Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3301-3325 di 3996 risultati
Pagina 133 di 160

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2022-26691 A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina macOS Monterey 12.3 macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.18-02-20263301
MSRC Security UpdateCVE-2025-21943 gpio: aggregator: protect driver attr handlers against module unload18-02-20263302
MSRC Security UpdateCVE-2024-47672 wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead18-02-20263303
MSRC Security UpdateCVE-2025-38063 dm: fix unconditional IO throttle caused by REQ_PREFLUSH18-02-20263304
MSRC Security UpdateCVE-2024-57977 memcg: fix soft lockup in the OOM process18-02-20263305
MSRC Security UpdateCVE-2025-37972 Input: mtk-pmic-keys - fix possible null pointer dereference18-02-20263306
MSRC Security UpdateCVE-2023-0778 A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.18-02-20263307
MSRC Security UpdateCVE-2024-40725 Apache HTTP Server: source code disclosure with handlers configured via AddType18-02-20263308
MSRC Security UpdateCVE-2016-3959 The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.18-02-20263309
MSRC Security UpdateCVE-2022-31394 Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software allowing attackers to perform HTTP2 attacks.18-02-20263310
MSRC Security UpdateCVE-2024-12905 An Improper Link Resolution Before File Access ("Link Following") and Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal"). This vulnerability occurs when extracting a maliciously crafted tar file, which can result in unauthorized file writes or overwrites outside the intended extraction directory. The issue is associated with index.js in the tar-fs package. This issue affects tar-fs: from 0.0.0 before 1.16.4, from 2.0.0 before 2.1.2, from 3.0.0 before 3.0.8.18-02-20263311
MSRC Security UpdateCVE-2024-34156 Stack exhaustion in Decoder.Decode in encoding/gob18-02-20263312
MSRC Security UpdateCVE-2025-53905 Vim has path traversial issue with tar.vim and special crafted tar files18-02-20263313
MSRC Security UpdateCVE-2022-1708 A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. The ExecSync request runs commands in a container and logs the output of the command. This output is then read by CRI-O after command execution and it is read in a manner where the entire file corresponding to the output of the command is read in. Thus if the output of the command is large it is possible to exhaust the memory or the disk space of the node when CRI-O reads the output of the command. The highest threat from this vulnerability is system availability.18-02-20263314
MSRC Security UpdateCVE-2024-57980 media: uvcvideo: Fix double free in error path18-02-20263315
MSRC Security UpdateCVE-2025-38115 net_sched: sch_sfq: fix a potential crash on gso_skb handling18-02-20263316
MSRC Security UpdateCVE-2024-56766 mtd: rawnand: fix double free in atmel_pmecc_create_user()18-02-20263317
MSRC Security UpdateCVE-2023-2650 Possible DoS translating ASN.1 object identifiers18-02-20263318
MSRC Security UpdateCVE-2024-46748 cachefiles: Set the max subreq size for cache writes to MAX_RW_COUNT18-02-20263319
MSRC Security UpdateCVE-2019-19317 lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.18-02-20263320
MSRC Security UpdateCVE-2022-0811 A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deployed.18-02-20263321
MSRC Security UpdateCVE-2025-38100 x86/iopl: Cure TIF_IO_BITMAP inconsistencies18-02-20263322
MSRC Security UpdateCVE-2025-6965 Integer Truncation on SQLite18-02-20263323
MSRC Security UpdateCVE-2024-49895 drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation18-02-20263324
MSRC Security UpdateCVE-2024-57973 rdma/cxgb4: Prevent potential integer overflow on 32bit18-02-20263325
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter