EUVD-2006-1932

Malware in sbrugna...

EUVD-2018-17573

Malware in sbrugna...

EUVD-2023-36487

Malicious code in bioql PyPI...

EUVD-2022-49887

Malicious code in bioql PyPI...

CVE-2025-38198 fbcon: Make sure modelist not set on unregistered console

In the Linux kernel, the following vulnerability has been resolved: fbcon: Make sure modelist not set on unregistered console It looks like attempting to write to the "storemodes" sysfs node will run afoul of unregistered consoles: UBSAN: array-index-out-of-bounds in...

GO-2025-3754 CIRCL-Fourq: Missing and wrong validation can lead to incorrect results in github.com/cloudflare/circl

CIRCL-Fourq: Missing and wrong validation can lead to incorrect results in github.com/cloudflare/circl...

**UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request

In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a gzip error when inflating a request body. This can result in corrupted and/or inadvertent sharing of data between requests...

Intermittent authentication failures with Oauth

User unable to authenticate due to token validation failure. Error in logs: "OAUTH: verify JWT: Could not find key for 'kid' in configuration, cannot verify jwt"...

CVE-2023-53102

In the Linux kernel, the following vulnerability has been resolved: ice: xsk: disable txq irq before flushing hw iceqpdis intends to stop a given queue pair that is a target of xsk pool attach/detach. One of the steps is to disable interrupts on these queues. It currently is broken in a way that...

CVE-2024-58082 media: nuvoton: Fix an error check in npcm_video_ece_init()

In the Linux kernel, the following vulnerability has been resolved: media: nuvoton: Fix an error check in npcmvideoeceinit When function offinddevicebynode fails, it returns NULL instead of an error code. So the corresponding error check logic should be modified to check whether the return value ...

CVE-2024-57906 iio: adc: ti-ads8688: fix information leak in triggered buffer

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-ads8688: fix information leak in triggered buffer The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses...

CVE-2024-56725 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: handle otx2mboxgetrsp errors in otx2dcbnl.c Add error pointer check after calling otx2mboxgetrsp...

CVE-2024-56717 net: mscc: ocelot: fix incorrect IFH SRC_PORT field in ocelot_ifh_set_basic()

In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: fix incorrect IFH SRCPORT field in ocelotifhsetbasic Packets injected by the CPU should have a SRCPORT field equal to the CPU port module index in the Analyzer block ocelot-numphysports. The blamed commit copie...

CVE-2024-38538

In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes syzbot triggered an uninit value1 error in bridge device's xmit path by sending a short less than ETHHLEN bytes skb. To fix it check if we can actually pull that...

CGA-7VX5-4FG2-99P6

Bulletin has no description...

CVE-2021-47071

In the Linux kernel, the following vulnerability has been resolved: uiohvgeneric: Fix a memory leak in error handling paths If 'vmbusestablishgpadl' fails, the recv|sendgpadl will not be updated and 'hvuiocleanup' in the error handling path will not be able to free the corresponding buffer. In su...

DEBIAN-CVE-2021-46920

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback Current code blindly writes over the SWERR and the OVERFLOW bits. Write back the bits actually read instead so the driver avoids clobbering the OVERFLOW bit that...

UBUNTU-CVE-2021-46920

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback Current code blindly writes over the SWERR and the OVERFLOW bits. Write back the bits actually read instead so the driver avoids clobbering the OVERFLOW bit that...

Workspace App mouse click placement mismatch

When an application is started from the Citrix Workspace for a multi-monitor setup 5+ monitor setup it's impossible to click on the app. Actual mouse click location does not match clicked location...

Virtual Application Launch Failure with error "The published resource is not available currently"

Launch virtual app failure via Gateway with error :"The published resource is not available currently"...