45 matches found
Astra Linux – Vulnerability in Linux 5.15
A flaw in the NULL Pointer Dereference mechanism within the Linux kernel’s NTFS3 driver function attrpunchhole was identified. A local user could exploit this flaw to crash the system...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ext4: Fix for out-of-bounds punch offset Punching a hole with a start offset that exceeds maxend is not allowed. This will result in a negative length value in the truncateinodepartialfolio function when truncating the page cache...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010717)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010717 advisory. A flaw NULL Pointer Dereference in the Linux kernel NTFS3 driver function attrpunchhole was found. A local user could use this flaw to crash the system. Tenable has...
CVE-2026-30784
...
CVE-2026-30784
...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002350)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002350 advisory. mm/shmem.c in the Linux kernel through 3.15.1 does not properly implement the interaction between range notification and hole punching, which allows local users to...
WordPress plugin All in One Time Clock Lite 安全漏洞
WordPress All in One Time Clock Lite plugin is a plugin for tracking employee attendance and supports employee/volunteer/contractor punch record management. The WordPress All in One Time Clock Lite plugin suffers from an insecure direct object reference vulnerability that stems from the applicati...
EUVD-2025-20035
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-4842
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw NULL Pointer Dereference in the Linux kernel NTFS3 driver function attrpunchhole was found. A local user could use this flaw to crash the system...
CVE-2025-38221
In the Linux kernel, the following vulnerability has been resolved: ext4: fix out of bounds punch offset Punching a hole with a start offset that exceeds maxend is not permitted and will result in a negative length in the truncateinodepartialfolio function while truncating the page cache,...
CVE-2025-38221 ext4: fix out of bounds punch offset
In the Linux kernel, the following vulnerability has been resolved: ext4: fix out of bounds punch offset Punching a hole with a start offset that exceeds maxend is not permitted and will result in a negative length in the truncateinodepartialfolio function while truncating the page cache,...
CVE-2025-38221 ext4: fix out of bounds punch offset
In the Linux kernel, the following vulnerability has been resolved: ext4: fix out of bounds punch offset Punching a hole with a start offset that exceeds maxend is not permitted and will result in a negative length in the truncateinodepartialfolio function while truncating the page cache,...
PT-2025-27996 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: The issue is related to the ext4 file system in the Linux kernel. It occurs when punching a hole with a start offset that exceeds max end, resulting in a negative length in the...
CVE-2024-37449
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemePunch OHG Slider Revolution.This issue affects Slider Revolution: from n/a through 6.7.13...
CVE-2024-34444
Missing Authorization vulnerability in ThemePunch OHG Slider Revolution.This issue affects Slider Revolution: from n/a before 6.7.0...
VulnCheck KEV: CVE-2024-34444
Missing Authorization vulnerability in ThemePunch OHG Slider Revolution.This issue affects Slider Revolution: from n/a before 6.7.0...
CVE-2023-52759
CVE-2023-52759 is rejected/withdrawn and does not represent an active vulnerability entry.
DEBIAN-CVE-2021-47114
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix data corruption by fallocate When fallocate punches holes out of inode size, if original isize is in the middle of last cluster, then the part from isize to the end of the cluster will be zeroed with buffer write, at...
CVE-2023-47784
Unrestricted Upload of File with Dangerous Type vulnerability in ThemePunch OHG Slider Revolution.This issue affects Slider Revolution: from n/a through 6.6.15...
punch-drinks.com Cross Site Scripting vulnerability OBB-3764128
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...