smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection()

...

SUSE CVE-2026-23228

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of activenumconn in ksmbdtcpnewconnection On kthreadrun failure in ksmbdtcpnewconnection, the transport is freed via freetransport, which does not decrement activenumconn, leaking this counter. Replace...

CVE-2026-23228

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of activenumconn in ksmbdtcpnewconnection On kthreadrun failure in ksmbdtcpnewconnection, the transport is freed via freetransport, which does not decrement activenumconn, leaking this counter. Replace...

CVE-2025-71090

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsdfile reference leak in nfsd4addrdaccesstowrdeleg nfsd4addrdaccesstowrdeleg unconditionally overwrites fp-fifdsORDONLY with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREAD open from a...

CVE-2023-25948

Server information leak of configuration data when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning...

EUVD-2021-7482

Malicious code in bioql PyPI...

EUVD-2021-9671

Malicious code in bioql PyPI...

CVE-2022-49012

In the Linux kernel, the following vulnerability has been resolved: afs: Fix server-active leak in afsputserver The atomicread was accidentally replaced with atomicincreturn, which prevents the server from getting cleaned up and causes rmmod to hang with a warning: Can't purge s=00000001...

SUSE CVE-2022-49012

In the Linux kernel, the following vulnerability has been resolved: afs: Fix server-active leak in afsputserver The atomicread was accidentally replaced with atomicincreturn, which prevents the server from getting cleaned up and causes rmmod to hang with a warning: Can't purge s=00000001...

DEBIAN-CVE-2022-49012

In the Linux kernel, the following vulnerability has been resolved: afs: Fix server-active leak in afsputserver The atomicread was accidentally replaced with atomicincreturn, which prevents the server from getting cleaned up and causes rmmod to hang with a warning: Can't purge s=00000001...

UBUNTU-CVE-2022-49012

In the Linux kernel, the following vulnerability has been resolved: afs: Fix server-active leak in afsputserver The atomicread was accidentally replaced with atomicincreturn, which prevents the server from getting cleaned up and causes rmmod to hang with a warning: Can't purge s=00000001...

CVE-2024-31916

IBM OpenBMC FW1050.00 through FW1050.10 BMCWeb HTTPS server component could disclose sensitive URI content to an unauthorized actor that bypasses authentication channels. IBM X-ForceID: 290026...

Trove of UK Student Records Exposed in School Software Server Leak

By Waqas Hundreds of thousands of UK student records exposed in software firm's server leak putting names, grades, and photos at risk - Learn more about the school software breach and how to protect your child's information. This is a post from HackRead.com Read the original post: Trove of UK...

Leading EV Charging Firm Spills Trove of Customer Info in Server Leak

By Waqas A massive data leak 585.81 GB exposed customer information at Qmerit, including home images, charger locations, and potentially… This is a post from HackRead.com Read the original post: Leading EV Charging Firm Spills Trove of Customer Info in Server Leak...

AZL-13064 CVE-2018-14628 affecting package samba 4.12.5-7

An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an authenticated but unprivileged attacker could discover the names and preserved attributes of deleted objects in the LDAP store...

GSD-2023-1000080 afs: Fix server->active leak in afs_put_server

afs: Fix server-active leak in afsputserver This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.12 by commit...

CVE-2022-25166

An issue was discovered in Amazon AWS VPN Client 2.0.0. It is possible to include a UNC path in the OpenVPN configuration file when referencing file paths for parameters such as auth-user-pass. When this file is imported and the client attempts to validate the file path, it performs an open...

Stalkerware Apps Riddled with Security Bugs

Android stalkerware apps – used to surreptitiously track people’s movements and digital activities – turn out to themselves be rife with security holes that put victims in even danger. Stalkerware can track the GPS location of a victim’s device, record conversations, capture images and snoop on...

Brazil's Biggest Cosmetic Brand Natura Exposes Personal Details of Its Users

Brazil's biggest cosmetics company Natura accidentally left hundreds of gigabytes of its customers' personal and payment-related information publicly accessible online that could have been accessed by anyone without authentication. SafetyDetective researcher Anurag Sen last month discovered two...

USN-2500-1 xorg-server, xorg-server-lts-trusty, xorg-server-lts-utopic vulnerabilities

Olivier Fourdan discovered that the X.Org X server incorrectly handled XkbSetGeometry requests resulting in an information leak. An attacker able to connect to an X server, either locally or remotely, could use this issue to possibly obtain sensitive information. CVE-2015-0255 It was discovered...