52 matches found
CVE-2026-32727
SciTokens is a reference library for generating and using SciTokens. Prior to version 1.9.7, the Enforcer is vulnerable to a path traversal attack where an attacker can use dot-dot .. in the scope claim of a token to escape the intended directory restriction. This occurs because the library...
CVE-2026-32727
CVE-2026-32727 concerns SciTokens: prior to version 1.9.7, the Enforcer is vulnerable to a path traversal attack via a token scope claim containing dot-dot (..). The issue arises from normalization of both the authorized path and the requested path, then comparing with startswith. Affected: SciTo...
CVE-2026-32727 SciTokens: Authorization Bypass via Path Traversal in Scope Validation
SciTokens is a reference library for generating and using SciTokens. Prior to version 1.9.7, the Enforcer is vulnerable to a path traversal attack where an attacker can use dot-dot .. in the scope claim of a token to escape the intended directory restriction. This occurs because the library...
CVE-2026-32716
SciTokens is a reference library for generating and using SciTokens. Prior to version 1.9.6, the Enforcer incorrectly validates scope paths by using a simple prefix match startswith. This allows a token with access to a specific path e.g., /john to also access sibling paths that start with the sa...
CVE-2026-32714 SciTokens vulnerable to SQL Injection in KeyCache
SciTokens is a reference library for generating and using SciTokens. Prior to version 1.9.6, the KeyCache class in scitokens was vulnerable to SQL Injection because it used Python's str.format to construct SQL queries with user-supplied data such as issuer and keyid. This allowed an attacker to...
CVE-2026-0786
ALGO 8180 IP Audio Alerter SCI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is required to exploit this vulnerability. The specific flaw...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992860)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992860 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/ti-sci: Fix refcount leak in tisciintrirqdomainprobe ofirqfindparent returns a node point...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992455)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992455 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/ti-sci: Fix refcount leak in tisciintrirqdomainprobe ofirqfindparent returns a node point...
CVE-2025-68240
In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...
CVE-2025-68240
In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...
CVE-2025-68240 nilfs2: avoid having an active sc_timer before freeing sci
In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...
CVE-2025-68240 nilfs2: avoid having an active sc_timer before freeing sci
In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...
Linux Distros Unpatched Vulnerability : CVE-2025-40222
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunre...
CVE-2025-40222
In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...
SUSE CVE-2025-40222
In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...
CVE-2025-40222
In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...
UBUNTU-CVE-2025-40222
In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...
CVE-2025-40222
CVE-2025-40222 concerns a Linux kernel vulnerability in the tty/serial sh-sci driver (RSCI) where the overrun_reg (CSR 0x48) was treated as a memory offset, causing sci_getreg() to index outside the regs array and access memory in rsci_port_params leading to WARNs. The fix modifies register handl...
CVE-2025-40222 tty: serial: sh-sci: fix RSCI FIFO overrun handling
In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...
EUVD-2008-1178
Malware in sbrugna...