Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002166)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002166 advisory. The ttyopen function in drivers/tty/ttyio.c in the Linux kernel before 3.1.1 mishandles a driver-lookup failure, which allows local users to cause a denial of servic...

EUVD-2023-2400

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2011-4916

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /dev/pts/ and /dev/tty. CVE-2011-4916 Note that Nessus relie...

SUSE CVE-2007-2797

xterm, including 192-7.el4 in Red Hat Enterprise Linux and 208-3.1 in Debian GNU/Linux, sets the wrong group ownership of tty devices, which allows local users to write data to other users' terminals...

How a simple Linux kernel memory corruption bug can lead to complete system compromise

An analysis of current and potential kernel security mitigations Posted by Jann Horn, Project Zero Introduction This blog post describes a straightforward Linux kernel locking bug and how I exploited it against Debian Buster's 4.19.0-13-amd64 kernel. Based on that, it explores options for securit...

Command Injection Vulnerability in Multiple CDATA Products

Shenzhen C-Data Shenzhen C-Data 72408A and so on are the products of Shenzhen C-Data Company in China.Shenzhen C-Data 72408A is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data FD1002S is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data...

Multiple CDATA product security vulnerabilities

Shenzhen C-Data Shenzhen C-Data 72408A and so on are the products of Shenzhen C-Data Company in China.Shenzhen C-Data 72408A is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data FD1002S is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data...

Multiple CDATA product trust management issue vulnerabilities

Shenzhen C-Data Shenzhen C-Data 72408A and so on are the products of Shenzhen C-Data Company in China.Shenzhen C-Data 72408A is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data FD1002S is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data...

Multiple CDATA product trust management issue vulnerabilities

Shenzhen C-Data Shenzhen C-Data 72408A and so on are the products of Shenzhen C-Data Company in China.Shenzhen C-Data 72408A is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data FD1002S is a kind of terminal equipment for connecting fiber optic trunks.Shenzhen C-Data...

CVE-2016-10811

In cPanel before 57.9999.54, /scripts/unsuspendacct exposed TTYs SEC-116...

CVE-2016-10812

In cPanel before 57.9999.54, /scripts/enablefileprotect exposed TTYs SEC-117...

UBUNTU-CVE-2011-5321

The ttyopen function in drivers/tty/ttyio.c in the Linux kernel before 3.1.1 mishandles a driver-lookup failure, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via crafted access to a device file under the...

Code injection

The kernel in Apple Mac OS X 10.6.x before 10.6.5 does not properly perform memory management associated with terminal devices, which allows local users to cause a denial of service system crash via unspecified vectors...

CVE-1999-0720

The ptchown command in Linux allows local users to modify TTY terminal devices that belong to other users...