Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986452)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986452 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: aardvark: Fix kernel panic during PIO transfer Trying to start a new PIO transfer by writing...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986757)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986757 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: usbtmc: Fix bug in pipe direction for control transfers The syzbot fuzzer reported a minor b...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986315)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986315 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: aardvark: Fix kernel panic during PIO transfer Trying to start a new PIO transfer by writing...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987060)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987060 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: aardvark: Fix kernel panic during PIO transfer Trying to start a new PIO transfer by writing...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987378)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987378 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: dt9812: fix DMA buffers on stack USB transfer buffers are typically mapped for DMA and mu...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-388913)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-388913 advisory. In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are several places where either chan-lock or chan-vchan.lock...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-984807)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984807 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: handle isoc Babble and Buffer Overrun events properly xHCI 4.9 explicitly forbids assuming...

Code-Projects Simple Banking System SQL注入漏洞

Simple Banking System is a simple banking system. Simple Banking System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ID of the file /transfermoney.php. An attacker can exploit this vulnerability to execute...

Unity Linux 20.1070e Security Update: rubygem-webrick (UTSA-2025-673493)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-673493 advisory. An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-391705)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-391705 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential index out of bounds in color transformation function Fixes index o...

CVE-2025-57247

The BATBToken smart contract address 0xfbf1388408670c02f0dbbb74251d8ded1d63b7a2, Compiler Version v0.8.26+commit.8a97fa7a contains incorrect access control implementation in whitelist management functions. The setColdWhiteList and setSpecialAddress functions in the base ERC20 contract are declare...

Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability

On September 18, 2025, Fortra published a security advisory regarding a critical deserialization vulnerability in GoAnywhere MFT's License Servlet, which is tracked as CVE-2025-10035 and has a CVSS score of 10.0. The vulnerability could allow a threat actor with a validly forged license response...

HTTP Request Smuggling

io.netty, netty-codec-http is vulnerable to HTTP Request Smuggling. The vulnerability is due to incorrectly accepting standalone newline characters LF as a chunk-size line terminator instead of requiring CRLF per HTTP/1.1 standards, which allows an attacker to craft malicious requests that are...

CVE-2025-57247

The BATBToken smart contract address 0xfbf1388408670c02f0dbbb74251d8ded1d63b7a2, Compiler Version v0.8.26+commit.8a97fa7a contains incorrect access control implementation in whitelist management functions. The setColdWhiteList and setSpecialAddress functions in the base ERC20 contract are declare...

CVE-2025-57247

The BATBToken smart contract address 0xfbf1388408670c02f0dbbb74251d8ded1d63b7a2, Compiler Version v0.8.26+commit.8a97fa7a contains incorrect access control implementation in whitelist management functions. The setColdWhiteList and setSpecialAddress functions in the base ERC20 contract are declare...

CVE-2025-57247

The BATBToken contract (address 0xfbf1388408670c02f0dbbb74251d8ded1d63b7a2; compiler v0.8.26+commit.8a97fa7a) has an access-control flaw in whitelist management: setColdWhiteList() and setSpecialAddress() are declared public without proper restrictions. This enables any user to bypass cold-time t...

SUSE CVE-2023-53548

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer

...

CVE-2023-53548

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

UBUNTU-CVE-2023-53548

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...