17 matches found
EUVD-2026-28756
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkcthelper: fix OOB read in nfnlcthelperdumptable nfnlcthelperdumptable has a 'goto restart' that jumps to a label inside the for loop body. When the "last" helper saved in cb-args1 is deleted between dump round...
CVE-2026-43450 netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table()
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkcthelper: fix OOB read in nfnlcthelperdumptable nfnlcthelperdumptable has a 'goto restart' that jumps to a label inside the for loop body. When the "last" helper saved in cb-args1 is deleted between dump round...
DEBIAN-CVE-2026-34945
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler contains a bug where a 64-bit table, part of the memory64 proposal of WebAssembly, incorrectly translated the table.size instruction. This bug could lead to disclosing data on the...
CVE-2023-54243 netfilter: ebtables: fix table blob use-after-free
In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix table blob use-after-free We are not allowed to return an error at this point. Looking at the code it looks like ret is always 0 at this point, but its not. t = findtablelocknet, repl-name, &ret, &ebtmute...
CVE-2025-40306
CVE-2025-40306 concerns the Linux kernel/orangefs xattr handling. The vulnerability arises from the xattr_key() helper using the pointer variable in the loop condition instead of dereferencing it, causing the loop to continue past valid C strings and potentially walk memory indefinitely. This led...
iommu/amd/pgtbl: Fix possible race while increase page table level
...
Linux Distros Unpatched Vulnerability : CVE-2022-49778
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: arm64/mm: fix incorrect filemapcount for non-leaf pmd/pud The page table check trigger BUGON...
Security update for kernel-livepatch-MICRO-6-0_Update_5
This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: CVE-2025-21772: partitions: mac: fix handling of bogus partition table bsc1238912 CVE-2025-22115: btrfs: fix block group refcount race in btrfscreatependingblockgroups bsc1241579 Patch Instructions: To install this SUSE...
In SQLite through 3.31.1 the ALTER TABLE implementation has a use-after-free as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.
...
SUSE CVE-2004-0594
The memorylimit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when registerglobals is enabled, allows remote attackers to execute arbitrary code by triggering a memorylimit abort during execution of the zendhashinit function and overwriting a...
kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region
A flaw was found in KVM. When updating a guest's page table entry, vmpgoff was improperly used as the offset to get the page's pfn. As vaddr and vmpgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and...
DEBIAN-CVE-2020-35527
In SQLite 3.31.1, there is an out of bounds access problem through ALTER TABLE for views that have a nested FROM clause...
AZL-38947 CVE-2020-11656 affecting package ceph for versions less than 18.2.1-1
In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement...
PT-2020-2204 · Sqlite +3 · Sqlite +3
Name of the Vulnerable Software and Affected Versions: SQLite versions 3.31.1 and earlier Description: The issue is related to a use-after-free in the ALTER TABLE implementation, which can be demonstrated by an ORDER BY clause belonging to a compound SELECT statement. This could potentially allow...
DEBIAN-CVE-2019-14532
An issue was discovered in The Sleuth Kit TSK 4.6.6. There is an off-by-one overwrite due to an underflow on tools/hashtools/hfind.cpp while using a bogus hash table...
Google Chrome Information Disclosure Vulnerability (CNVD-2015-02650)
Google Chrome is a web browser developed by the American company Google Google. A security vulnerability exists in the browser/ui/websitesettings/websitesettings.cc file in versions of Google Chrome prior to 42.0.2311.90, which stems from a failure to display the following in the Permissions tabl...
ARPNuke - 80 kb/s kills a whole subnet
Hi ppl, It is time for a new ґnukeґ - ARPNuke. There is an ARP table handling bug in Microsoft Windows protocoll stacks. It seems that the arp handling code uses some inefficient data structure maybe a simple linear table? to manage the ARP entries. Sending a huge amount of ґrandomґ that is rando...