Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 1851-1875 di 5360 risultati
Pagina 75 di 215

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2026-42504 Quadratic complexity in WordDecoder.DecodeHeader in mime09-06-20261851
MSRC Security UpdateCVE-2026-46272 coresight: tmc-etr: Fix race condition between sysfs and perf mode09-06-20261852
MSRC Security UpdateCVE-2026-46250 MIPS: Work around LLVM bug when gp is used as global register variable09-06-20261853
MSRC Security UpdateCVE-2026-50031 ipmi-oem in FreeIPMI before 1.6.18 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system management. It is most commonly used for sensor reading (e.g., CPU temperatures through the ipmi-sensors command within FreeIPMI) and remote power control (the ipmipower command). The ipmi-oem client command implements a set of a IPMI OEM commands for specific hardware vendors. If a user has supported hardware, they may wish to use the ipmi-oem command to send a request to a server to retrieve specific information. Two subcommands "ipmi-oem dell get-active-directory-config" and "ipmi-oem fujitsu get-sel-entry-long-text" were found to have exploitable buffer overflows on response messages.09-06-20261854
MSRC Security UpdateCVE-2026-48959 IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaustion via per-byte read loop in fastForward09-06-20261855
MSRC Security UpdateCVE-2026-42250 Off-by-One Leading to Out-of-Bounds Write in bzip209-06-20261856
MSRC Security UpdateCVE-2025-15649 IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaught exception when parsing zip header with malformed DOS date09-06-20261857
MSRC Security UpdateCVE-2026-48962 IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob09-06-20261858
MSRC Security UpdateCVE-2026-42790 nameConstraints DNS bypass via subject CommonName fallback in public_key hostname verification09-06-20261859
MSRC Security UpdateCVE-2026-42789 Non-CA certificate accepted as intermediate issuer in public_key path validation09-06-20261860
MSRC Security UpdateCVE-2026-40510 OpenSC < 0.27.0-rc1 Stack Buffer Overflow via piv_process_history() in card-piv.c09-06-20261861
MSRC Security UpdateCVE-2026-40528 OpenSC < 0.27.0 Buffer Overrun in do_key_value() via profile.c09-06-20261862
MSRC Security UpdateCVE-2026-42496 Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extraction directory09-06-20261863
MSRC Security UpdateCVE-2026-42502 Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html09-06-20261864
MSRC Security UpdateCVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent09-06-20261865
MSRC Security UpdateCVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent09-06-20261866
MSRC Security UpdateCVE-2026-39827 Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh09-06-20261867
MSRC Security UpdateCVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh09-06-20261868
MSRC Security UpdateCVE-2026-25681 Invoking incorrect handling of character references in DOCTYPE nodes in golang.org/x/net/html09-06-20261869
MSRC Security UpdateCVE-2026-42501 Malicious module proxy can bypass checksum database in cmd/go09-06-20261870
MSRC Security UpdateCVE-2026-42499 Quadratic string concatenation in consumePhrase in net/mail09-06-20261871
MSRC Security UpdateCVE-2026-39836 Panic in Dial and LookupPort when handling NUL byte on Windows in net09-06-20261872
MSRC Security UpdateCVE-2026-39820 Quadratic string concatentation in consumeComment in net/mail09-06-20261873
MSRC Security UpdateCVE-2026-33811 Crash when handling long CNAME response in net09-06-20261874
MSRC Security UpdateCVE-2026-23479 redis-server use-after-free in unblock client flow may allow remote code execution09-06-20261875
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter