Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3201-3225 di 3852 risultati
Pagina 129 di 155

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2023-28736 Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.18-02-20263201
MSRC Security UpdateCVE-2025-27423 Improper Input Validation in Vim18-02-20263202
MSRC Security UpdateCVE-2025-22104 ibmvnic: Use kernel helpers for hex dumps18-02-20263203
MSRC Security UpdateCVE-2023-52979 squashfs: harden sanity check in squashfs_read_xattr_id_table18-02-20263204
MSRC Security UpdateCVE-2022-23806 Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.18-02-20263205
MSRC Security UpdateCVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow18-02-20263206
MSRC Security UpdateCVE-2025-21729 wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion18-02-20263207
MSRC Security UpdateCVE-2024-57975 btrfs: do proper folio cleanup when run_delalloc_nocow() failed18-02-20263208
MSRC Security UpdateCVE-2025-32989 Gnutls: vulnerability in gnutls sct extension parsing18-02-20263209
MSRC Security UpdateCVE-2020-25657 A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.18-02-20263210
MSRC Security UpdateCVE-2024-26982 Squashfs: check the inode number is not the invalid value of zero18-02-20263211
MSRC Security UpdateCVE-2024-57852 firmware: qcom: scm: smc: Handle missing SCM device18-02-20263212
MSRC Security UpdateCVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials18-02-20263213
MSRC Security UpdateCVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.18-02-20263214
MSRC Security UpdateCVE-2016-9179 It was found that Lynx doesn't parse the authority component of the URL correctly18-02-20263215
MSRC Security UpdateCVE-2025-4563 Nodes can bypass dynamic resource allocation authorization checks18-02-20263216
MSRC Security UpdateCVE-2025-32988 Gnutls: vulnerability in gnutls othername san export18-02-20263217
MSRC Security UpdateCVE-2024-46729 drm/amd/display: Fix incorrect size calculation for loop18-02-20263218
MSRC Security UpdateCVE-1999-0817 Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.18-02-20263219
MSRC Security UpdateCVE-2025-4598 Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump18-02-20263220
MSRC Security UpdateCVE-2024-53103 hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer18-02-20263221
MSRC Security UpdateCVE-2025-25724 list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of service or unspecified other impact via a crafted TAR archive that is read with a verbose value of 2. For example, the 100-byte buffer may not be sufficient for a custom locale.18-02-20263222
MSRC Security UpdateCVE-2024-27289 pgx SQL Injection via Line Comment Creation18-02-20263223
MSRC Security UpdateCVE-2022-33099 An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.18-02-20263224
MSRC Security UpdateCVE-2025-21753 btrfs: fix use-after-free when attempting to join an aborted transaction18-02-20263225
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter