cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request()

...

CVE-2025-40194

In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter subsequently calls freqqosupdaterequest that indirectly accesses the policy...

CVE-2025-62773

Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request by an administrator...

EUVD-2018-7592

Malware in sbrugna...

EUVD-2021-17014

Malware in sbrugna...

EUVD-2008-3764

Malware in sbrugna...

varnish security update

6.6.2-6.1 - Resolves: RHEL-89700 - varnish: request smuggling attacks CVE-2025-47905...

openSUSE Security Advisory (SUSE-SU-2025:1430-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-5911-1 request-tracker4 - security update

Bulletin has no description...

Malicious code in update-request (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6177 Malicious code in update-request (PyPI)

--- -= Per source details. Do not edit below this line.=-...

PT-2023-13298 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue is related to a Transient DOS in the Modem due to a NULL pointer dereference. This occurs while receiving a response to an lwm2m registration, update, or bootstrap request message...

K12986: BIND vulnerability CVE-2011-2464

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...

SUSE CVE-2011-2464

Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a denial of service named daemon crash via a crafted UPDATE request...

SUSE CVE-2017-6899

The msmbusdbgupdaterequestwrite function in drivers/platform/msm/msmbus/msmbusdbg.c in androidkernelhuaweimsm8916 through 2017-06-16 in LineageOS, and possibly other kernels for MSM devices, allows attackers to cause a denial of service NULL pointer dereference and device crash via a crafted...

HestiaCP 安全漏洞

HestiaCP is a lightweight and powerful control panel for modern networks. A security vulnerability exists in HestiaCP versions prior to v1.3.5, which stems from the value obtained from the pgk parameter in an update request being transmitted to the operating system's package manager, allowing an...

CVE-2018-15722

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response...

Command injection

The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man in the middle can inject OS commands with a properly formatted response...

Denial Of Service (DoS)

ISC Bind is vulnerable to denial of service. An improper indication of a negative-cache record allows a remote attacker to cause the named daemon to crash via a crafted UPDATE request...

Design/Logic Flaw

The vulnerability is due to insufficient handling of updatefile request parameter on updatemodule.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. A remote, authenticated attacker can exploit this vulnerability by sending a crafted request to the target server...