Ransomfeed ransomfeed

Alerts & Advisory dai CERTs

Gli ultimi avvisi di sicurezza dai Computer Emergency Response Teams governativi e non-governativi rilevanti del mondo cybersec

Mostrando 2251-2275 di 3755 risultati
Pagina 91 di 151

Avvisi di Sicurezza

CERT Alert Data #
MSRC Security UpdateCVE-2023-46136 Werkzeug vulnerable to high resource usage when parsing multipart/form-data containing a large part with CR/LF character at the beginning18-02-20262251
MSRC Security UpdateCVE-2024-58005 tpm: Change to kvalloc() in eventlog/acpi.c18-02-20262252
MSRC Security UpdateCVE-2024-26587 net: netdevsim: don't try to destroy PHC on VFs18-02-20262253
MSRC Security UpdateCVE-2025-39750 wifi: ath12k: Correct tid cleanup when tid setup fails18-02-20262254
MSRC Security UpdateCVE-2023-25588 Field `the_bfd` of `asymbol` is uninitialized in function `bfd_mach_o_get_synthetic_symtab`18-02-20262255
MSRC Security UpdateCVE-2024-39475 fbdev: savage: Handle err return when savagefb_check_var failed18-02-20262256
MSRC Security UpdateCVE-2025-50085 Vulnerability in the MySQL Server product of Oracle MySQL18-02-20262257
MSRC Security UpdateCVE-2024-49863 vhost/scsi: null-ptr-dereference in vhost_scsi_get_req()18-02-20262258
MSRC Security UpdateCVE-2025-38118 Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete18-02-20262259
MSRC Security UpdateCVE-2024-58020 HID: multitouch: Add NULL check in mt_input_configured18-02-20262260
MSRC Security UpdateCVE-2021-27291 In pygments 1.1+ fixed in 2.7.4 the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input an attacker can cause a denial of service.18-02-20262261
MSRC Security UpdateCVE-2024-21890 The Node.js Permission Model does not clarify in the documentation that wildcards should be only used as the last character of a file path. For example: ``` --allow-fs-read=/home/node/.ssh/*.pub ``` will ignore `pub` and give access to everything after `.ssh/`. This misleading documentation affects all users using the experimental permission model in Node.js 20 and Node.js 21. Please note that at the time this CVE was issued the permission model is an experimental feature of Node.js.18-02-20262262
MSRC Security UpdateCVE-2022-47673 An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a denial of service or other unspecified impacts.18-02-20262263
MSRC Security UpdateCVE-2024-39483 KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked18-02-20262264
MSRC Security UpdateCVE-2025-50098 Vulnerability in the MySQL Server product of Oracle MySQL18-02-20262265
MSRC Security UpdateCVE-2023-52917 ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()18-02-20262266
MSRC Security UpdateCVE-2024-42252 closures: Change BUG_ON() to WARN_ON()18-02-20262267
MSRC Security UpdateCVE-2021-20270 An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a Standard ML (SML) source file as demonstrated by input that only contains the "exception" keyword.18-02-20262268
MSRC Security UpdateCVE-2024-22025 A vulnerability in Node.js has been identified allowing for a Denial of Service (DoS) attack through resource exhaustion when using the fetch() function to retrieve content from an untrusted URL. The vulnerability stems from the fact that the fetch() function in Node.js always decodes Brotli making it possible for an attacker to cause resource exhaustion when fetching content from an untrusted URL. An attacker controlling the URL passed into fetch() can exploit this vulnerability to exhaust memory potentially leading to process termination depending on the system configuration.18-02-20262269
MSRC Security UpdateCVE-2021-45480 An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.18-02-20262270
MSRC Security UpdateCVE-2025-38099 Bluetooth: Disable SCO support if READ_VOICE_SETTING is unsupported/broken18-02-20262271
MSRC Security UpdateCVE-2022-47696 An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols.18-02-20262272
MSRC Security UpdateCVE-2025-21782 orangefs: fix a oob in orangefs_debug_write18-02-20262273
MSRC Security UpdateCVE-2023-49083 cryptography vulnerable to NULL-dereference when loading PKCS7 certificates18-02-20262274
MSRC Security UpdateCVE-2025-30204 jwt-go allows excessive memory allocation during header parsing18-02-20262275
Nessun risultato trovato

Prova a modificare i termini di ricerca

Le Fonti

Questa selezione di advisories è una lista ordinata per data di tutte le pubblicazioni dalle seguenti fonti:

US-CERT CISA
Twitter
NCSC
Twitter
Center of Internet Security
Twitter
FR-CERT Alertes
Twitter
FR-CERT Avis
Twitter
EU-ENISA Publications
Twitter
Google TAG
Microsoft Security
SANS
Twitter
Unit42
Twitter
MSRC Security Update
Twitter
CERT-Bund DE
Twitter
CSIRT IT
Twitter
Consiglio Federale CH
Twitter