CVE-2026-24813

CVE-2026-24813 describes a NULL pointer dereference in abcz316/SKRoot-linuxKernelRoot, tied to the cJSON.Cpp component within the testRoot/jni/utils modules. The issue affects SKRoot-linuxKernelRoot. Reported impact indicates high potential for availability loss, with no reported confidentiality ...

CVE-2026-24813

NULL Pointer Dereference vulnerability in abcz316 SKRoot-linuxKernelRoot testRoot/jni/utils modules. This vulnerability is associated with program files cJSON.Cpp. This issue affects SKRoot-linuxKernelRoot...

CVE-2026-24813 A null pointer dereference in abcz316/SKRoot-linuxKernelRoot

NULL Pointer Dereference vulnerability in abcz316 SKRoot-linuxKernelRoot testRoot/jni/utils modules. This vulnerability is associated with program files cJSON.Cpp. This issue affects SKRoot-linuxKernelRoot...

CVE-2026-24805

NULL Pointer Dereference vulnerability in visualfc liteide liteidex/src/3rdparty/libvterm/src modules. This vulnerability is associated with program files screen.C, state.C, vterm.C. This issue affects liteide: before x38.4...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005198)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005198 advisory. In the Linux kernel, the following vulnerability has been resolved: smb: client: Add check for nextbuffer in receiveencryptedstandard Add check for the return value ...

OpenSSL 3.4.0 < 3.4.4 Multiple Vulnerabilities

The version of OpenSSL installed on the remote host is prior to 3.4.4. It is, therefore, affected by multiple vulnerabilities as referenced in the 3.4.4 advisory. - Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher sui...

OpenSSL security vulnerabilities

OpenSSL is an open-source encryption library developed by the OpenSSL team that enables secure implementation of Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. This product supports various encryption algorithms, including symmetric ciphers, hash algorithms, and secure...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005088)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005088 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: During vport delete send async logout explicitly During vport delete, it is observ...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005132)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005132 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd: Guard against bad data for ATIF ACPI method If a BIOS provides bad data in response to a...

LiteIDE X security vulnerabilities

LiteIDE X is a Go language code development tool developed by Seven Leaf individuals. Versions of LiteIDE X prior to 38.4 contained security vulnerabilities. These vulnerabilities were caused by null pointer dereferencing in the program files screen.C, state.C, and vterm.C, which could lead to...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005172)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005172 advisory. In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix regression with module command in stacktracefilter When executing the following...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005021)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005021 advisory. In the Linux kernel, the following vulnerability has been resolved: media: lgdt3306a: Add a check against null-pointer-def The driver should check whether the client...

Null pointer dereference found in openldap

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in bermemallocx function...

PT-2026-4901

Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of Uninitialized Resource, Out-of-bounds Read, Reachable Assertion vulnerability in cadaver turso3d.This issue affects...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : harfbuzz (SUSE-SU-2026:0287-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0287-1 advisory. - CVE-2026-22693: Fixed a NULL pointer dereference in SubtableUnicodesCache::create bsc1256459. Tenable h...

CVE-2026-24410

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior and Null Pointer Deference in CIccProfileXml::ParseBasic. This occurs when user-controllable input is unsafely incorporated into I...

UBUNTU-CVE-2026-1416

A security flaw has been discovered in GPAC up to 2.4.0. Affected by this vulnerability is the function DumpMovieInfo of the file applications/mp4box/filedump.c. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released...

CVE-2026-1417 GPAC filedump.c dump_isom_rtp null pointer dereference

A weakness has been identified in GPAC up to 2.4.0. Affected by this issue is the function dumpisomrtp of the file applications/mp4box/filedump.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been made available to the public and coul...

DEBIAN-CVE-2026-1415

A vulnerability was identified in GPAC up to 2.4.0. Affected is the function gfmediaexportwebvttmetadata of the file src/mediatools/mediaexport.c. The manipulation of the argument Name leads to null pointer dereference. The attack must be carried out locally. The exploit is publicly available and...

CVE-2026-1416 GPAC filedump.c DumpMovieInfo null pointer dereference

A security flaw has been discovered in GPAC up to 2.4.0. Affected by this vulnerability is the function DumpMovieInfo of the file applications/mp4box/filedump.c. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released...