Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net/smc: Fixed a possible leak of the pernet namespace in smcinit. In smcinit, registerpernetsubsys&smcnetstatops is called without any error handling. If this call fails, the registration of &smcnetops will not be reversed...

MAL-2025-988 Malicious code in subsys-client (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 cd448fe7b92604e9718438328baa70266ded0a4e0c105f7663c9256b6eeea18b Importing the module starts downloading and executing an Infostealer targeting browsers' and Discord data In first packages, there was a hidden line triggering...

Malicious code in subsys-client (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 cd448fe7b92604e9718438328baa70266ded0a4e0c105f7663c9256b6eeea18b Importing the module starts downloading and executing an Infostealer targeting browsers' and Discord data In first packages, there was a hidden line triggering...

CVE-2024-6444

CVE-2024-6444 affects Zephyr’s Bluetooth OTS client: olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c handles input length poorly, enabling potential buffer overflow. Existing connected sources confirm the exact vulnerable component and root cause (missing input length valida...

CVE-2024-6442 Bluetooth: ASCS Unchecked tailroom of the response buffer

In ascscprspadd in /subsys/bluetooth/audio/ascs.c, an unchecked tailroom could lead to a global buffer overflow...

MAL-2024-12353 Malicious code in subsys-counter (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d5aa9a3a8888bf731b171ad413a70076df1eff7c362d520f6f3457057aa615f7 Collects basic information about the system, most probably a pentest or bug bounty. --- Category: PROBABLYPENTEST - Packages looking like typical pentest...

DEBIAN-CVE-2024-42269

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix potential null-ptr-deref in ip6tablenattableinit. ip6tablenattableinit accesses net-gen-ptrip6tablenatnetops.id, but the function is exposed to user space before the entry is allocated via...

Out-of-bounds

In subsys/net/ip/tcp.c , function tcpflags , when the incoming parameter flags is ECN or CWR , the buf will out-of-bounds write a byte zero...

CVE-2022-1841 Out-of-bound write in tcp_flags

In subsys/net/ip/tcp.c , function tcpflags , when the incoming parameter flags is ECN or CWR , the buf will out-of-bounds write a byte zero...

CVE-2022-1841

CVE-2022-1841 – Zephyr Project : In subsys/net/ip/tcp.c, function tcp_flags, when the incoming parameter flags is ECN or CWR, the buf is written out-of-bounds with a zero byte. Documented impact is a network-originated issue with potential confidentiality/integrity/availability considerations per...