ROS-20260112-7326

A vulnerability in the btrfsloadzoneinfo function in the fs/btrfs/zoned.c module of the Linux kernel btrfs file system is related to the reuse of previously freed memory due to competitive access to a resource race condition. Exploitation of the vulnerability may allow an intruder to affect...

EUVD-2018-13484

Malware in sbrugna...

CVE-2018-20946

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archivesynczones script SEC-355...

DEBIAN-CVE-2022-49376

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix potential NULL pointer dereference If sdprobe sees an early error before sdkp-device is initialized, sdzbcreleasedisk is called. This causes a NULL pointer dereference when sdiszoned is called inside that function...

UBUNTU-CVE-2022-49376

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix potential NULL pointer dereference If sdprobe sees an early error before sdkp-device is initialized, sdzbcreleasedisk is called. This causes a NULL pointer dereference when sdiszoned is called inside that function...

CVE-2022-49376

CVE-2022-49376 affects the Linux kernel SCSI subsystem (sd driver). The issue arises when sd_probe() hits an early error before sdkp->device is initialized, leading to a NULL pointer dereference inside sd_is_zoned() due to an unintended call to sd_zbc_release_disk(). The fix removes the sd_zbc...

CVE-2022-49376 scsi: sd: Fix potential NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix potential NULL pointer dereference If sdprobe sees an early error before sdkp-device is initialized, sdzbcreleasedisk is called. This causes a NULL pointer dereference when sdiszoned is called inside that function...

CVE-2022-49376 scsi: sd: Fix potential NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix potential NULL pointer dereference If sdprobe sees an early error before sdkp-device is initialized, sdzbcreleasedisk is called. This causes a NULL pointer dereference when sdiszoned is called inside that function...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a competing condition issue with the device replacement operation of the btrfs:zoned component when loading...

CVE-2024-26944 btrfs: zoned: fix use-after-free in do_zone_finish()

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free in dozonefinish Shinichiro reported the following use-after-free triggered by the device replace operation in fstests btrfs/070. BTRFS info device nullb1: scrub: finished on devid 1 with status: 0...

CVE-2018-20946

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archivesynczones script SEC-355...

CVE-2018-20946

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archivesynczones script SEC-355...

Design/Logic Flaw

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archivesynczones script SEC-355...

CVE-2018-20946

cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archivesynczones script SEC-355...

CVE-2018-20946

cPanel before 68.0.27 exposes zone information because the archive_sync_zones script creates a world‑readable archive. This info disclosure vulnerability is documented across CVE‑2018‑20946 entries (NVD, RH, CNVD, etc.). Impact is information exposure of zones; CVSS v3 score is Low (3.3) with loc...

November 13, 2018—KB4464455 (OS Build 17763.107)

November 13, 2018—KB4464455 OS Build 17763.107 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that incorrectly implies that user policies have not been applied after...

October 24, 2018—KB4462933 (OS Build 17134.376)

October 24, 2018—KB4462933 OS Build 17134.376 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that sometimes prevents documents from appearing in the Microsoft Edge...

Microsoft Windows: Do not preserve zone information in file attachments

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winzoneinfoattachments.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Do not preserve zone information in file attachments users listed in HKU Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH...

December 12, 2017—KB4053579 (OS Build 14393.1944)

December 12, 2017—KB4053579 OS Build 14393.1944 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses issue where users of SQL Server Reporting Services may not be able to use the...

December 12, 2017—KB4054519 (Monthly Rollup)

December 12, 2017—KB4054519 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4050946 released November 27, 2017 and addresses the following issues: Addresses issue where users of SQL Server Reporting Services may not be able t...