Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010997)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010997 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if...

📄 RPi-Jukebox-RFID 2.8.0 Cross Site Scripting

RPi-Jukebox-RFID version 2.8.0 suffers from a persistent cross site scripting vulnerability. Exploit Title: RPi-Jukebox-RFID 2.8.0 - Stored XSS CVE-2025-10370 Date: 2025-09-25 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://github.com/MiczFlor/RPi-Jukebox-RFID Software Link:...

📄 RPi-Jukebox-RFID 2.8.0 Command Injection

RPi-Jukebox-RFID version 2.8.0 proof of concept command injection exploit that leverages /phoniebox/api/playlist/shuffle.php. ============================================================================================================================================= | Title : RPi-Jukebox-RFID...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49862)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49862 advisory. - In the Linux kernel, the following vulnerability has been resolved: powercap: intelrapl: Fix off by one in...

📄 RPi-Jukebox-RFID 2.8.0 Remote Code Execution

RPi-Jukebox-RFID version 2.8.0 proof of concept exploit that demonstrates an OS command injection vulnerability in the shuffle.php API endpoint. The vulnerable parameter playlist is passed directly to a shell command without sanitization, allowing an attacker to execute arbitrary system commands...

CVE-2024-41367

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution RCE vulnerability via htdocs\api\playlist\appendFileToPlaylist.php...

CVE-2024-41368

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution RCE vulnerability via htdocs\inc.setWlanIpMail.php...

CVE-2024-41364

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution RCE vulnerability via htdocs\trackEdit.php...

CVE-2024-41366

RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution RCE vulnerability via htdocs\userScripts.php...

EUVD-2023-60075

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix mapping to non-allocated address Why There is an issue mapping non-allocated location of memory. It would allocate gpio registers from an array out of bounds. How Patch correct numbers of bounds for using...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990533)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990533 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc The call to lpfcsli4resumerpi in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989964)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989964 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc The call to lpfcsli4resumerpi in...

Linux Distros Unpatched Vulnerability : CVE-2023-53533

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Input: raspberrypi-ts - fix refcount leak in rpitsprobe rpifirmwareget take reference, we ne...

UBUNTU-CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

CVE-2022-50537 firmware: raspberrypi: fix possible memory leak in rpi_firmware_probe()

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to free memory on failure of mboxrequestchannel in the rpifirmwareprobe function, which could le...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986612)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986612 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc The call to lpfcsli4resumerpi in...

CVE-2023-53533

CVE-2023-53533 is reported as resolved in the Linux kernel, addressing a refcount leak in the raspberrypi-ts driver during rpi_ts_probe. The root cause involves a reference taken by rpi_firmware_get() that is not released in error paths; the patch adds the use of devm_rpi_firmware_get() to manage...

CVE-2023-53533 Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe

In the Linux kernel, the following vulnerability has been resolved: Input: raspberrypi-ts - fix refcount leak in rpitsprobe rpifirmwareget take reference, we need to release it in error paths as well. Use devmrpifirmwareget helper to handling the resources. Also remove the existing rpifirmwareput...

EUVD-2024-16504

Malicious code in bioql PyPI...