Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : rsync vulnerabilities (USN-8283-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8283-1 advisory. Calum Hutton discovered that rsync contained a heap-based out-of-bounds read when handling file transfers. A remote...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.17.54 bug fix and security update

Red Hat OpenShift Container Platform release 4.17.54 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.17. Red Hat Product Security has rated this update as having a...

PYSEC-2026-142

urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion 1 during the second HTTPResponse.readamt=N call when the response was decompressed using the official Brotli library or 2 when...

Microsoft Edge (Chromium) < 146.0.3856.97 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 146.0.3856.97. It is, therefore, affected by multiple vulnerabilities as referenced in the April 2, 2026 advisory. - Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to...

CVE-2026-4147

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

Huawei EulerOS: Security Advisory for rsync (EulerOS-SA-2026-1546)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-20429

In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5535...

CVE-2026-28419 Vim has Heap-based Buffer Underflow in Emacs tags parsing

Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file where a delimiter appears at the start of a line, Vim attempts to read memory immediately preceding...

PT-2026-6698

Name of the Vulnerable Software and Affected Versions HDC module affected versions not specified Description An address read issue exists in the HDC module. Successful exploitation could impact system availability and confidentiality. Recommendations At the moment, there is no information about a...

CVE-2025-71195 dmaengine: xilinx: xdma: Fix regmap max_register

In the Linux kernel, the following vulnerability has been resolved: dmaengine: xilinx: xdma: Fix regmap maxregister The maxregister field is assigned the size of the register memory region instead of the offset of the last register. The result is that reading from the regmap via debugfs can cause...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003467)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003467 advisory. An issue was discovered in net/rds/afrds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rdsrecvtracklatency. Tenable has...

iccDEV 安全漏洞

iccDEV is a color configuration codebase open-sourced by the International Color Consortium ICC. A security vulnerability exists in iccDEV version 2.3.1.1 and earlier, which stems from an out-of-bounds read, heap-based buffer overflow, and improper null termination in the CIccTagText::Read functi...

PT-2025-44636

Name of the Vulnerable Software and Affected Versions Kitware VTK Visualization Toolkit versions through 9.5.0 Description The software contains a heap buffer overflow issue within the vtkGLTFDocumentLoader. This occurs when processing specifically designed GLTF files, where the copy constructor ...

CVE-2025-55090

In NetX Duo (Eclipse ThreadX) before version 6.4.4, there is a potential out-of-bounds read in the IPv4 packet path. Specifically, the _nx_ipv4_packet_receive() function can read outside the IP payload when an Ethernet frame is received that contains less than 4 bytes of IP data. This vulnerabili...

EUVD-2019-2356

Malware in sbrugna...

EUVD-2017-9198

Malware in sbrugna...

EUVD-2017-2624

Malware in sbrugna...

EUVD-2018-4976

Malware in sbrugna...

EUVD-2017-1540

Malware in sbrugna...

EUVD-2016-0790

Malware in sbrugna...