Ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3101-3125 di 4252 risultati

Pagina 125 di 171

Avvisi di Sicurezza

CERT	Alert	Data	#
MSRC Security Update	CVE-2025-38145 soc: aspeed: Add NULL check in aspeed_lpc_enable_snoop()	18-02-2026	3101
MSRC Security Update	CVE-2025-37878 perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init	18-02-2026	3102
MSRC Security Update	CVE-2025-58754 Axios is vulnerable to DoS attack through lack of data size check	18-02-2026	3103
MSRC Security Update	CVE-2024-37370 In MIT Kerberos 5 (aka krb5) before 1.21.3 an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token causing the unwrapped token to appear truncated to the application.	18-02-2026	3104
MSRC Security Update	CVE-2025-38039 net/mlx5e: Avoid WARN_ON when configuring MQPRIO with HTB offload enabled	18-02-2026	3105
MSRC Security Update	CVE-2023-30589 The llhttp parser in the http module in Node v20.2.0 does not strictly use the CRLF sequence to delimit HTTP requests. This can lead to HTTP Request Smuggling (HRS). The CR character (without LF) is sufficient to delimit HTTP header fields in the llhttp parser. According to RFC7230 section 3 only the CRLF sequence should delimit each header-field. This impacts all Node.js active versions: v16 v18 and v20	18-02-2026	3106
MSRC Security Update	CVE-2024-36013 Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect()	18-02-2026	3107
MSRC Security Update	CVE-2025-68324 scsi: imm: Fix use-after-free bug caused by unfinished delayed work	18-02-2026	3108
MSRC Security Update	CVE-2025-38149 net: phy: clear phydev->devlink when the link is deleted	18-02-2026	3109
MSRC Security Update	CVE-2023-3817 Excessive time spent checking DH q parameter value	18-02-2026	3110
MSRC Security Update	CVE-2024-50036 net: do not delay dst_entries_add() in dst_release()	18-02-2026	3111
MSRC Security Update	CVE-2024-56626 ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write	18-02-2026	3112
MSRC Security Update	CVE-2024-50061 i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition	18-02-2026	3113
MSRC Security Update	CVE-2022-34169 Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets	18-02-2026	3114
MSRC Security Update	CVE-2025-37992 net_sched: Flush gso_skb list too during ->change()	18-02-2026	3115
MSRC Security Update	CVE-2023-6546 Kernel: gsm multiplexing race condition leads to privilege escalation	18-02-2026	3116
MSRC Security Update	CVE-2023-4504 OpenPrinting CUPS/libppd Postscript Parsing Heap Overflow	18-02-2026	3117
MSRC Security Update	CVE-2024-38541 of: module: add buffer overflow check in of_modalias()	18-02-2026	3118
MSRC Security Update	CVE-2025-27152 Possible SSRF and Credential Leakage via Absolute URL in axios Requests	18-02-2026	3119
MSRC Security Update	CVE-2025-38075 scsi: target: iscsi: Fix timeout on deleted connection	18-02-2026	3120
MSRC Security Update	CVE-2024-6257 HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation	18-02-2026	3121
MSRC Security Update	CVE-2025-38136 usb: renesas_usbhs: Reorder clock handling and power management in probe	18-02-2026	3122
MSRC Security Update	CVE-2021-46023 An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash.	18-02-2026	3123
MSRC Security Update	CVE-2025-21981 ice: fix memory leak in aRFS after reset	18-02-2026	3124
MSRC Security Update	CVE-2022-46146 Prometheus Exporter Toolkit vulnerable to basic authentication bypass	18-02-2026	3125