Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 751-775 di 5693 risultati
Pagina 31 di 228

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2026-55961 wolfSSL_PKCS7_verify() reports success for degenerate (certs-only) PKCS#7 with no signer01-07-2026751
MSRC Security UpdateCVE-2026-6329 PKCS#12 MAC verification uses attacker-controlled comparison length01-07-2026752
MSRC Security UpdateCVE-2026-11999 X.509 trust-chain bypass via path-depth exhaustion in wolfSSL_X509_verify_cert()01-07-2026753
MSRC Security UpdateCVE-2026-55962 TLS 1.3 post-handshake authentication: server accepts Finished without client Certificate/CertificateVerify01-07-2026754
MSRC Security UpdateCVE-2026-55967 AES-GCM streaming APIs do not reject >64 GiB cumulative single messages, enabling counter wrap and keystream reuse01-07-2026755
MSRC Security UpdateCVE-2026-11703 Missing SNI/ALPN binding on stateful (session-ID) TLS session resumption01-07-2026756
MSRC Security UpdateCVE-2026-55964 Chain intermediate CA:TRUE without keyCertSign accepted as a signing CA (temporary CA exemption)01-07-2026757
MSRC Security UpdateCVE-2026-55960 Un-negotiated Raw Public Key (RFC 7250) accepted in place of X.509, bypassing chain validation01-07-2026758
MSRC Security UpdateCVE-2026-6450 CRL critical extension bypass in ParseCRL_Extensions01-07-2026759
MSRC Security UpdateCVE-2026-7532 iPAddress name constraints not enforced when WOLFSSL_IP_ALT_NAME is undefined01-07-2026760
MSRC Security UpdateCVE-2026-6291 Bleichenbacher padding oracle in PKCS#7 KTRI RSA PKCS#1 v1.5 decryption01-07-2026761
MSRC Security UpdateCVE-2026-57918 libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in rpc_read_from_socket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds the absolute pdu size from the xid/record-marker.01-07-2026762
MSRC Security UpdateCVE-2026-57231 Podman: Malformed Image can trick podman run into leaking host environment variables into the container01-07-2026763
MSRC Security UpdateCVE-2026-13325 Virt-handler-rhel9: kubevirt: kubevirt: disabletls migration setting removes authentication, exposing unauthenticated virtqemud proxy on all interfaces01-07-2026764
MSRC Security UpdateCVE-2026-13218 Kubevirt: kubevirt: symlink following in writetocachedfile allows host file overwrite from virt-launcher01-07-2026765
MSRC Security UpdateCVE-2026-13208 Kubevirt: virt-handler-rhel9: kubevirt: virt-handler notify server trusts vmi identity from unauthenticated grpc request body01-07-2026766
MSRC Security UpdateCVE-2026-13318 Virt-api-rhel9: kubevirt: kubevirt: ssrf in virt-api port-forward via unvalidated guest-agent-reported ip01-07-2026767
MSRC Security UpdateCVE-2026-13322 Kubevirt: virt-handler-rhel9: kubevirt: unbounded virtio-serial readline in virt-handler causes oom denial of service01-07-2026768
MSRC Security UpdateCVE-2026-58055 nghttp2 nghttpx - HTTP Request/Response Smuggling via Upgrade Request with Content-Length01-07-2026769
MSRC Security UpdateCVE-2026-58014 Glib: off-by-one error in glib/gkeyfile.c via "g_key_file_get_locale_string_list"01-07-2026770
MSRC Security UpdateCVE-2026-58013 Glib: buffer over-read in glib/giochannel.c via "g_io_channel_read_line_backend"01-07-2026771
MSRC Security UpdateCVE-2026-58011 Glib: out-of-bounds read in glib/gdatetime.c:g_date_time_get_ymd via invalid gdatetime01-07-2026772
MSRC Security UpdateCVE-2026-58012 Glib: buffer over-read in g_regex_replace() via glib/gregex.c:string_append() and g_utf8_next_char()01-07-2026773
MSRC Security UpdateCVE-2026-58016 Glib: integer underflow in gio/gdbusintrospection.c via "g_dbus_node_info_new_for_xml"01-07-2026774
MSRC Security UpdateCVE-2026-58015 Glib: path traversal in glib/gio/gdbusauthmechanismsha1.c via keyring_lookup_entry and mechanism_client_data_receive01-07-2026775
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter