737 matches found
CVE-2026-35385
In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the download is performed as root with -O legacy scp protocol and without -p preserve mode...
PT-2026-29805
Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 10.3 Description When using the -O option with the legacy scp protocol as root without the -p option, a downloaded file may be installed with setuid or setgid permissions, which may not align with user expectations...
Ubuntu: Security Advisory (USN-7978-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Azure Linux 3.0 Security Update: util-linux (CVE-2024-28085)
The version of util-linux installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28085 advisory. - wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000755)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000755 advisory. The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001533)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001533 advisory. A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001128)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001128 advisory. The inodeinitowner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended group ownership, in a scenario where...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003174)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003174 advisory. The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003254)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003254 advisory. The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002487)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002487 advisory. The overlayfs implementation in the Linux kernel through 4.5.2 does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002918)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002918 advisory. The overlayfs implementation in the Linux kernel through 4.5.2 does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002649)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002649 advisory. The archpickmmaplayout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier fo...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003486)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003486 advisory. The simplesetacl function in fs/posixacl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allow...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003323)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003323 advisory. The archpickmmaplayout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier fo...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002531)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002531 advisory. The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001187)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001187 advisory. The simplesetacl function in fs/posixacl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allow...
EUVD-2005-0603
Malware in sbrugna...
EUVD-2002-0291
Malware in sbrugna...
EUVD-1999-1409
Malware in sbrugna...
EUVD-2003-0927
Malware in sbrugna...