Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 3726-3750 di 3995 risultati
Pagina 150 di 160

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2024-49907 drm/amd/display: Check null pointers before using dc->clk_mgr18-02-20263726
MSRC Security UpdateCVE-2025-21731 nbd: don't allow reconnect after disconnect18-02-20263727
MSRC Security UpdateCVE-2024-6174 When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.18-02-20263728
MSRC Security UpdateCVE-2021-22918 Node.js before 16.4.1 14.17.2 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().18-02-20263729
MSRC Security UpdateCVE-2023-28938 Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.18-02-20263730
MSRC Security UpdateCVE-2024-46981 Redis' Lua library commands may lead to remote code execution18-02-20263731
MSRC Security UpdateCVE-2024-54458 scsi: ufs: bsg: Set bsg_queue to NULL after removal18-02-20263732
MSRC Security UpdateCVE-2023-24531 Output of "go env" does not sanitize values in cmd/go18-02-20263733
MSRC Security UpdateCVE-2023-28320 A denial of service vulnerability exists in curl 18-02-20263734
MSRC Security UpdateCVE-2025-32990 Gnutls: vulnerability in gnutls certtool template parsing18-02-20263735
MSRC Security UpdateCVE-2025-27423 Improper Input Validation in Vim18-02-20263736
MSRC Security UpdateCVE-2023-28736 Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.18-02-20263737
MSRC Security UpdateCVE-2025-22104 ibmvnic: Use kernel helpers for hex dumps18-02-20263738
MSRC Security UpdateCVE-2023-52979 squashfs: harden sanity check in squashfs_read_xattr_id_table18-02-20263739
MSRC Security UpdateCVE-2022-23806 Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.18-02-20263740
MSRC Security UpdateCVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow18-02-20263741
MSRC Security UpdateCVE-2025-21729 wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion18-02-20263742
MSRC Security UpdateCVE-2024-57975 btrfs: do proper folio cleanup when run_delalloc_nocow() failed18-02-20263743
MSRC Security UpdateCVE-2025-32989 Gnutls: vulnerability in gnutls sct extension parsing18-02-20263744
MSRC Security UpdateCVE-2020-25657 A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.18-02-20263745
MSRC Security UpdateCVE-2024-26982 Squashfs: check the inode number is not the invalid value of zero18-02-20263746
MSRC Security UpdateCVE-2024-57852 firmware: qcom: scm: smc: Handle missing SCM device18-02-20263747
MSRC Security UpdateCVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials18-02-20263748
MSRC Security UpdateCVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.18-02-20263749
MSRC Security UpdateCVE-2016-9179 It was found that Lynx doesn't parse the authority component of the URL correctly18-02-20263750
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter