Debian dla-4533 : libnss-myhostname - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4533 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4533-1 [email protected]...

openSUSE 16 Security Update : systemd (openSUSE-SU-2026:20471-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20471-1 advisory. Update to systemd v257.13: Security issues: - CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method...

USN-8139-1 rust-cargo-c vulnerability

It was discovered that tar-rs embedded in cargo-c incorrectly handled symlinks when unpacking a tar archive. If a user or automated system were tricked into processing a specially crafted tar archive, a remote attacker could use this issue to modify permissions of arbitrary directories outside th...

PT-2026-6267

Name of the Vulnerable Software and Affected Versions apko versions 0.14.8 through 1.1.0 Description apko is a tool that enables users to build and publish OCI container images from apk packages. A path traversal issue exists in apko’s dirFS filesystem abstraction between versions 0.14.8 and 1.1....

Debian dla-4453 : inetutils - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4453 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4453-1 [email protected] https://www.debian.org/lts/security/...

EUVD-2006-1657

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2022-22936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. Job publishes and file server replies are susceptible to replay attacks,...

CVE-2025-46805

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

oath-toolkit: Local root exploit in a PAM module

A vulnerability was found in a PAM module, the oath-toolkit. The module gained a feature that allowed placing the OTP state file, called the usersfile, in the home directory of the to-be-authenticated user. The PAM module performed unsafe file operations in the users' home directories. Since PAM...

OESA-2025-1350 containerd security update

containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

AZL-58867 CVE-2024-40635 affecting package containerd2 for versions less than 2.0.0-8

containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a UID:GID larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as roo...

AZL-60893 CVE-2024-40635 affecting package moby-containerd-cc for versions less than 1.7.7-9

containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a UID:GID larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as roo...

PT-2022-4376 · Zoom · Zoom Rooms For Conference Room For Windows +1

Name of the Vulnerable Software and Affected Versions: Zoom Rooms for Conference Rooms for Windows versions before 5.11.0 Zoom Client for Meetings for macOS affected versions not specified Description: The issue is related to a Local Privilege Escalation vulnerability that could be exploited by a...

PT-2021-5803 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: A stack buffer overflow can occur when correcting differences in the MFT and MFTMirror, allowing for code execution or escalation of privileges when setuid-root. The vulnerability is related to...