT-2026-34363
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description Multiple sysfs command paths dereference contexts arr0 without verifying that kdamond-contexts-nr equals 1. A privileged user can set nr contexts to 0 via sysfs while DAMON is running,...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013605)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013605 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: Add missing check for allocorderedworkqueue Add check for the return value of...
PowerDNS Recursor(pdns_recursor) 代码问题漏洞
PowerDNS Recursor pdnsrecursor is a domain name resolution server developed by the Dutch company PowerDNS. There is a code vulnerability in PowerDNS Recursor. This vulnerability arises from the use of the zoneToCache function, where attackers can send zones that result in null pointer...
PT-2026-43131
Name of the Vulnerable Software and Affected Versions GNU LibreDWG versions prior to 0.15 Description A security flaw in the DWG File Handler component occurs within the dwg next entity function of the src/decode.c file. The issue is caused by incorrect resource cleanup or release, leading to a...
PT-2026-34318
An RPZ sent by a malicious authoritative server can result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...
PowerDNS Recursor(pdns_recursor) 代码问题漏洞
PowerDNS Recursor pdnsrecursor is a domain name resolution server developed by the Dutch company PowerDNS. There is a code vulnerability in PowerDNS Recursor, which stems from the ability for attackers to send responses that lead to null pointer dereferencing. Due to lack of consistency checks,...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from incorrect descriptor completion in the llistabortdesc function of the dmaengine module. This...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013734)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013734 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: Fix potential null-ptr-deref due to drmmmodeconfiginit drmmmodeconfiginit will call...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013613)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013613 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: mts64: fix possible null-ptr-defer in sndmts64interrupt I got a null-ptr-defer error report...