21925 matches found
CVE-2026-31469 virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false
In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix UAF on dstops when IFFXMITDSTRELEASE is cleared and napitx is false A UAF issue occurs when the virtionet driver is configured with napitx=N and the device's IFFXMITDSTRELEASE flag is cleared e.g., during the...
CVE-2026-5750
An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...
CVE-2026-5750 Insecure direct object reference (IDOR) vulnerability in Fullstep
An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...
CVE-2026-5750
CVE-2026-5750 describes an IDOR vulnerability in the Fullstep V5 registration flow. Authenticated users can access data belonging to other registered users via vulnerable endpoints, notably “/api/suppliers/v1/suppliers//false” (listing user information) and “/#/supplier-registration/supplier-regi...
CVE-2025-6016
creationtimestamp| type| source ---|---|--- 2026-04-22 12:50:07+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mk3jwdl7pl2u 2026-04-24 07:57:51+00:00| seen| https://ccb.belgium.be/advisories/warning-11-new-vulnerabilities-gitlab-ce-and-ee-editions-patch-immediately...
kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg
A flaw was found in the Linux kernel. A local unprivileged process can exploit an unsafe requeue path in the rxrpcrecvmsg function by using AFRXRPC sockets with MSGDONTWAIT and MSGPEEK flags. This improper handling of the receive message queue can lead to memory corruption, such as Use-After-Free...
MINI-FXVM-H6RF-J2H6
Bulletin has no description...
kernel: smc: Fix use-after-free in __pnet_find_base_ndev()
In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in pnetfindbasendev. syzbot reported use-after-free of netdevice in pnetfindbasendev, which was called during connect. 0 smcpnetfindismresource fetches skdstgetsk-dev and passes down to pnetfindbasendev,...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013567)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013567 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: Fix potential resource leaks nfcgetdevice take reference for the device, add missing...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper handling of error paths. This vulnerability may lead to an imbalance in reference counts...
AlmaLinux 9 : kernel (ALSA-2026:8921)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:8921 advisory. kernel: net/sched: Make cakeenqueue return NETXMITCN when past bufferlimit CVE-2025-39766 kernel: scsi: qla2xxx: Fix improper freeing of purex item...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013657)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013657 advisory. In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix reference count leak in snruncoremmiomap pcigetdevice will increase th...
UBUNTU-CVE-2026-40250
OpenEXR provides the specification and reference implementation of the...
UBUNTU-CVE-2026-39886
OpenEXR provides the specification and reference implementation of the...
PT-2026-34607
Name of the Vulnerable Software and Affected Versions OpenMcdf affected versions not specified Description OpenMcdf fails to detect cycles in the directory entry red-black tree of a Compound File Binary CFB document. A crafted CFB file containing a cycle in the LeftSiblingID or RightSiblingID cha...
PT-2026-34333
An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013795)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013795 advisory. In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013500)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013500 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: always report error in runonedelayedref Currently we have a btrfsdebug for runonedelayedre...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013549)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013549 advisory. In the Linux kernel, the following vulnerability has been resolved: hwrng: amd - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comme...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013825)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013825 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: ti: dra7-atl: Fix reference leak in ofdra7atlclkprobe pmruntimegetsync will increment pm usa...