14 matches found
RockyLinux 10 : java-25-openjdk (RLSA-2026:9693)
The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:9693 advisory. JDK: Enhance crypto algorithm support CVE-2026-22007 JDK: Improved Arena allocations CVE-2026-22008 JDK: Improve Kerberos credentialing CVE-2026-22013...
FreeBSD Security Advisory - FreeBSD-SA-26:11.amd64
FreeBSD Security Advisory - In order to apply a particular protection key to an address range, the kernel must update the corresponding page table entries. The subroutine which handled this failed to take into account the presence of 1GB largepage mappings created using the shmcreatelargepage3...
MiracleLinux 9 : python3.9-3.9.18-3.el9_4.3 (AXSA:2024-8598:04)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8598:04 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 Tenable has extracted the preceding description block directly from the MiracleLinux security...
Siemens SIMATIC Devices Loop with Unreachable Exit Condition (CVE-2024-43828)
In the Linux kernel, the following vulnerability has been resolved: ext4: fix infinite loop when replaying fastcommit When doing fastcommit replay an infinite loop may occur due to an uninitialized extentstatus struct. ext4extdetermineinserthole does not detect the replay and calls...
ALSA-2025:15471 Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: bpf: Don't use tnumrange on array range checking for poke descriptors CVE-2022-49985 kernel: posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 Fo...
Linux Distros Unpatched Vulnerability : CVE-2024-26911
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Fix allocrange error handling code Few users have observed display corruption whe...
CVE-2017-1000415
MatrixSSL version 3.7.2 has an incorrect UTCTime date range validation in its X.509 certificate validation process resulting in some certificates have their expiration beginning year extended delayed by 100 years...
PT-2024-24605 · Vyper · Vyper
Name of the Vulnerable Software and Affected Versions: Vyper versions 0.3.8 through 0.4.0b1 Description: The issue arises when looping over a range of the form rangestart, start + N, where start is a signed integer and can be negative. This causes the execution to always revert due to an incorrec...
PT-2024-21576
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the drm/buddy component of the Linux kernel, specifically with the alloc range function. This function was returning SUCCESS in certain corner cases when it...
SUSE CVE-2020-27769
In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c...
GHSA-VGVH-2PF4-JR2X TensorFlow vulnerable to segfault in `QuantizeDownAndShrinkRange`
Impact If QuantizeDownAndShrinkRange is given nonscalar inputs for inputmin or inputmax, it results in a segfault that can be used to trigger a denial of service attack. python import tensorflow as tf outtype = tf.quint8 input = tf.constant1, shape=3, dtype=tf.qint32 inputmin = tf.constant,...
CVE-2021-41202
TensorFlow is an open source platform for machine learning. In affected versions while calculating the size of the output within the tf.range kernel, there is a conditional statement of type int64 = condition ? int64 : double. Due to C++ implicit conversion rules, both branches of the condition...
UBUNTU-CVE-2018-9258
In Wireshark 2.4.0 to 2.4.5, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by preserving valid data sources...
PT-2012-1920 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle versions 1.9.x through 1.9.14 Description: The issue concerns the ip in range function in mnet/lib.php, which incorrectly handles data types. This allows remote attackers to bypass intended IP address restrictions by sending an XMLRPC...