SUSE-SU-2025:03480-1 Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-1507005 fixes several issues. The following security issues were fixed: - CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315. - CVE-2025-38089: sunrpc: handle SVCGARBAGE during svc auth processing as auth error bsc1245509...

CVE-2024-38533

ZKsync Era is a layer 2 rollup that uses zero-knowledge proofs to scale Ethereum. There is possible invalid stack access due to the addresses used to access the stack not properly being converted to cells. This issue has been patched in version 1.5.0...

Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2024-35949: btrfs: make sure that WRITTEN is s...

UBUNTU-CVE-2024-45405

gix-path is a crate of the gitoxide project an implementation of git written in Rust dealing paths and their conversions. Prior to version 0.10.11, gix-path runs git to find the path of a configuration file associated with the git installation, but improperly resolves paths containing unusual or...

CVE-2022-28685

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 2020 SP2 Patch 04201.2111.1802.0000. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

AVEVA Edge 代码问题漏洞

AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...

AVEVA Edge 代码问题漏洞

AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...

PT-2022-4344 · Aveva · Aveva Edge

Name of the Vulnerable Software and Affected Versions: AVEVA Edge 2020 SP2 Patch 04201.2111.1802.0000 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious...

EMC Documentum D2 Authentication Bypass Vulnerability

EMC Documentum D2 is an enterprise-class content management system from EMC. The system manages the entire information lifecycle through creation, modification, tracking and other functions, and it includes a number of extensions, such as Documentum Web Publisher Web Content Management, Documentu...

ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability

ZDI-10-051: Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-051 April 5, 2010 -- CVE ID: CVE-2010-0094 -- Affected Vendors: Sun Microsystems -- Affected Products: Sun Microsystems Java Runtime --...