9 matches found
CVE-2026-31710
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifsmountgettcon with SMB1 UNIX mounts, @cifssb-mntcifsflags needs to be read or updated only after calling resetcifsunixcaps, otherwise it might end up with missing...
CVE-2026-31432
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...
EUVD-2005-1722
Malware in sbrugna...
AZL-61700 CVE-2025-22070 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: fs/9p: fix NULL pointer dereference on mkdir When a 9p tree was mounted with option 'posixacl', parent directory had a default ACL set for its subdirectories, e.g.: setfacl -m default:group:simpsons:rwx parentdir then creating a...
GHSA-F5FW-25GW-5M92 Apache Hadoop: Temporary File Local Information Disclosure
Apache Hadoop’s RunJar.run does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. This is because, on unix-like systems, the system temporary directory is shared between all local user...
CVE-2024-23454 Apache Hadoop: Temporary File Local Information Disclosure
Apache Hadoop’s RunJar.run does not set permissions for temporary directory by default. If sensitive data will be present in this file, all the other local users may be able to view the content. This is because, on unix-like systems, the system temporary directory is shared between all local user...
Information Disclosure
java-merge-sort is vulnerable to information disclosure. The vulnerability exists because the File.createTempFile in the provide function of StdTempFileProvider.java does not properly set the correct POSIX permissions, allowing an attacker to gain sensitive information through the temporary file...
Synology Universal Search Highlight Preview License Vulnerability
Synology Universal Search is a software from Synology for searching applications and files in Synology NAS.Highlight Preview is one of the highlighted components. A security vulnerability exists in Highlight Preview in Synology Universal Search versions prior to 1.0.5-0135. A remote attacker can...
CVE-2005-1720
AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permissions for that ACL...