77 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-4115
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc- ssh.c of the component Ed25519 Signature Handler. The...
CVE-2019-14356
On Coldcard MK1 and MK2 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a partial recovery of display contents. For example, a hardware implant in the USB cable might be...
Fedora 41 : stb (2025-6a64d3b2fc)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-6a64d3b2fc advisory. Add another patch for the root cause of CVE-2021-45340. We already have a patch for CVE-2021-45340, but adding this new patch may prevent a related, unproven...
PT-2023-35055 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.8 Description: The issue concerns the initialization of rx-link and rx-link sta in the mac80211 component of the wifi module. The actual impact and attack plausibility have not yet been proven...
PT-2023-35052 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.8 Description: The issue is related to the proc-empty-vm and proc-pid-vm tests in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-35111 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.93 Description: The issue concerns checking font dimension limits. It was introduced in version v2.6.22 and fixed in version v5.15.93. The actual impact and attack plausibility have not yet been proven...
PT-2023-35138 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue is related to the EDAC/qcom driver in the Linux Kernel, where llcc driv data is passed as edac device ctl info's pvt info. The actual impact and attack plausibility have not yet...
PT-2023-34882 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.230 Description: A use-after-free race condition issue exists in the fastrpc component of the Linux Kernel, which may potentially lead to security vulnerabilities. The actual impact and attack plausibility...
PT-2023-34769 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.7 Description: The issue is related to a possible NULL pointer dereference in the snd usb pcm has fixed rate function. The actual impact and attack plausibility have not yet been proven. Recommendations: Fo...
PT-2023-34802 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.7 Description: A bug was fixed in the Linux Kernel that occurs when unloading amdgpu. The actual impact and attack plausibility of this issue have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-34895 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.229 Description: The issue is related to the handling of extension header length in rawv6 push pending frames. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2023-33353 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.227 Description: The issue is related to the af unix component in the Linux Kernel, specifically with how the user ns is retrieved from in skb in the unix diag get exact function. The actual impact and...
PT-2023-33860 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue is related to preventing signed BPG offsets from bleeding into adjacent bits in the drm/msm/dsi component. The actual impact and attack plausibility have not yet been proven...
PT-2023-34015 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue is related to the validation of buffer length while parsing an index in the fs/ntfs3 component. The actual impact and attack plausibility have not yet been proven. Recommendations...
PT-2023-33655 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue is related to the return type of ctcmp,m tx functions in the s390/ctcm module. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-33564 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: The issue is related to the ext2 empty dir function in the Linux Kernel. It was introduced in version v5.19 and fixed in version v6.0.18. The actual impact and attack plausibility have not y...
PT-2023-33541 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.17 Description: The issue is related to a potential crash on isr after kexec in the iommu/mediatek component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2023-33258 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.82 Description: A potential security issue exists in the Linux Kernel, specifically in the cfg80211 component related to wifi, where multi-BSSID in S1G is not properly handled. The actual impact and attack...
PT-2023-34041 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.86 Description: The issue concerns a function fsl dcu drm connector mode valid with an incorrect return type. The actual impact and potential for attack have not been proven. Recommendations: For Linux...
PT-2023-33633 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue is related to avoiding integer overflow in the ethtool phys id function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...