CVE-2026-45949

CVE-2026-45949 details from connected OSV/NVD entries confirm a race in the Linux kernel hwrng core where concurrent unregister/start calls may cause use-after-free due to hwrng_fill not being cleared reliably. The patch serializes access with rng_mutex, moves cleanup to a work_struct, and conver...

[SECURITY] Fedora 44 Update: kf6-threadweaver-6.25.0-1.fc44

KDE Frameworks 6 Tier 1 addon for advanced thread management...

CVE-2022-26385

In unusual circumstances, an individual thread may outlive the thread's manager during shutdown. This could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox 98...

EUVD-2007-0410

Malware in sbrugna...

EUVD-2019-13503

Malware in sbrugna...

EUVD-2018-8960

Malware in sbrugna...

EUVD-2008-0482

Malware in sbrugna...

EUVD-2025-11269

Malicious code in bioql PyPI...

CVE-2022-49990 s390: fix double free of GS and RI CBs on fork() failure

In the Linux kernel, the following vulnerability has been resolved: s390: fix double free of GS and RI CBs on fork failure The pointers for guarded storage and runtime instrumentation control blocks are stored in the threadstruct of the associated task. These pointers are initially copied on fork...

Adaptive and Efficient Dynamic Memory Management for Hardware Enclaves

The second version of Intel Software Guard Extensions Intel SGX, or SGX2, adds dynamic management of enclave memory and threads. The first version required the address space and thread counts to be fixed before execution. The Enclave Dynamic Memory Management EDMM feature of SGX2 has the potentia...

[SECURITY] Fedora 41 Update: mysql8.0-8.0.41-1.fc41

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

Denial Of Service (DoS)

Aim is vulnerable to Denial Of Service DoS. The vulnerability is due to improper thread management due to the ScheduledStatusReporter object running on the main thread of the tracking server, blocking it indefinitely and preventing it from responding to requests...

SUSE-SU-2025:0279-1 Security update for java-21-openjdk

This update for java-21-openjdk fixes the following issues: Upgrade to upstream tag jdk-21.0.6+7 January 2025 CPU Security fixes: - CVE-2025-21502: Enhance array handling JDK-8330045, bsc1236278 Other changes: - JDK-6942632: Hotspot should be able to use more than 64 logical processors on Windows...

CVE-2024-26757 md: Don't ignore read-only array in md_check_recovery()

In the Linux kernel, the following vulnerability has been resolved: md: Don't ignore read-only array in mdcheckrecovery Usually if the array is not read-write, mdcheckrecovery won't register new syncthread in the first place. And if the array is read-write and syncthread is registered,...

Blackbone - Windows Memory Hacking Library

Windows memory hacking library Features x86 and x64 support Process interaction Manage PEB32/PEB64 Manage process through WOW64 barrier Process Memory Allocate and free virtual memory Change memory protection Read/Write virtual memory Process modules Enumerate all 32/64 bit modules loaded...

CVE-2022-26385

In unusual circumstances, an individual thread may outlive the thread's manager during shutdown. This could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox 98...

Design/Logic Flaw

In unusual circumstances, an individual thread may outlive the thread's manager during shutdown. This could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox 98...

Python -- multiple vulnerabilities

Python reports: gh-103142: The version of OpenSSL used in Windows and Mac installers has been upgraded to 1.1.1u to address CVE-2023-2650, CVE-2023-0465, CVE-2023-0466, CVE-2023-0464, as well as CVE-2023-0286, CVE-2022-4303, and CVE-2022-4303 fixed previously in 1.1.1t gh-101727. gh-102153:...

The vulnerability of the updateCapabilities function (ConnectivityService.java) in the Android operating system, related to a lack of implementation for thread management, allows a perpetrator to access confidential information.

The vulnerability of the updateCapabilities function in ConnectivityService.java on the Android operating system is related to a lack of implementation for thread management. Exploiting this vulnerability could allow an attacker who operates remotely to gain access to confidential information...

The vulnerability of Intel Graphics Driver drivers, related to errors in managing the execution thread, allows attackers to gain increased privileges.

The vulnerability of Intel Graphics Drivers’ drivers is related to errors in managing the execution thread. Exploiting this vulnerability can allow attackers to gain increased privileges...