Linux Kernel - Local Privilege Escalation

Titles: Linux Kernel Local Privilege Escalation CVE-2026-43284 / CVE-2026-43500 Author: nu11secur1ty Date: 2026-05-11 Vendor: Linux Kernel Software: Linux Kernel All major distributions Vulnerability Type: Page-Cache Write / Memory Corruption Status: HIGH / CRITICAL --- Description The "Kukurigu"...

CLSA-2026-1776777715 gstreamer1-plugins-good: Fix of 2 CVEs

CVE-2026-3083, CVE-2026-3085: disable rtpqdm2depay element to fix heap buffer overflow and out-of-bounds write via crafted RTP payloads...

MiracleLinux 7 : fwupdate-12-6.0.1.el7.AXS7 (AXSA:2020-255:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-255:01 advisory. grub2: Crafted grub.cfg file can lead to arbitrary code execution during boot process CVE-2020-10713 grub2: grubmalloc does not validate allocation...

MiracleLinux 3 : kernel-2.6.18-128.7AXS3 (AXSA:2009-168:07)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-168:07 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

postgresql17-17.7-1.1 on GA media (moderate)

postgresql17-17.7-1.1 on GA media Announcement ID: openSUSE-SU-2025:15786-1 Rating: moderate Cross-References: CVE-2025-12817 CVE-2025-12818 CVSS scores: CVE-2025-12817 SUSE : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2025-12817 SUSE : 5.3...

Mozilla Firefox ESR < 52.2

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 52.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-16 advisory. - A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer...

OESA-2024-2306 motif security update

This module is motif run-time environment, which includes the motif shared libraries. Security Fixes: A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly and can lead to an infinite loop, resulting in a Denial...

PT-2024-2475 · Okta · Okta Verify For Windows

Name of the Vulnerable Software and Affected Versions: Okta Verify for Windows affected versions not specified Description: The issue is related to the auto-update service of Okta Verify for Windows, which is vulnerable to two flaws that can be combined to execute arbitrary code. This could allow...

jenkins: Reflective XSS vulnerability (SECURITY-171, SECURITY-177)

Two cross-site scripting XSS flaws were found in Jenkins. A remote attacker could use these flaws to conduct XSS attacks against users of an application using Jenkins...

acroread: multiple JBIG2-related security flaws

Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to trigger memory corruption and possibly execute arbitrary code via unknown attack vectors related to JBIG2, a different vulnerability than CVE-2009-0193 and CVE-2009-1061...

acroread: multiple JBIG2-related security flaws

Unspecified vulnerability in Adobe Acrobat Reader 9 before 9.1, 8 before 8.1.4, and 7 before 7.1.1 might allow remote attackers to execute arbitrary code via unknown attack vectors related to JBIG2 and "input validation," a different vulnerability than CVE-2009-0193 and CVE-2009-1062...