Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 2051-2075 di 3755 risultati
Pagina 83 di 151

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2025-38097 espintcp: remove encap socket caching to avoid reference leak18-02-20262051
MSRC Security UpdateCVE-2024-4741 Use After Free with SSL_free_buffers18-02-20262052
MSRC Security UpdateCVE-2025-38042 dmaengine: ti: k3-udma-glue: Drop skip_fdq argument from k3_udma_glue_reset_rx_chn18-02-20262053
MSRC Security UpdateCVE-2024-41184 In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1 an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.18-02-20262054
MSRC Security UpdateCVE-2024-50031 drm/v3d: Stop the active perfmon before being destroyed18-02-20262055
MSRC Security UpdateCVE-2022-49728 ipv6: Fix signed integer overflow in __ip6_append_data18-02-20262056
MSRC Security UpdateCVE-2024-53166 block, bfq: fix bfqq uaf in bfq_limit_depth()18-02-20262057
MSRC Security UpdateCVE-2023-34411 The xml-rs crate before 0.8.14 for Rust and Crab allows a denial of service (panic) via an invalid 18-02-20262058
MSRC Security UpdateCVE-2025-37875 igc: fix PTM cycle trigger logic18-02-20262059
MSRC Security UpdateCVE-2025-53906 Vim has path traversal issue with zip.vim and special crafted zip archives18-02-20262060
MSRC Security UpdateCVE-2025-38110 net/mdiobus: Fix potential out-of-bounds clause 45 read/write access18-02-20262061
MSRC Security UpdateCVE-2022-26691 A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina macOS Monterey 12.3 macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.18-02-20262062
MSRC Security UpdateCVE-2025-21943 gpio: aggregator: protect driver attr handlers against module unload18-02-20262063
MSRC Security UpdateCVE-2024-47672 wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead18-02-20262064
MSRC Security UpdateCVE-2025-38063 dm: fix unconditional IO throttle caused by REQ_PREFLUSH18-02-20262065
MSRC Security UpdateCVE-2024-57977 memcg: fix soft lockup in the OOM process18-02-20262066
MSRC Security UpdateCVE-2025-37972 Input: mtk-pmic-keys - fix possible null pointer dereference18-02-20262067
MSRC Security UpdateCVE-2023-0778 A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.18-02-20262068
MSRC Security UpdateCVE-2024-40725 Apache HTTP Server: source code disclosure with handlers configured via AddType18-02-20262069
MSRC Security UpdateCVE-2016-3959 The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.18-02-20262070
MSRC Security UpdateCVE-2022-31394 Hyperium Hyper before 0.14.19 does not allow for customization of the max_header_list_size method in the H2 third-party software allowing attackers to perform HTTP2 attacks.18-02-20262071
MSRC Security UpdateCVE-2024-12905 An Improper Link Resolution Before File Access ("Link Following") and Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal"). This vulnerability occurs when extracting a maliciously crafted tar file, which can result in unauthorized file writes or overwrites outside the intended extraction directory. The issue is associated with index.js in the tar-fs package. This issue affects tar-fs: from 0.0.0 before 1.16.4, from 2.0.0 before 2.1.2, from 3.0.0 before 3.0.8.18-02-20262072
MSRC Security UpdateCVE-2024-34156 Stack exhaustion in Decoder.Decode in encoding/gob18-02-20262073
MSRC Security UpdateCVE-2025-53905 Vim has path traversial issue with tar.vim and special crafted tar files18-02-20262074
MSRC Security UpdateCVE-2022-1708 A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API. The ExecSync request runs commands in a container and logs the output of the command. This output is then read by CRI-O after command execution and it is read in a manner where the entire file corresponding to the output of the command is read in. Thus if the output of the command is large it is possible to exhaust the memory or the disk space of the node when CRI-O reads the output of the command. The highest threat from this vulnerability is system availability.18-02-20262075
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter