Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3351-3375 di 4149 risultati
Pagina 135 di 166

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2024-2004 Usage of disabled protocol18-02-20263351
MSRC Security UpdateCVE-2024-49982 aoe: fix the potential use-after-free problem in more places18-02-20263352
MSRC Security UpdateCVE-2007-6109 Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function as demonstrated via a certain "emacs -batch -eval" command line.18-02-20263353
MSRC Security UpdateCVE-2022-31627 Heap buffer overflow in finfo_buffer18-02-20263354
MSRC Security UpdateCVE-2024-4775 An iterator stop condition was missing when handling WASM code in the built-in profiler, potentially leading to invalid memory access and undefined behavior. *Note:* This issue only affects the application when the profiler is running. This vulnerability affects Firefox < 126.18-02-20263355
MSRC Security UpdateCVE-2025-37914 net_sched: ets: Fix double list add in class with netem as child qdisc18-02-20263356
MSRC Security UpdateCVE-2025-38062 genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie18-02-20263357
MSRC Security UpdateCVE-2024-30260 Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch request stream pipeline18-02-20263358
MSRC Security UpdateCVE-2024-47691 f2fs: fix to avoid use-after-free in f2fs_stop_gc_thread()18-02-20263359
MSRC Security UpdateCVE-2024-56627 ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read18-02-20263360
MSRC Security UpdateCVE-2023-7104 SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow18-02-20263361
MSRC Security UpdateCVE-2025-38160 clk: bcm: rpi: Add NULL check in raspberrypi_clk_register()18-02-20263362
MSRC Security UpdateCVE-2024-26836 platform/x86: think-lmi: Fix password opcode ordering for workstations18-02-20263363
MSRC Security UpdateCVE-2024-34155 Stack exhaustion in all Parse functions in go/parser18-02-20263364
MSRC Security UpdateCVE-2024-4770 When saving a page to PDF, certain font styles could have led to a potential use-after-free crash. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.18-02-20263365
MSRC Security UpdateCVE-2022-4450 Double free after calling PEM_read_bio_ex18-02-20263366
MSRC Security UpdateCVE-2025-32387 Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow18-02-20263367
MSRC Security UpdateCVE-2024-5642 Buffer overread when using an empty list with SSLContext.set_npn_protocols()18-02-20263368
MSRC Security UpdateCVE-2025-37874 net: ngbe: fix memory leak in ngbe_probe() error path18-02-20263369
MSRC Security UpdateCVE-2022-49636 vlan: fix memory leak in vlan_newlink()18-02-20263370
MSRC Security UpdateCVE-2022-28737 There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables18-02-20263371
MSRC Security UpdateCVE-2025-59529 simple protocol server ignores accepts unlimited connections and logs failures without limit18-02-20263372
MSRC Security UpdateCVE-2023-51764 Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=chunking (or certain other options that exist in recent versions). Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address allowing bypass of an SPF protection mechanism. This occurs because Postfix supports . but some other popular e-mail servers do not. To prevent attack variants (by always disallowing without ) a different solution is required such as the smtpd_forbid_bare_newline=yes option with a Postfix minimum version of 3.5.23 3.6.13 3.7.9 3.8.4 or 3.9.18-02-20263373
MSRC Security UpdateCVE-2024-49992 drm/stm: Avoid use-after-free issues with crtc and plane18-02-20263374
MSRC Security UpdateCVE-2025-38068 crypto: lzo - Fix compression buffer overrun18-02-20263375
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter