CVE-2026-48507 Snipe-IT: Bulk editing users allowed `ldap_import` and `activated_in` bulk editing users

Snipe-IT is an IT asset/license management system. A vulnerability in versions prior to 8.6.0 allows a non-admin user holding only the granular users.edit permission to lock every admin out of the instance by editing the activated flag which determines whether or not a user can login and the...

DEBIAN-CVE-2025-37861

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an invalid queue ID 0xFFFF, s...

PT-2025-22196

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue in the Linux kernel has been resolved, specifically in the mtk eth soc component of the Ethernet network driver. The problem occurs when the mtk poll rx function detects the MTK...

PT-2021-8285 · Linux · Linux

Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: The issue allows TCP firewalls to be circumvented by sending SYN packets with other flags set, such as the RST flag, which is not correctly discarded by the Linux TCP stack after firewalling...

PT-1997-1097 · Linux · Linux

Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: The issue allows for a denial of service of inetd on Linux systems through the use of SYN and RST packets. Recommendations: At the moment, there is no information about a newer version that...