CVE-1999-0125

Buffer overflow in SGI IRIX mailx program...

CVE-1999-0260

The jj CGI program allows command execution via shell metacharacters...

CVE-2019-12137

Typora 0.9.9.24.6 on macOS allows directory traversal, for execution of arbitrary programs, via a file:/// or ../ substring in a shared note...

CVE-2024-2748

A Cross Site Request Forgery vulnerability was identified in GitHub Enterprise Server that allowed an attacker to execute unauthorized actions on behalf of an unsuspecting user. A mitigating factor is that user interaction is required. This vulnerability affected GitHub Enterprise Server 3.12.0 a...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000494)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000494 advisory. A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and...

Cyber Threat Exposure Management: A 5-Step Guide

Attackers don’t care about your long list of CVEs. They look for the path of least resistance to your most valuable assets. So, why are we still managing security from a defender’s checklist instead of an attacker’s playbook? A modern security program needs to see the entire attack surface throug...

What Is Security Controls Validation? An Essential Guide

You wouldn’t wait for a real fire to find out if your smoke detectors work or if your team knows the evacuation route. You run fire drills. So why would you wait for a real cyberattack to test your security defenses? This is the simple, powerful idea behind security controls validation. It’s the...

ALSA-2026:0002 Moderate: tar security update

The GNU tar program can save multiple files in an archive and restore files from an archive. Security Fixes: tar: Tar path traversal CVE-2025-45582 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page...

SUSE CVE-2022-50798

This candidate is a duplicate of CVE-2017-11359...

PT-2026-26576

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between the perf event overflow function and perf remove from context. The issue occurs because perf event overflow may run with only preemption disabled instead ...

PT-2026-26144

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

PT-2026-27649

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to ethernet functionality within the mtk eth soc module. Specifically, the issue concerns the handling of the eBPF program pointer during the mt...

PT-2026-8119

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc5 Description The netdevsim driver lacks a protection mechanism for operations on the bpf bound progs list. Concurrent operations, specifically nsim bpf create prog performing list add tail and nsim bpf...

PT-2026-4494

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the bpf prog test run xdp function within the Linux kernel. The issue stems from an error handling path introduced by commit 1c1949982524, which failed t...

SUSE CVE-2022-50855

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992758)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992758 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream This commit address...

Linux Distros Unpatched Vulnerability : CVE-2022-50855

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the...

DEBIAN-CVE-2022-50798

SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing...

CVE-2022-50798

Rejected reason: This candidate is a duplicate of CVE-2017-11359...

EUVD-2022-55843

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...