CVE-2026-2340

Samba CVE-2026-2340 affects the vfs_worm module. The issue arises from insufficient validation during rename operations, allowing an authenticated user with write access to a share to overwrite a WORM-protected file by renaming a newly created file over the existing protected file. Impact details...

UBUNTU-CVE-2026-2340

A flaw was found in Samba’s vfsworm module. The module is intended to provide write-once, read-many WORM protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share...

CLSA-2025-1765208529 vim: Fix of 2 CVEs

CVE-2025-53906: drop leading ../ on write of zipfiles, don't forcefully overwrite existing files - CVE-2025-29768: use glob '-' to protect filenames starting with '-'...

CLSA-2025-1755008582 dmidecode: Fix of CVE-2023-30630

CVE-2023-30630: do not let --dump-bin overwrite an existing file...

CLSA-2025-1755004236 dmidecode: Fix of CVE-2023-30630

CVE-2023-30630: do not let --dump-bin overwrite an existing file...

CVE-2024-8311

An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior to 17.3.2 which allows authenticated users to bypass variable overwrite protection via inclusion of a CI/CD template...

CVE-2024-8311 Improper Protection of Alternate Path in GitLab

An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior to 17.3.2 which allows authenticated users to bypass variable overwrite protection via inclusion of a CI/CD template...

CVE-2024-8311

CVE-2024-8311 affects GitLab Enterprise/Community Edition pipeline execution policies. The issue allows an authenticated user to bypass variable overwrite protections by including a CI/CD template in versions: GitLab EE 17.2 up to 17.2.5 (exclusive) and 17.3 up to 17.3.2 (exclusive). Root cause: ...

Microsoft Windows: MS Security Guide: Enable Structured Exception Handling Overwrite Protection

If this setting is enabled, SEHOP is enforced. If this setting is disabled or not configured, SEHOP is not enforced for 32-bit processes. C Microsoft Corporation 2015. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...

SUSE-SU-2015:0940-1 Security update for Xen

This update fixes the following security issues in Xen: CVE-2012-5510: Grant table version switch list corruption vulnerability XSA-26 CVE-2012-5511: Several HVM operations do not validate the range of their inputs XSA-27 CVE-2012-5513: XENMEMexchange may overwrite hypervisor memory XSA-29...

Microsoft Releases New Version of EMET Exploit Mitigation Toolkit

Mitigation has become the word of the moment at Microsoft, and the company on Thursday continued its recent flow of tools designed to lessen the effectiveness of certain attacks with the release of version 2.0 of its Enhanced Mitigation Experience Toolkit. The new version of the toolkit includes ...