CVE-2025-38206

In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayedfree The double free could happen in the following path. exfatcreateupcasetable exfatcreateupcasetable : return error exfatfreeupcasetable : free -volutbl exfatloaddefaultupcasetable : return erro...

CLSA-2025-1746479711 kernel-uek: Fix of 218 CVEs

sctp: sysctl: authenable: avoid using current-nsproxy - sctp: sysctl: cookiehmacalg: avoid using current-nsproxy CVE-2025-21640 - bpf: Use preemptcount directly in bpfsendsignalcommon - Revert "sctp: sysctl: cookiehmacalg: avoid using current-nsproxy" - jfs: fix slab-out-of-bounds read in eaget -...

Updated perl-Email-MIME packages fix security vulnerabilities

An excessive memory use issue CWE-770 exists in Email-MIME, before version 1.954, which can cause denial of service when parsing multipart MIME messages. The patch set from 2020 and 2024 limits excessive depth and the total number of parts. CVE-2024-4140...

CVE-2024-4140

An excessive memory use issue CWE-770 exists in Email-MIME, before version 1.954, which can cause denial of service when parsing multipart MIME messages. The patch set from 2020 and 2024 limits excessive depth and the total number of parts...

CVE-2024-4140

An excessive memory use issue CWE-770 exists in Email-MIME, before version 1.954, which can cause denial of service when parsing multipart MIME messages. The patch set from 2020 and 2024 limits excessive depth and the total number of parts...

CVE-2024-4140

The CVE-2024-4140 entry concerns an excessive memory use (CWE-770) in Email-MIME before version 1.954, which can cause DoS during parsing of multipart MIME messages. The connected Astra Linux bulletin confirms the same issue and notes that patches from 2020 and 2024 limit parsing depth and the to...

CVE-2024-4140

An excessive memory use issue CWE-770 exists in Email-MIME, before version 1.954, which can cause denial of service when parsing multipart MIME messages. The patch set from 2020 and 2024 limits excessive depth and the total number of parts...

xmlrpc-c security update

1.51.0-8 - Address some Coverity issues in the patch set 1.51.0-7 - lib: Prevent more integer overflows CVE-2022-22822 to CVE-2022-22827 2058567, 2058576, 2058582, 2058589, 2058595, 2058602 - Prevent integer overflow on mgroupSize in doProlog CVE-2021-46143 2058560...

CVE-2021-3655

A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory...

PT-2024-11114 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the memory control and slab management in the Linux kernel. Specifically, it involves the use of obj cgroup APIs to charge kmem pages. The problem arises when...

Code injection

Cygwin Git is a patch set for the git command line tool for the cygwin environment. A specially crafted repository that contains symbolic links as well as files with backslash characters in the file name may cause just-checked out code to be executed while checking out a repository using Git on...

CVE-2021-27097

The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT...

CVE-2016-9572

A NULL pointer dereference flaw was found in the way openjpeg 2.1.2 decoded certain input images. Due to a logic error in the code responsible for decoding the input image, an application using openjpeg to process image data could crash when processing a crafted image...

CVE-2017-1000379

The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected...

Solaris 10 (sparc) : 151672-03 (deprecated)

SunVTS 7.0: Patch Set 19 consolidation patch. Date this patch was last updated by Sun : May/14/15 This plugin has been deprecated and either replaced with individual 151672 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@...

Solaris 10 (x86) : 151266-03 (deprecated)

SunVTS 7.0x86: Patch Set 18 consolidation. Date this patch was last updated by Sun : Aug/15/14 This plugin has been deprecated and either replaced with individual 151266 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@...

Solaris 10 (sparc) : 148135-01 (deprecated)

SunVTS 7.0: Patch Set 14 consolidation pat. Date this patch was last updated by Sun : Apr/30/12 This plugin has been deprecated and either replaced with individual 148135 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@...

Solaris 10 (sparc) : 147446-01 (deprecated)

SunVTS 7.0: Patch Set 12. Date this patch was last updated by Sun : Sep/22/11 This plugin has been deprecated and either replaced with individual 147446 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2018/03/12...

mingw32-libxml2 security update

2.7.6-6 - Synchronize patch-set with mainline-version. - Bump version to 5, 6. Related: rhbz891477 2.7.6-4 - Change release number to 4. - Added patch libxml2-Fix-an-off-by-one-pointer-access.patch - Added patch libxml2-Fix-a-segfault-on-XSD-validation-on-pattern-error.patch - Added patch...

CVSTrac Detection

This host is running CVSTrac, a Web-Based Bug And Patch-Set Tracking System For CVS, Subversion and GIT. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...