178 matches found
CVE-2023-53843 net: openvswitch: reject negative ifindex
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: reject negative ifindex Recent changes in net-next commit 759ab1edb56c "net: store netdevs in an xarray" refactored the handling of pre-assigned ifindexes and let syzbot surface a latent problem in ovs. ovs does...
PT-2026-2509
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to an off-by-one error in the validation of the wire order variable. The initial validation check, wire orderi ARRAY SIZEconfig pins, permitted...
RLSA-2025:18298 Moderate: kernel-rt security update
The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: ALSA: usb-audio: Validate UAC3 cluster segment descriptors CVE-2025-39757 kernel: ALSA: hda/ca0132: Fix buffer overflow in...
CVE-2023-53714 drm/stm: ltdc: fix late dereference check
In the Linux kernel, the following vulnerability has been resolved: drm/stm: ltdc: fix late dereference check In ltdccrtcsetcrcsource, struct drmcrtc was dereferenced in a containerof before the pointer check. This could cause a kernel panic. Fix this smatch warning: drivers/gpu/drm/stm/ltdc.c:11...
EUVD-2025-34603
In the Linux kernel, the following vulnerability has been resolved: i40e: fix validation of VF state in get resources VF state I40EVFSTATEACTIVE is not the only state in which VF is actually active so it should not be used to determine if a VF is allowed to obtain resources. Use...
UBUNTU-CVE-2025-39969
In the Linux kernel, the following vulnerability has been resolved: i40e: fix validation of VF state in get resources VF state I40EVFSTATEACTIVE is not the only state in which VF is actually active so it should not be used to determine if a VF is allowed to obtain resources. Use...
CVE-2025-61775 Vickey's unexpired email confirmation link can be reused to send repeated confirmation emails
Vickey is a Misskey-based microblogging platform. A vulnerability exists in Vickey prior to version 2025.10.0 where unexpired email confirmation links can be reused multiple times to send repeated confirmation emails to a verified email address. Under certain conditions, a verified email address...
CVE-2025-43296
A logic issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26. An app may bypass Gatekeeper checks...
SUSE CVE-2023-53624
In the Linux kernel, the following vulnerability has been resolved: net/sched: schfq: fix integer overflow of "credit" if schfq is configured with "initial quantum" having values greater than INTMAX, the first assignment of "credit" does signed integer overflow to a very negative value. In this...
EUVD-2020-25159
Malware in sbrugna...
EUVD-2019-18182
Malware in sbrugna...
EUVD-2018-19057
Malware in sbrugna...
EUVD-2019-0158
Malware in sbrugna...
EUVD-2021-0305
Malware in sbrugna...
EUVD-2023-31907
Malicious code in bioql PyPI...
EUVD-2022-49502
Malicious code in bioql PyPI...
EUVD-2024-52594
Malicious code in bioql PyPI...
EUVD-2022-4956
Malicious code in bioql PyPI...
EUVD-2021-7255
Malicious code in bioql PyPI...
EUVD-2024-24995
Malicious code in bioql PyPI...