SUSE CVE-2026-45916

In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

CVE-2026-45916

In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

UBUNTU-CVE-2026-45867

In the Linux kernel, the following vulnerability has been resolved: power: supply: act8945a: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

UBUNTU-CVE-2026-45916

In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

CVE-2026-45916

CVE-2026-45916 (Linux kernel, power: supply: sbs-battery) fixes a use-after-free in power_supply_changed() caused by a race between IRQ requests and power_supply handle registration when using devm_ variants. If the IRQ is requested before the power_supply handle is registered, an interrupt can f...

CVE-2026-45906

Summary: CVE-2026-45906 affects the Linux kernel’s power_supply handling. A race condition can occur when using devm_ variants for IRQ request and power_supply handle registration, causing an IRQ to fire after the power_supply handle has been freed but before IRQ unregistration, or before the han...

CVE-2026-45902

In the Linux kernel, CVE-2026-45902 involves a use-after-free race in the power_supply_changed() path for the bq256xx power supply. The issue arises when requesting an IRQ via devm_ before registering the power_supply handle, causing the handle to be freed/unregistered too late or too soon and po...

CVE-2026-45885

In CVE-2026-45885, a race in the Linux kernel’s CPCAP battery driver is fixed: requesting the IRQ with devm_ before or after registering the power_supply handle can lead to use-after-free in power_supply_changed(). The race occurs when the power_supply handle is freed/unregistered before the IRQ ...

PT-2026-43783

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the power supply changed function. The problem occurs because the devm variant for requesting an IRQ is used before the devm variant for allocating or...

EUVD-2024-45801

Malicious code in bioql PyPI...

CVE-2024-51738 Sunshine improperly enforces pairing protocol request order

Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 and earlier, Sunshine's pairing protocol implementation does not validate request order and is thereby vulnerable to a MITM attack, potentially allowing an unauthenticated attacker to pair a client by hijacking a legitimate pairi...

Cross site request forgery (csrf)

Request to LDAP is sent before user permissions are checked...

Discuz! 6. x/7. x a global variable Defense bypass lead to command execution-vulnerability warning-the black bar safety net

Vulnerability overview: Due to php5. 3. x version php. ini settings requestorder the default value for the GP, resulting in Discuz! 6. x/7. x a global variable Defense bypass vulnerability. Vulnerability analysis: | 1 2 3 4 5 6 7 8 9 1 0 1 1 1 2 1 3 1 4 1 5 1 6 1 7 1 8 1 9 2 0 | include/global...