Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 4801-4825 di 5034 risultati
Pagina 193 di 202

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2025-21729 wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion18-02-20264801
MSRC Security UpdateCVE-2024-57975 btrfs: do proper folio cleanup when run_delalloc_nocow() failed18-02-20264802
MSRC Security UpdateCVE-2025-32989 Gnutls: vulnerability in gnutls sct extension parsing18-02-20264803
MSRC Security UpdateCVE-2020-25657 A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality.18-02-20264804
MSRC Security UpdateCVE-2024-26982 Squashfs: check the inode number is not the invalid value of zero18-02-20264805
MSRC Security UpdateCVE-2024-57852 firmware: qcom: scm: smc: Handle missing SCM device18-02-20264806
MSRC Security UpdateCVE-2024-28110 Go SDK for CloudEvents's use of WithRoundTripper to create a Client leaks credentials18-02-20264807
MSRC Security UpdateCVE-2022-43552 A use after free vulnerability exists in curl <7.87.0. Curl can be asked to *tunnel* virtually all protocols it supports through an HTTP proxy. HTTP proxies can (and often do) deny such tunnel operations. When getting denied to tunnel the specific protocols SMB or TELNET curl would use a heap-allocated struct after it had been freed in its transfer shutdown code path.18-02-20264808
MSRC Security UpdateCVE-2016-9179 It was found that Lynx doesn't parse the authority component of the URL correctly18-02-20264809
MSRC Security UpdateCVE-2025-4563 Nodes can bypass dynamic resource allocation authorization checks18-02-20264810
MSRC Security UpdateCVE-2025-32988 Gnutls: vulnerability in gnutls othername san export18-02-20264811
MSRC Security UpdateCVE-2024-46729 drm/amd/display: Fix incorrect size calculation for loop18-02-20264812
MSRC Security UpdateCVE-1999-0817 Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.18-02-20264813
MSRC Security UpdateCVE-2025-4598 Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump18-02-20264814
MSRC Security UpdateCVE-2024-53103 hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer18-02-20264815
MSRC Security UpdateCVE-2025-25724 list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of service or unspecified other impact via a crafted TAR archive that is read with a verbose value of 2. For example, the 100-byte buffer may not be sufficient for a custom locale.18-02-20264816
MSRC Security UpdateCVE-2024-27289 pgx SQL Injection via Line Comment Creation18-02-20264817
MSRC Security UpdateCVE-2022-33099 An issue in the component luaG_runerror of Lua v5.4.4 and below leads to a heap-buffer overflow when a recursive error occurs.18-02-20264818
MSRC Security UpdateCVE-2025-21753 btrfs: fix use-after-free when attempting to join an aborted transaction18-02-20264819
MSRC Security UpdateCVE-2024-43863 drm/vmwgfx: Fix a deadlock in dma buf fence polling18-02-20264820
MSRC Security UpdateCVE-2023-27537 A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks two threads sharing the same HSTS data could end up doing a double-free or use-after-free.18-02-20264821
MSRC Security UpdateCVE-2024-57850 jffs2: Prevent rtime decompress memory corruption18-02-20264822
MSRC Security UpdateCVE-2024-27308 Mio's tokens for named pipes may be delivered after deregistration18-02-20264823
MSRC Security UpdateCVE-2024-3567 Qemu-kvm: net: assertion failure in update_sctp_checksum()18-02-20264824
MSRC Security UpdateCVE-2025-21739 scsi: ufs: core: Fix use-after free in init error and remove paths18-02-20264825
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter