Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ubifs: Memory freed for the tmpfile name When opening a ubifs tmpfile in an encrypted directory, the function fscryptsetupfilename allocates memory for the name that will be stored in the directory entry. However, after the name ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ovl: fixed the tmpfile leak...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Unmarking an inode as in use in error paths If an error occurs, the inode is marked as “in use”. If the marking of the inode as “in use” occurs in cachefilesopenfile, Cachefiles will report an error message saying...

CVE-2026-8115

A security flaw has been discovered in gyoridavid short-video-maker up to 1.3.4. This affects an unknown part of the file src/server/routers/rest.ts of the component REST API. The manipulation of the argument req.params.tmpFile results in path traversal. The attack can be launched remotely. The...

EUVD-2026-28472

A security flaw has been discovered in gyoridavid short-video-maker up to 1.3.4. This affects an unknown part of the file src/server/routers/rest.ts of the component REST API. The manipulation of the argument req.params.tmpFile results in path traversal. The attack can be launched remotely. The...

Short Video Maker 路径遍历漏洞

Short Video Maker is an automated short video generation tool developed by David Gyori. Versions of Short Video Maker 1.3.4 and earlier had a path traversal vulnerability. This vulnerability stemmed from the paramics.tmpFile operation in the REST API component, allowing for path traversal and...

PT-2026-38600

Name of the Vulnerable Software and Affected Versions gyoridavid short-video-maker versions prior to 1.3.5 Description A path traversal flaw exists in the REST API component within the src/server/routers/rest.ts file. A remote attacker can exploit this by manipulating the req.params.tmpFile...

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011112)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011112 advisory. In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory,...

GHSA-8WF4-C4X3-H952 AVideo: Remote Code Execution via PHP Temp File in Encoder downloadURL

Summary The downloadVideoFromDownloadURL function in objects/aVideoEncoder.json.php saves remote content to a web-accessible temporary directory using the original URL's filename and extension including .php. By providing an invalid resolution parameter, an attacker triggers an early die via...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005741)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005741 advisory. In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory,...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001948)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001948 advisory. Use-after-free vulnerability in the pathopenat function in fs/namei.c in the Linux kernel 3.x and 4.x before 4.0.4 allows local users to cause a denial of service or...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992190)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992190 advisory. In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory,...

EUVD-2023-59716

Malicious code in bioql PyPI...

EUVD-2023-59913

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-53276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is ...

SUSE CVE-2023-53276

In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...

CVE-2023-53276

In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...

DEBIAN-CVE-2023-53276

In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...

UBUNTU-CVE-2023-53276

In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...

CVE-2023-53276 ubifs: Free memory for tmpfile name

In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...