Suricata security vulnerabilities

Suricata is a network IDS, IPS, and NSM engine developed by the Open Information Security Foundation. Versions of Suricata prior to 8.0.3 and 7.0.14 contained security vulnerabilities. These vulnerabilities were due to inefficient processing of xff, which could lead to significant performance...

Suricata security vulnerabilities

Suricata is a network IDS, IPS, and NSM engine developed by the Open Information Security Foundation. Versions of Suricata prior to 8.0.0 and 8.0.3 contained security vulnerabilities. These vulnerabilities were due to inefficient parsing of http1 headers, which could lead to performance degradati...

The allocate_structures function insufficiently checks bounds before arithmetic multiplication

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38321: smb: Log an error when closeallcacheddirs fails bsc1246328. CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd bsc1249256. CVE-2025-39890:...

TencentOS Server 3: python3.12 (TSSA-2026:0033)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0033 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Multi-Agent Collaborative Intrusion Detection for Low-Altitude Economy IoT: An LLM-Enhanced Agentic AI Framework

The rapid expansion of low-altitude economy Internet of Things LAE-IoT networks has created unprecedented security challenges due to dynamic three-dimensional mobility patterns, distributed autonomous operations, and severe resource constraints. Traditional intrusion detection systems designed fo...

OPENSUSE-SU-2026:20099-1 Security update for coredns

This update for coredns fixes the following issues: Changes in coredns: - fix CVE-2025-68156 bsc1255345 - fix CVE-2025-68161 bsc1256411 - Update to version 1.14.0: core: Fix gosec G115 integer overflow warnings core: Add regex length limit plugin/azure: Fix slice init length plugin/errors: Add...

CVE-2026-24354

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Shortcodes & Performance penci-shortcodes allows DOM-Based XSS.This issue affects Penci Shortcodes & Performance: from n/a through = 6.1...

PT-2026-4562

Name of the Vulnerable Software and Affected Versions ProxyBridge version 3.1.0 Description ProxyBridge version 3.1.0 contained a critical Remote Code Execution RCE vulnerability that has been addressed in version 3.1.0. The initial security advisory submitted to GitHub was rejected because it...

Northwest Performance Managed Switch Port Mapping Tool security vulnerabilities

Northwest Performance Managed Switch Port Mapping Tool is a network discovery and management software developed by the American company Northwest Performance. Version 2.85.2 of Northwest Performance Managed Switch Port Mapping Tool contains a security vulnerability. This vulnerability stems from...

CVE-2026-24354

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Shortcodes & Performance penci-shortcodes allows DOM-Based XSS.This issue affects Penci Shortcodes & Performance: from n/a through = 6.1...

CVE-2026-24354

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Shortcodes & Performance penci-shortcodes allows DOM-Based XSS.This issue affects Penci Shortcodes & Performance: from n/a through = 6.1...

CVE-2026-24354

CVE-2026-24354: Penci Shortcodes & Performance (penci-shortcodes) is affected by a DOM-Based XSS in input during web page generation. The issue is authenticated (Contributor+) and affects versions up to and including 6.1. Based on connected documents, a patch is available (Patch Status: Patched);...

SUSE-SU-2026:20125-1 Security update for python313

This update for python313 fixes the following issues: - Update to 3.13.11: - Security - CVE-2025-12084: cpython: Fixed quadratic algorithm in xml.dom.minidom leading to denial of service bsc1254997 - CVE-2025-13836: Fixed default Content-Lenght read amount from HTTP response bsc1254400 -...

Security update for exiv2-0_26

This update for exiv2-026 fixes the following issues: Add reference for previously fixed issue: CVE-2025-55304: Fixed quadratic performance algorithm in the ICC profile parsing code of JpegBase::readMetadata bsc1248963. Patch Instructions: To install this SUSE update use the SUSE recommended...

Azure Linux 3.0 Security Update: pcp (CVE-2024-45769)

The version of pcp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45769 advisory. - A vulnerability was found in Performance Co-Pilot PCP. This flaw allows an attacker to send specially crafted...

CAFE-GB: Scalable and Stable Feature Selection for Malware Detection Via Chunk-Wise Aggregated Gradient Boosting

High-dimensional malware datasets often exhibit feature redundancy, instability, and scalability limitations, which hinder the effectiveness and interpretability of machine learning-based malware detection systems. Although feature selection is commonly employed to mitigate these issues, many...

PT-2026-4250

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PenciDesign Penci Shortcodes & Performance penci-shortcodes allows DOM-Based XSS.This issue affects Penci Shortcodes & Performance: from n/a through = 6.1...

Azure Linux 3.0 Security Update: kernel (CVE-2025-37936)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37936 advisory. - In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: KVM: Mask PEBSENABLE...

Azure Linux 3.0 Security Update: pcp (CVE-2024-45770)

The version of pcp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45770 advisory. - A vulnerability was found in Performance Co-Pilot PCP. This flaw can only be exploited if an attacker has acces...