566 matches found
Astra Linux - уязвимость в ntfs-3g
A buffer overflow was discovered in NTFS-3G before October 3, 2022. Metadata created within an NTFS image can lead to code execution. A local attacker can exploit this vulnerability if the ntfs-3g binary has the setuid root privilege. An attacker who is physically nearby can also exploit this...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
copyfail — CVE-2026-31431 4-byte page-cache write primitive →...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
copyfail-sh No race. No offsets. No prebuilt binary to blin...
UBUNTU-CVE-2026-41163
bubblewrap is a low-level unprivileged sandboxing tool. From version 0.11.0 to before version 0.11.2, if bubblewrap is installed in setuid mode then the user can use ptrace to attach to bubblewrap and control the unprivileged part of the sandbox setup phase. This allows the attacker to arbitraril...
CVE-2026-41163
bubblewrap is a low-level unprivileged sandboxing tool. From version 0.11.0 to before version 0.11.2, if bubblewrap is installed in setuid mode then the user can use ptrace to attach to bubblewrap and control the unprivileged part of the sandbox setup phase. This allows the attacker to arbitraril...
CVE-2026-41163
bubblewrap is a low-level unprivileged sandboxing tool. From version 0.11.0 to before version 0.11.2, if bubblewrap is installed in setuid mode then the user can use ptrace to attach to bubblewrap and control the unprivileged part of the sandbox setup phase. This allows the attacker to arbitraril...
Astra Linux - уязвимость в exim4
Exim 4 before 4.94.2 allows out-of-bounds write-ups, because the main function, while having setuid root, copies the current working directory pathname into a buffer that is too small on some common platforms...
Copy Fail AF_ALG + authencesn Page-Cache Write
CVE-2026-31431 is a logic flaw in the Linux kernel's authencesn AEAD template that, when reached via the AFALG socket interface combined with splice, allows an unprivileged local user to perform a controlled 4-byte write into the page cache of any readable file. Because the corrupted pages are...
EUVD-2026-26356
When exchanging data over a socket, libnv uses select2 to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select2's file descriptor set size limit of FDSETSIZE 1024. An attacker who is able to force a libnv application to allocate large file...
CVE-2026-39457
When exchanging data over a socket, libnv uses select2 to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select2's file descriptor set size limit of FDSETSIZE 1024. An attacker who is able to force a libnv application to allocate large file...
Exploit for CVE-2026-31431
CopyFail: CVE-2026-31431 Python implementation of copy.fail...
SUSE CVE-2026-40706
In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...
Unity Linux 20.1070e Security Update: screen (UTSA-2026-005208)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005208 advisory. Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...
TencentOS Server 4: screen (TSSA-2025:0404)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0404 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Exploit for Uncontrolled Search Path Element in Needrestart_Project Needrestart
CVE-2024-4...
EUVD-1999-1106
Malware in sbrugna...
EUVD-2004-2292
Malware in sbrugna...
EUVD-2001-1308
Malware in sbrugna...
EUVD-2012-6592
Malware in sbrugna...
EUVD-2016-6606
Malware in sbrugna...