Ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 4751-4775 di 5176 risultati

Pagina 191 di 208

Avvisi di Sicurezza

CERT	Alert	Data	#
MSRC Security Update	CVE-2023-46218 This flaw allows a malicious HTTP server to set "super cookies" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains. It could do this by exploiting a mixed case flaw in curl's function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with `domain=co.UK` when the URL used a lower case hostname `curl.co.uk` even though `co.uk` is listed as a PSL domain.	18-02-2026	4751
MSRC Security Update	CVE-2025-38091 drm/amd/display: check stream id dml21 wrapper to get plane_id	18-02-2026	4752
MSRC Security Update	CVE-2025-21749 net: rose: lock the socket in rose_bind()	18-02-2026	4753
MSRC Security Update	CVE-2025-39788 scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE	18-02-2026	4754
MSRC Security Update	CVE-2022-1292 The c_rehash script allows command injection	18-02-2026	4755
MSRC Security Update	CVE-2024-43892 memcg: protect concurrent access to mem_cgroup_idr	18-02-2026	4756
MSRC Security Update	CVE-2025-21614 go-git clients vulnerable to DoS via maliciously crafted Git server replies	18-02-2026	4757
MSRC Security Update	CVE-2024-49913 drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream	18-02-2026	4758
MSRC Security Update	CVE-2024-1441 Libvirt: off-by-one error in udevlistinterfacesbystatus()	18-02-2026	4759
MSRC Security Update	CVE-2025-6170 Libxml2: stack buffer overflow in xmllint interactive shell command handling	18-02-2026	4760
MSRC Security Update	CVE-2024-52560 fs/ntfs3: Mark inode as bad as soon as error detected in mi_enum_attr()	18-02-2026	4761
MSRC Security Update	CVE-2025-50099 Vulnerability in the MySQL Server product of Oracle MySQL	18-02-2026	4762
MSRC Security Update	CVE-2025-21735 NFC: nci: Add bounds checking in nci_hci_create_pipe()	18-02-2026	4763
MSRC Security Update	CVE-2024-36910 uio_hv_generic: Don't free decrypted memory	18-02-2026	4764
MSRC Security Update	CVE-2024-44974 mptcp: pm: avoid possible UaF when selecting endp	18-02-2026	4765
MSRC Security Update	CVE-2025-39745 rcutorture: Fix rcutorture_one_extend_check() splat in RT kernels	18-02-2026	4766
MSRC Security Update	CVE-2025-32463 Sudo before 1.9.17p1 allows local users to obtain root access	18-02-2026	4767
MSRC Security Update	CVE-2022-47085 An issue was discovered in ostree before 2022.7 allows attackers to cause a denial of service or other unspecified impacts via the print_panic function in repo_checkout_filter.rs.	18-02-2026	4768
MSRC Security Update	CVE-2023-52696 powerpc/powernv: Add a null pointer check in opal_powercap_init()	18-02-2026	4769
MSRC Security Update	CVE-2025-21613 go-git has an Argument Injection via the URL field	18-02-2026	4770
MSRC Security Update	CVE-2025-50077 Vulnerability in the MySQL Server product of Oracle MySQL	18-02-2026	4771
MSRC Security Update	CVE-2024-47718 wifi: rtw88: always wait for both firmware loading attempts	18-02-2026	4772
MSRC Security Update	CVE-2023-35945 Envoy vulnerable to HTTP/2 memory leak in nghttp2 codec	18-02-2026	4773
MSRC Security Update	CVE-2024-28757 libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).	18-02-2026	4774
MSRC Security Update	CVE-2025-21779 KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't in-kernel	18-02-2026	4775