Linux Distros Unpatched Vulnerability : CVE-2015-7834

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple unspecified vulnerabilities in Google V8 before 4.6.85.23, as used in Google Chrome before 46.0.2490.71, allow attackers to cause a denial of service o...

Linux Distros Unpatched Vulnerability : CVE-2016-10168

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in gdio.c in the GD Graphics Library aka libgd before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number...

Linux Distros Unpatched Vulnerability : CVE-2012-2653

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root...

Linux Distros Unpatched Vulnerability : CVE-2018-14883

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-based buffer...

Linux Distros Unpatched Vulnerability : CVE-2019-16234

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the allocworkqueue return value, leading to a NULL pointer dereference...

Linux Distros Unpatched Vulnerability : CVE-2020-29129

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ncsi.c in libslirp through 4.3.1 has a buffer over-read because it tries to read a certain amount of header data even if that exceeds the total packet length...

Linux Distros Unpatched Vulnerability : CVE-2014-2894

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART...

Linux Distros Unpatched Vulnerability : CVE-2016-9583

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds heap read vulnerability was found in the jpcpinextpcrl function of jasper before 2.0.6 when processing crafted input. CVE-2016-9583 Note that...

Linux Distros Unpatched Vulnerability : CVE-2017-7608

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The eblobjectnotetypename function in eblobjnotetypename.c in elfutils 0.168 allows remote attackers to cause a denial of service heap-based buffer over-read an...

Linux Distros Unpatched Vulnerability : CVE-2016-4072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Phar extension in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to execute arbitrary code via a crafted filename, as...

Linux Distros Unpatched Vulnerability : CVE-2019-19927

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel 5.0.0-rc7 as distributed in ubuntu/linux.git on kernel.ubuntu.com, mounting a crafted f2fs filesystem image and performing some operations c...

Linux Distros Unpatched Vulnerability : CVE-2017-9352

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by...

Linux Distros Unpatched Vulnerability : CVE-2015-2155

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

Linux Distros Unpatched Vulnerability : CVE-2017-6502

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ImageMagick 6.9.7. A specially crafted webp file could lead to a file- descriptor leak in libmagickcore thus, a DoS. CVE-2017-6502 No...

Linux Distros Unpatched Vulnerability : CVE-2020-12655

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in xfsagfverify in fs/xfs/libxfs/xfsalloc.c in the Linux kernel through 5.6.10. Attackers may trigger a sync of excessive duration via a...

castleparadox.com Cross Site Scripting vulnerability OBB-4031617

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

PT-2025-35541

Name of the Vulnerable Software and Affected Versions Qualcomm Multi-Mode Call Processor affected versions not specified Qualcomm Snapdragon chips affected versions not specified Description A memory corruption issue exists when selecting the PLMN Public Land Mobile Network from the SOR Serving a...

Linux Distros Unpatched Vulnerability : CVE-2007-6761

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drivers/media/video/videobuf-vmalloc.c in the Linux kernel before 2.6.24 does not initialize videobufmapping data structures, which allows local users to trigge...

Important Photon OS Security Update - PHSA-2025-5.0-0481

Updates of 'grub2' packages of Photon OS have been released...

CVE-2025-21782 orangefs: fix a oob in orangefs_debug_write

In the Linux kernel, the following vulnerability has been resolved: orangefs: fix a oob in orangefsdebugwrite I got a syzbot report: slab-out-of-bounds Read in orangefsdebugwrite... several people suggested fixes, I tested Al Viro's suggestion and made this patch...