MGASA-2026-0016 Updated avahi packages fix security vulnerabilities

Avahi has a reachable assertion in avahiwideareascancache. CVE-2025-68276 Avahi has a reachable assertion in lookupmulticastcallback. CVE-2025-68468 Avahi has a reachable assertion in lookupstart. CVE-2025-68471...

cmake 安全漏洞

cmake is a cross-platform software building tool from CMake open source. A security vulnerability exists in cmake version 4.1.20250725-gb5cce23, which stems from reachable assertions...

Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial of service vulnerability that can be exploited by an attacker to cause reachable assertions...

Open5GS has an unspecified vulnerability (CNVD-2025-18577)

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS has a security vulnerability that can be exploited by an attacker to cause reachable assertions...

Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS has a security vulnerability that can be exploited by an attacker to cause reachable assertions...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek Chipsets, which stems from the Bluetooth FW module containing an incorrect exception handling issue that could lead to reachable assertions...

Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a denial of service vulnerability that stems from the inclusion of reachable assertions in the UE Context Release Request packet handler. An attacker...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from incorrect exception handling in the wlan STA driver module, where reachable assertions may exist...

CVE-2024-24426

Reachable assertions in the NGAPFINDPROTOCOLIEBYID function of OpenAirInterface Magma v1.8.0 and OAI EPC Federation v1.2.0 allow attackers to cause a Denial of Service DoS via a crafted NGAP packet...

The vulnerability of the VPN protocol library using “IPsec” in libreswan, related to uncontrolled, reachable assertions, allows attackers to cause service failures.

The vulnerability of the VPN protocol using “IPsec” with libreswan is related to a claim that packets processed via IKEv1 can be processed without specifying the esp field. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

USN-6487-1 avahi vulnerabilities

Evgeny Vereshchagin discovered that Avahi contained several reachable assertions, which could lead to intentional assertion failures when specially crafted user input was given. An attacker could possibly use this issue to cause a denial of service. CVE-2023-38469, CVE-2023-38470, CVE-2023-38471,...

Freedesktop Poppler 安全漏洞

Freedesktop Poppler is a Freedesktop community C++ class library for generating PDFs, which is inherited from Xpdf PDF reader. A security vulnerability exists in Freedesktop Poppler version 22.07.0, which stems from the presence of reachable assertions in Object::getString...

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from a...

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from a...

Qualcomm 芯片安全漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from a...

Zephyr 安全漏洞

Zephyr an extensible real-time operating system RTOS. a denial of service vulnerability exists in Zephyr version v2.5.0 and later, which stems from the use of repeated LLFEATUREREQ reachable assertions. An attacker could exploit this vulnerability to cause a denial of service attack...