39 matches found
CVE-2025-71263
CVE-2025-71263 : In UNIX Fourth Research Edition (v4), the su command is vulnerable to a buffer overflow due to a fixed 100-byte password buffer. This allows a local user to escalate to root privileges. The CVSS score is 7.4 (HIGH) with LOCAL attack vector, HIGH impact on confidentiality, integri...
CVE-2025-65637 affecting package cf-cli for versions less than 8.4.0-26
CVE-2025-65637 affecting package cf-cli for versions less than 8.4.0-26. A patched version of the package is available...
EUVD-2017-15066
Malware in sbrugna...
EUVD-2021-14111
Malware in sbrugna...
CVE-2023-49292 affecting package golang for versions less than 1.20.7-1
CVE-2023-49292 affecting package golang for versions less than 1.20.7-1. A patched version of the package is available...
Linux Distros Unpatched Vulnerability : CVE-2021-27351
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Terminate Session feature in the Telegram application through 7.2.1 for Android, and through 2.4.7 for Windows and UNIX, fails to invalidate a recently acti...
CVE-2025-43023
A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software documentation. This potential vulnerability is due to the use of a weak code signing key, Digital Signature Algorithm DSA...
thunderbird security update
128.12.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.12.0 - Add OpenELA debranding 128.12.0-1 - Update to 128.12.0 build1...
CVE-2025-48379
Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap buffer overflow when writing a sufficiently large 64k encoded with default settings image in the DDS format due to writing into a buffer without checking for available space. This only affects users who save...
CVE-2025-5399
Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS...
CVE-2025-22869 affecting package packer for versions less than 1.9.5-6
CVE-2025-22869 affecting package packer for versions less than 1.9.5-6. A patched version of the package is available...
CVE-2024-12797
Issue summary: Clients using RFC7250 Raw Public Keys RPKs to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abort as expected when the SSLVERIFYPEER verification mode is set. Impact summary: TLS and DTLS connections using raw public keys m...
CVE-2024-50234 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-50234 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-53145 affecting package kernel for versions less than 6.6.64.2-1
CVE-2024-53145 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-50022 affecting package kernel for versions less than 6.6.57.1-1
CVE-2024-50022 affecting package kernel for versions less than 6.6.57.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-21129 affecting package mysql for versions less than 8.0.40-1
CVE-2024-21129 affecting package mysql for versions less than 8.0.40-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-45506
HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding h2send loop under a certain set of conditions, as exploited in the wild in 2024...
CVE-2023-32250 affecting package kernel for versions less than 5.15.118.1-1
CVE-2023-32250 affecting package kernel for versions less than 5.15.118.1-1. A patched version of the package is available...
CVE-2021-42780 affecting package opensc for versions less than 0.22.0-1
CVE-2021-42780 affecting package opensc for versions less than 0.22.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2021-45079 affecting package strongswan for versions less than 5.9.5-1
CVE-2021-45079 affecting package strongswan for versions less than 5.9.5-1. An upgraded version of the package is available that resolves this issue...