48 matches found
CVE-2026-24031
Dovecot SQL based authentication can be bypassed when authusernamechars is cleared by admin. This vulnerability allows bypassing authentication for any user and user enumeration. Do not clear authusernamechars. If this is not possible, install latest fixed version. No publicly available exploits...
openSUSE 15 Security Update : libxslt (SUSE-SU-2025:03595-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:03595-1 advisory. - last fix caused a regression, patch was temporary disabled bsc1250553 Tenable has extracted the preceding description block directly from the SUSE securit...
EUVD-2008-0158
Malware in sbrugna...
EUVD-2017-16491
Malware in sbrugna...
EUVD-2019-14628
Malware in sbrugna...
EUVD-2020-6468
Malware in sbrugna...
EUVD-2024-52172
Malicious code in bioql PyPI...
EUVD-2023-57918
Malicious code in bioql PyPI...
[SECURITY] [DLA 4262-2] libcommons-lang-java regression update
Debian LTS Advisory DLA-4262-2 [email protected] https://www.debian.org/lts/security/ Daniel Leidert September 30, 2025 https://wiki.debian.org/LTS Package : libcommons-lang-java Version : 2.6-9+deb11u2 CVE ID : CVE-2025-48924 A regression has been discovered in the latest release...
DSA-5923-2 net-tools - regression update
Bulletin has no description...
USN-7343-2: Jinja2 regression
USN-7343-1 fixed vulnerabilities in Jinja2. The update introduced a regression when attempting to import Jinja2 on Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Rafal Krupinski discovered that Jinja2 did not...
CVE-2022-49140
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
SUSE CVE-2024-39884
A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PH...
rust-toolset:rhel8 bug fix and enhancement update
An update is available for rust, module.rust. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rust Toolset provides the Rust programming language compiler rustc,...
DLA-3988-2 jinja2 - regression update
Bulletin has no description...
CVE-2024-40992
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix responder length checking for UD request packets According to the IBA specification: If a UD request packet is detected with an invalid length, the request shall be an invalid request and it shall be silently droppe...
CVE-2024-40992
CVE-2024-40992 concerns the Linux kernel RDMA/rxe stack. The root cause was an incorrect resilience check for UD QP receive data: a deferred responder length check in the function copy_data (via commit 689c5421bfe0) could trigger an oversized UD packet to fail with -EINVAL, causing send_data_in t...
PT-2024-5594 · Apache +6 · Apache Http Server +6
Name of the Vulnerable Software and Affected Versions: Apache HTTP Server version 2.4.60 Description: A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances...
USN-6728-2 squid regression
USN-6728-1 fixed vulnerabilities in Squid. The fix for CVE-2023-5824 caused Squid to crash in certain environments on Ubuntu 20.04 LTS. The problematic fix has been reverted pending further investigation. We apologize for the inconvenience. Original advisory details: Joshua Rogers discovered that...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a regression caused by a conversion to netfs when the server sets the maximum write size to an unexpected...