PT-2026-40693

In the Linux kernel, the following vulnerability has been resolved: arm64: contpte: fix set access flags no-op check for SMMU/ATS faults contpte ptep set access flags compared the gathered ptep get value against the requested entry to detect no-ops. ptep get ORs AF/dirty from all sub-PTEs in the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005453)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005453 advisory. In the Linux kernel, the following vulnerability has been resolved: nubus: Partially revert proccreatesingledata conversion The conversion to proccreatesingledata...

UBUNTU-CVE-2025-71195

In the Linux kernel, the following vulnerability has been resolved: dmaengine: xilinx: xdma: Fix regmap maxregister The maxregister field is assigned the size of the register memory region instead of the offset of the last register. The result is that reading from the regmap via debugfs can cause...

fetchmail -- potential crash when authenticating to SMTP server

Matthias Andree reports: fetchmail's SMTP client, when configured to authenticate, is susceptible to a protocol violation where, when a trusted but malicious or malfunctioning SMTP server responds to an authentication request with a "334" code but without a following blank on the line, it will...

CVE-2023-53217

Summary (CVE-2023-53217): Linux kernel vulnerability affecting the nubus subsystem where reading files under /proc/bus/nubus could segfault. The issue stems from a regression introduced during the conversion of proc_create_single_data() usage, making single_open() calls with nubus_proc_rsrc_show(...

CVE-2024-56686

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

PT-2024-10635 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds read in the mv err cost function of mcomp.c due to a missing bounds check. This could lead to a denial ...

PT-2023-24326 · Allterco · Shelly 4Pm Pro

Name of the Vulnerable Software and Affected Versions: Shelly 4PM Pro four-channel smart switch version 0.11.0 Description: The issue allows an attacker to trigger a BLE out of bounds read fault condition, resulting in a device reload. This is due to an authentication bypass via an out-of-bounds...

CVE-2023-33383

Shelly 4PM Pro four-channel smart switch 0.11.0 allows an attacker to trigger a BLE out of bounds read fault condition that results in a device reload...

SUSE CVE-2019-5791

Inappropriate optimization in V8 in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

UBUNTU-CVE-2021-36411

An issue has been found in libde265 v1.0.8 due to incorrect access control. A SEGV caused by a READ memory access in function deriveboundaryStrength of deblock.cc has occurred. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service...

DEBIAN-CVE-2017-14862

An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...