1219 matches found
UBUNTU-CVE-2026-42617
In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfsirtoib in index.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered by extending a directory, e.g., by creating a file...
UBUNTU-CVE-2026-56135
In NTFS-3G through 2026.2.25, a heap-based buffer overflow exists in the function buildinheritedid in libntfs-3g/security.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered by creating a file in a crafted...
UBUNTU-CVE-2026-46569
In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfsibcopytail, in libntfs-3g/index.c, that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered by extending a directory, e.g., by creating a file...
binary-exploitation-labs
Binary Exploitation & Reverse Engineering Labs Hands-on labs...
openSUSE 16 Security Update : apptainer (openSUSE-SU-2026:20942-1)
The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20942-1 advisory. Changes in apptainer: - Update apptainer to version v1.5.1 Security fix bsc1267982: Fix for CVE-2026-48785 / GHSA-cr2j-534f-mf3g. Incorrect path matchin...
OPENSUSE-SU-2026:20942-1 Security update for apptainer
This update for apptainer fixes the following issues: Changes in apptainer: - Update apptainer to version v1.5.1 Security fix bsc1267982: Fix for CVE-2026-48785 / GHSA-cr2j-534f-mf3g. Incorrect path matching for limit container paths directive. This is only applicable to SUID installations that...
Security update for apptainer (important)
openSUSE security update: security update for apptainer ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20888-1 Rating: important References: bsc1266656 Cross-References: CVE-2026-39821 CVSS scores: CVE-2026-39821 SUSE : 7.4...
Linux-privesc-PoC
Linux Privilege Escalation PoC Lab Educational disclaimer...
OPENSUSE-SU-2026:20888-1 Security update for apptainer
This update for apptainer fixes the following issues: Changes in apptainer: - CVE-2026-39821: Update golang.org/x/net to 0.55.0. bsc1266656 - Add improved handling of suid-starter: Add system group apptainer Make sure, only users belonging to this group are able to run the application. Document...
Exploit for CVE-2026-43494
SLEY — PinTheft PoC CVE-2026-43494 Proof o...
Exploit for CVE-2026-43494
SLEY — PinTheft PoC CVE-2026-43494 Proof o...
RockyLinux 9 : systemd (RLSA-2025:22660)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:22660 advisory. systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump CVE-2025-4598 Tenable has...
xfrm-ESP Page-Cache Write via CVE-2026-43284
CVE-2026-43284 is a Linux kernel page-cache write vulnerability in the IPsec/xfrm subsystem affecting ESP Encapsulating Security Payload fragmentation. Dubbed "DirtyFrag", the bug allows a local unprivileged user to gain write access to read-only page-cache pages by triggering a race condition in...
systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump
A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...
OESA-2026-2211 util-linux security update
The util-linux package contains a random collection of files that implements some low-level basic linux utilities. Security Fixes: util-linux is a random collection of Linux utilities. Prior to version 2.41.4, a TOCTOU Time-of-Check-Time-of-Use vulnerability has been identified in the SUID binary...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
pagecache-guard 中文文档 A runtime integr...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 Copy Fail Vulnerability Detection Script !L...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
Copy Fail CVE-2026-31431 – Exploit Usage Guide ⚠️ Discla...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
copy-success — CVE-2026-31431 Compensating Control A defensiv...
ExploitMind-Linux-Privesc-Toolkit
ExploitMind Linux PrivEsc Toolkit Script de...