CVE-2026-6783

Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

CVE-2026-6783

Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

RLSA-2026:8888 Important: openexr security update

OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fixes:...

Scaling Your Media Workloads: Introducing Akamai’s New 8-Card VPU Plan

...

Exploit for Cross-site Scripting in Bdtask Multi_Store_Inventory_Management_System

CVE-2024-2997 Scanner !Versionhttps://img.shields.io/badge...

JLSEC-2026-163

An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the Certificate Exact Assertion processing, resulting in denial of service schemainit.c serialNumberAndIssuerCheck...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011050)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011050 advisory. In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: Add a check for oversized packets Occasionnaly we may get oversized packets from t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013136)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013136 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix possible addldescptr out-of-bounds accesses Sanitize possible addldescptr...

oxia 竞争条件问题漏洞

Oxia is a distributed metadata storage and coordination system developed by Oxia. Versions of Oxia prior to 0.16.2 had a race condition vulnerability. This vulnerability stemmed from a race between session heartbeat processing and session termination, which could lead to server crashes due to...

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007053)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007053 advisory. In the Linux kernel, the following vulnerability has been resolved: jbd2: prevent softlockup in jbd2logdocheckpoint Both jbd2logdocheckpoint and...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013076)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013076 advisory. In the Linux kernel, the following vulnerability has been resolved: be2net: pass wrbparams in case of OS2BMC beinsertvlaninpkt is called with the wrbparams argument...

CVE-2026-40706

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

Oracle多款产品 安全漏洞

Oracle Java SE, among others, are products of Oracle Corporation in the United States. Oracle Java SE is used for developing and deploying Java applications for desktops, servers, embedded devices, and real-time environments. Oracle GraalVM for JDK is a high-performance, multi-language runtime an...

AlmaLinux 10 : libarchive (ALSA-2026:8492)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:8492 advisory. libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing CVE-2026-4424 Tenable has extracted the preceding description...

PT-2026-34187

Oxia is a metadata store and coordination system. Prior to 0.16.2, a race condition between session heartbeat processing and session closure can cause the server to panic with send on closed channel. The heartbeat method uses a blocking channel send while holding a mutex, and under specific timin...

nest 安全漏洞

Nest is a Node.js framework developed by NestJS, designed for building efficient, scalable, and enterprise-level server-side applications using TypeScript/JavaScript. Versions of Nest prior to 11.1.19 contained a security vulnerability. This vulnerability stemmed from the recursive invocation of...

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011380)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011380 advisory. In the Linux kernel, the following vulnerability has been resolved: be2net: pass wrbparams in case of OS2BMC beinsertvlaninpkt is called with the wrbparams argument...

EUVD-2026-24467

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...

Security update for gdk-pixbuf (important)

openSUSE security update: security update for gdk-pixbuf ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20558-1 Rating: important References: bsc1261210 Cross-References: CVE-2026-5201 CVSS scores: CVE-2026-5201 SUSE : 7.5...

MiracleLinux 8 : libarchive-3.3.3-7.el8_10 (AXSA:2026-475:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-475:03 advisory. libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing CVE-2026-4424 libarchive: libarchive: Arbitrary...