Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 2626-2650 di 3856 risultati
Pagina 106 di 155

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2024-46729 drm/amd/display: Fix incorrect size calculation for loop18-02-20262626
MSRC Security UpdateCVE-1999-0817 Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.18-02-20262627
MSRC Security UpdateCVE-2025-4598 Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump18-02-20262628
MSRC Security UpdateCVE-2024-53103 hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer18-02-20262629
MSRC Security UpdateCVE-2025-25724 list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of service or unspecified other impact via a crafted TAR archive that is read with a verbose value of 2. For example, the 100-byte buffer may not be sufficient for a custom locale.18-02-20262630
MSRC Security UpdateCVE-2024-27289 pgx SQL Injection via Line Comment Creation18-02-20262631
MSRC Security UpdateCVE-2022-33099 An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.18-02-20262632
MSRC Security UpdateCVE-2025-21753 btrfs: fix use-after-free when attempting to join an aborted transaction18-02-20262633
MSRC Security UpdateCVE-2024-43863 drm/vmwgfx: Fix a deadlock in dma buf fence polling18-02-20262634
MSRC Security UpdateCVE-2023-27537 A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks two threads sharing the same HSTS data could end up doing a double-free or use-after-free.18-02-20262635
MSRC Security UpdateCVE-2024-57850 jffs2: Prevent rtime decompress memory corruption18-02-20262636
MSRC Security UpdateCVE-2024-27308 Mio's tokens for named pipes may be delivered after deregistration18-02-20262637
MSRC Security UpdateCVE-2024-3567 Qemu-kvm: net: assertion failure in update_sctp_checksum()18-02-20262638
MSRC Security UpdateCVE-2025-21739 scsi: ufs: core: Fix use-after free in init error and remove paths18-02-20262639
MSRC Security UpdateCVE-2024-53156 wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()18-02-20262640
MSRC Security UpdateCVE-2024-43873 vhost/vsock: always initialize seqpacket_allow18-02-20262641
MSRC Security UpdateCVE-2021-40633 A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file.18-02-20262642
MSRC Security UpdateCVE-2017-14867 Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers to execute arbitrary OS commands via shell metacharacters in a module name. The vulnerable code is reachable via git-shell even without CVS support.18-02-20262643
MSRC Security UpdateCVE-2024-49862 powercap: intel_rapl: Fix off by one in get_rpi()18-02-20262644
MSRC Security UpdateCVE-2022-28805 singlevar in lparser.c in Lua from (including) 5.4.0 up to (excluding) 5.4.4 lacks a certain luaK_exp2anyregup call leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.18-02-20262645
MSRC Security UpdateCVE-2015-8472 Buffer overflow in libpng allows remote attackers to cause a denial of service18-02-20262646
MSRC Security UpdateCVE-2021-26291 block repositories using http by default18-02-20262647
MSRC Security UpdateCVE-2024-43861 net: usb: qmi_wwan: fix memory leak for not ip packets18-02-20262648
MSRC Security UpdateCVE-2023-23916 An allocation of resources without limits or throttling vulnerability exists in curl 18-02-20262649
MSRC Security UpdateCVE-2023-45322 libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is "I don't think these issues are critical enough to warrant a CVE ID ... because an attacker typically can't control when memory allocations fail."18-02-20262650
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter