3891 matches found
OESA-2026-2358 systemd security update
systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...
Security Bulletin: Multiple vulnerabilities in IBM MQ Operator and Queue manager container images
Summary Multiple vulnerabilities were addressed in IBM MQ Operator and Queue manager container images Vulnerability Details CVEID:CVE-2026-29111 DESCRIPTION: systemd, a system and service manager, as PID 1 hits an assert and freezes execution when an unprivileged IPC API call is made with spuriou...
OPENSUSE-SU-2026:20752-1 Security update for alloy
This update for alloy fixes the following issues Security issues: - CVE-2026-4427: github.com/jackc/pgproto3/v2: improper validation of field length allows a malicious PostgreSQL server to crash a client application via a DataRow message bsc1259919. - CVE-2026-25934: github.com/go-git/go-git/v5:...
SUSE-SU-2026:21793-1 Security update for alloy
This update for alloy fixes the following issues Security issues: - CVE-2026-4427: github.com/jackc/pgproto3/v2: improper validation of field length allows a malicious PostgreSQL server to crash a client application via a DataRow message bsc1259919. - CVE-2026-25934: github.com/go-git/go-git/v5:...
Photon OS 4.0: Systemd PHSA-2026-4.0-1014
An update of the systemd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-1014. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2026-41489
Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...
Critical Photon OS Security Update - PHSA-2026-4.0-1014
Updates of 'linux', 'httpd', 'systemd', 'python3' packages of Photon OS have been released...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CopyFail-Fix 🌐 English | Português |...
ROOT-OS-DEBIAN-12-CVE-2026-29111 CVE-2026-29111 in rootio-systemd - Patched by Root
Root has patched CVE-2026-29111 in the rootio-systemd package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-40225 CVE-2026-40225 in rootio-systemd - Patched by Root
Root has patched CVE-2026-40225 in the rootio-systemd package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-4105 CVE-2026-4105 in rootio-systemd - Patched by Root
Root has patched CVE-2026-4105 in the rootio-systemd package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-40226 CVE-2026-40226 in rootio-systemd - Patched by Root
Root has patched CVE-2026-40226 in the rootio-systemd package for Root:Debian:12. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-4105 CVE-2026-4105 in rootio-systemd - Patched by Root
Root has patched CVE-2026-4105 in the rootio-systemd package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-40225 CVE-2026-40225 in rootio-systemd - Patched by Root
Root has patched CVE-2026-40225 in the rootio-systemd package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-29111 CVE-2026-29111 in rootio-systemd - Patched by Root
Root has patched CVE-2026-29111 in the rootio-systemd package for Root:Debian:13. Multiple fixed versions available...
MiracleLinux 9 : systemd-252-55.el9_7.9.ML.1 (AXSA:2026-609:06)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-609:06 advisory. systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data CVE-2026-29111 Tenable has extracted the preceding description...
EUVD-2026-29295
Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...
CVE-2026-41489 Pi-hole: Local privilege escalation via config-controlled path in root-executed service hooks
Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...
CVE-2026-41489
Pi-hole (6.0 through before Core 6.4.2 and FTL 6.6.1) is vulnerable because two systemd-executed root scripts (pihole-FTL-prestart.sh and pihole-FTL-poststop.sh) read the files.pid path from a config without validation and perform privileged file operations using that path. An attacker with pihol...
PT-2026-39836
Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...