Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The description of the “TAG 66 Packet Format” lacks the cipher code and checksum fields, which are packed within the message packet. As a result, the buffer allocated for the packet is ...

Apache HTTP Server 安全漏洞

Apache HTTP Server is an open-source web server developed by the Apache Foundation in the United States. This server is known for its speed, reliability, and ability to be expanded through simple APIs. Apache HTTP Server versions 2.4.66 and earlier contain security vulnerabilities, which stem fro...

Security update for the Linux Kernel (Live Patch 66 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.250 fixes various security issues The following security issues were fixed: CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant...

CVE-2022-50696

creationtimestamp| type| source ---|---|--- 2025-12-31 21:02:56+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mbcragfliz2p...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992981)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992981 advisory. In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the...

EUVD-2025-201395

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990870)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990870 advisory. In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the...

Patch Tuesday - November 2025

Microsoft is publishing 66 new vulnerabilities today, which is far fewer than we’ve come to expect in recent months. There’s a lone exploited-in-the-wild zero-day vulnerability, which Microsoft assesses as critical severity, although there’s apparently no public disclosure yet. Three critical...

MINI-G962-H788-66RP

Bulletin has no description...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38578)

ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the cipher code and checksum fields that are packed into the message packet. As a result, the buffer allocated for the packet is 3 bytes too small and writetag66packet will write up to 3 bytes past the e...

Mind the Gap: Time-Of-Check to Time-Of-Use Vulnerabilities in LLM-Enabled Agents

Large Language Model LLM-enabled agents are rapidly emerging across a wide range of applications, but their deployment introduces vulnerabilities with security implications. While prior work has examined prompt-based attacks e.g., prompt injection and data-oriented threats e.g., data exfiltration...

Linux Distros Unpatched Vulnerability : CVE-2018-6114

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect enforcement of CSP for tags in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass content security policy via a crafted...

Linux Distros Unpatched Vulnerability : CVE-2019-9807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When arbitrary text is sent over an FTP connection and a page reload is initiated, it is possible to create a modal alert message with this text as the content...

Linux Distros Unpatched Vulnerability : CVE-2019-9801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Firefox will accept any registered Program ID as an external protocol handler and offer to launch this local application when given a matching URL on Windows...

Linux Distros Unpatched Vulnerability : CVE-2019-9797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-origin images can be read in violation of the same-origin policy by exporting an image after using createImageBitmap to read the image and then rendering...

Linux Distros Unpatched Vulnerability : CVE-2019-9788

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5. Some of these bugs showed...

Linux Distros Unpatched Vulnerability : CVE-2019-9808

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If WebRTC permission is requested from documents with data: or blob: URLs, the permission notifications do not properly display the originating domain. The...

Cypress Bluetooth SDK 安全漏洞

Cypress Bluetooth SDK is a Bluetooth software development package from Cypress. A security vulnerability exists in Cypress Bluetooth SDK version v3.66, which originates from an attacker being able to trigger a denial of service DoS by providing a carefully crafted LLPAUSEENCREQ packet...

PYSEC-2024-269

A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to restart the server at will by sending a specific request to the /queue/join? endpoint with "fnindex":66. This unrestricted server restart capability can severely disrupt service availability, cause data loss or...

SUSE CVE-2024-38578

In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the cipher code and checksum fields that are packed into the message packet. As a result, the buffer allocated for the packet is 3 byte...