35 matches found
SUSE CVE-2026-31482
In the Linux kernel, the following vulnerability has been resolved: s390/entry: Scrub r12 register on kernel entry Before commit f33f2d4c7c80 "s390/bp: remove TIFISOLATEBP", all entry handlers loaded r12 with the current task pointer lg %r12,LCCURRENT for use by the BPENTER/BPEXIT macros. That...
CVE-2026-31482
A flaw was found in the Linux kernel, specifically within the s390 architecture's kernel entry process. Due to an incomplete update, a critical register r12 was not properly cleared when entering the kernel. This oversight could allow a local user to potentially access sensitive system informatio...
CVE-2026-31482
In the Linux kernel, the following vulnerability has been resolved: s390/entry: Scrub r12 register on kernel entry Before commit f33f2d4c7c80 "s390/bp: remove TIFISOLATEBP", all entry handlers loaded r12 with the current task pointer lg %r12,LCCURRENT for use by the BPENTER/BPEXIT macros. That...
CVE-2026-31482
The CVE-2026-31482 issue affects the Linux kernel on s390, where r12 was not scrubbed on kernel entry due to an incomplete update in the s390 entry path. The root cause is that, after removing TIF_ISOLATE_BP, the register-clearing sequence failed to include the xgr %r12,%r12 scrub, leaving the cu...
CVE-2026-31482 s390/entry: Scrub r12 register on kernel entry
In the Linux kernel, the following vulnerability has been resolved: s390/entry: Scrub r12 register on kernel entry Before commit f33f2d4c7c80 "s390/bp: remove TIFISOLATEBP", all entry handlers loaded r12 with the current task pointer lg %r12,LCCURRENT for use by the BPENTER/BPEXIT macros. That...
Linux Distros Unpatched Vulnerability : CVE-2026-31482
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/entry: Scrub r12 register on kernel entry Before commit f33f2d4c7c80 s390/bp: remove TIFISOLATEBP, all entry handlers loaded r12 with the current task...
PT-2026-34387
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the s390 architecture where the r12 register is not properly cleared during kernel entry. Previously, entry handlers loaded r12 with the current task pointer for use b...
CVE-2011-2171
Unspecified vulnerability in the dbugs package in Google Chrome OS before R12 0.12.433.38 Beta has unknown impact and attack vectors...
CVE-2025-1108
CVE-2025-1108 affects Janto, versions prior to r12. The issue is an insufficient data authenticity verification vulnerability that lets an unauthenticated attacker modify the content of password-reset emails by sending a crafted POST request that injects malicious content into the Xml parameter a...
CVE-2025-1107 Unverified password change vulnerability in Janto
Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to change another user's password without knowing their current password. To exploit the vulnerability, the attacker must create a specific POST request and send it to the endpoi...
Janto Ticketing 安全漏洞
Janto Ticketing is a ticketing software from Janto. A security vulnerability exists in versions of Janto Ticketing prior to r12, which stems from the presence of an unauthenticated password change feature that allows an unauthorized user to change another person's password...
CVE-2021-38827
Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is vulnerable to account takeover...
Xiongmai Camera XM-JPR2-LX 安全漏洞
Xiongmai Camera XM-JPR2-LX is a video surveillance device from China Xiongmai Technology Xiongmai Company. A security vulnerability exists in the Xiongmai Camera XM-JPR2-LX version V4.02.R12.A6420987.10002.147502.00000, which originates from the vulnerability of the device to account theft...
Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2019-1443)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-11878
The vulnerability CVE-2019-11878 affects XiongMai Besder IP20H1 devices (versions including V4.02.R12.00035520.12012.047500.00200). An attacker on the same local network can craft a message with a size field larger than 0x80000000, relating to an integer overflow or negative-number handling, whic...
CA Total Defense Suite reGenerateReports Stored Procedure SQL Injection
No description provided by source. $Id: catotaldefenseregeneratereports.rb 13810 2011-10-02 17:03:23Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...
CA Total Defense UNCWS exportReport SQL Injection
Added: 03/20/2012 OSVDB: 78930 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE3, fails to validate certain parameters. The exportReport...
CA Total Defense UNCWS exportReport SQL Injection
Added: 03/20/2012 OSVDB: 78930 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE3, fails to validate certain parameters. The exportReport...
CVE-2011-2170
Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes on the about:flags page, which has unspecified impact and local attack vectors...
CVE-2011-2169
Summary: CVE-2011-2169 affects Google Chrome OS prior to R12 0.12.433.38 Beta. Vulnerability: Local privilege escalation via a misused /var/lib/chromeos-aliases.conf file, where an attacker can place commands that are executed with elevated privileges by a local user. Root cause/impact: The descr...