Ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 4776-4800 di 5034 risultati

Pagina 192 di 202

Avvisi di Sicurezza

CERT	Alert	Data	#
MSRC Security Update	CVE-2024-11584 cloud-init through 25.1.2 includes the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. An unprivileged user could trigger hotplug-hook commands.	18-02-2026	4776
MSRC Security Update	CVE-2024-26928 smb: client: fix potential UAF in cifs_debug_files_proc_show()	18-02-2026	4777
MSRC Security Update	CVE-2025-21727 padata: fix UAF in padata_reorder	18-02-2026	4778
MSRC Security Update	CVE-2025-39713 media: rainshadow-cec: fix TOCTOU race condition in rain_interrupt()	18-02-2026	4779
MSRC Security Update	CVE-2024-38473 Apache HTTP Server proxy encoding problem	18-02-2026	4780
MSRC Security Update	CVE-2024-26585 tls: fix race between tx work scheduling and socket close	18-02-2026	4781
MSRC Security Update	CVE-2023-46852 In Memcached before 1.6.22 a buffer overflow exists when processing multiget requests in proxy mode if there are many spaces after the "get" substring.	18-02-2026	4782
MSRC Security Update	CVE-2025-21820 tty: xilinx_uartps: split sysrq handling	18-02-2026	4783
MSRC Security Update	CVE-2025-53020 Apache HTTP Server: HTTP/2 DoS by Memory Increase	18-02-2026	4784
MSRC Security Update	CVE-2024-49907 drm/amd/display: Check null pointers before using dc->clk_mgr	18-02-2026	4785
MSRC Security Update	CVE-2025-21731 nbd: don't allow reconnect after disconnect	18-02-2026	4786
MSRC Security Update	CVE-2024-6174 When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.	18-02-2026	4787
MSRC Security Update	CVE-2023-28938 Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.	18-02-2026	4788
MSRC Security Update	CVE-2021-22918 Node.js before 16.4.1 14.17.2 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().	18-02-2026	4789
MSRC Security Update	CVE-2024-46981 Redis' Lua library commands may lead to remote code execution	18-02-2026	4790
MSRC Security Update	CVE-2024-54458 scsi: ufs: bsg: Set bsg_queue to NULL after removal	18-02-2026	4791
MSRC Security Update	CVE-2023-24531 Output of "go env" does not sanitize values in cmd/go	18-02-2026	4792
MSRC Security Update	CVE-2023-28320 A denial of service vulnerability exists in curl	18-02-2026	4793
MSRC Security Update	CVE-2025-32990 Gnutls: vulnerability in gnutls certtool template parsing	18-02-2026	4794
MSRC Security Update	CVE-2023-28736 Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.	18-02-2026	4795
MSRC Security Update	CVE-2025-27423 Improper Input Validation in Vim	18-02-2026	4796
MSRC Security Update	CVE-2025-22104 ibmvnic: Use kernel helpers for hex dumps	18-02-2026	4797
MSRC Security Update	CVE-2023-52979 squashfs: harden sanity check in squashfs_read_xattr_id_table	18-02-2026	4798
MSRC Security Update	CVE-2022-23806 Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.	18-02-2026	4799
MSRC Security Update	CVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow	18-02-2026	4800