Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 2026-2050 di 5359 risultati
Pagina 82 di 215

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2026-42502 Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html03-06-20262026
MSRC Security UpdateCVE-2025-61724 Excessive CPU consumption in Reader.ReadResponse in net/textproto03-06-20262027
MSRC Security UpdateCVE-2025-58186 Lack of limit when parsing cookies can cause memory exhaustion in net/http03-06-20262028
MSRC Security UpdateCVE-2025-58183 Unbounded allocation when parsing GNU sparse map in archive/tar03-06-20262029
MSRC Security UpdateCVE-2026-4948 Firewalld: firewalld: local unprivileged user can modify firewall state due to d-bus setter mis-authorization03-06-20262030
MSRC Security UpdateCVE-2026-3087 shutil.unpack_archive() doesn't check for Windows absolute paths in ZIPs03-06-20262031
MSRC Security UpdateCVE-2026-40356 In MIT Kerberos 5 (aka krb5) before 1.22.3, there is an integer underflow and resultant out-of-bounds read if an application calls gss_accept_sec_context() on a system with a NegoEx mechanism registered in /etc/gss/mech. An unauthenticated remote attacker can trigger this, possibly causing the process to terminate in parse_message.03-06-20262032
MSRC Security UpdateCVE-2025-55554 pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().03-06-20262033
MSRC Security UpdateCVE-2026-40355 In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL pointer dereference if an application calls gss_accept_sec_context() on a system with a NegoEx mechanism registered in /etc/gss/mech. An unauthenticated remote attacker can trigger this, causing the process to terminate in parse_nego_message.03-06-20262034
MSRC Security UpdateCVE-2025-55551 An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.03-06-20262035
MSRC Security UpdateCVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh03-06-20262036
MSRC Security UpdateCVE-2026-41526 In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading to an escape from the shell. All applications relying on this method in a security-critical path to handle user input are affected and could be exploited. In particular, because sendInput() sends a string to a terminal, a control character such as \x01 can be used during injection.03-06-20262037
MSRC Security UpdateCVE-2026-42009 Gnutls: gnutls: denial of service via dtls packet reordering vulnerability03-06-20262038
MSRC Security UpdateCVE-2026-25541 Bytes is vulnerable to integer overflow in BytesMut::reserve03-06-20262039
MSRC Security UpdateCVE-2024-58266 The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.03-06-20262040
MSRC Security UpdateCVE-2026-45803 gh: GitHub Actions log output in `gh run view` allows terminal escape sequence injection03-06-20262041
MSRC Security UpdateCVE-2026-41607 Apache Thrift: C++ JSON OOB read03-06-20262042
MSRC Security UpdateCVE-2025-5791 Users: `root` appended to group listings03-06-20262043
MSRC Security UpdateCVE-2025-1176 GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow03-06-20262044
MSRC Security UpdateCVE-2026-41606 Apache Thrift: c_glib dispatch stack overflow03-06-20262045
MSRC Security UpdateCVE-2026-6357 pip self-update functionality can import newly installed modules after wheel installation03-06-20262046
MSRC Security UpdateCVE-2025-1178 GNU Binutils ld libbfd.c bfd_putl64 memory corruption03-06-20262047
MSRC Security UpdateCVE-2025-4574 Crossbeam-channel: crossbeam-channel vulnerable to double free on drop03-06-20262048
MSRC Security UpdateCVE-2025-3198 GNU Binutils objdump bucomm.c display_info memory leak03-06-20262049
MSRC Security UpdateCVE-2026-6238 Buffer overread in ns_printrrf with corrupted RDATA field03-06-20262050
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter