Buscar noticias

Ctrl/Cmd para multiselección
Total: 3257

It was discovered that OpenSSH incorrectly handled file permissions when downloading files as root using the legacy scp protocol without the preserve-mode option. An attacker could use this to install setuid or setgid files on a system, po…

Ubuntu 2026-07-06 14:32 UTC · 2026-07-06 11:32 -03

It was discovered that GnuTLS had a timing side-channel when processing malformed ciphertexts in RSA-PSK ClientKeyExchange. A remote attacker could possibly use this issue to recover sensitive information. This issue only affected Ubuntu 1…

Ubuntu CVE-2024-0553CVE-2024-12243CVE-2025-9820CVE-2025-14831CVE-2026-3833CVE-2026-5260CVE-2026-33845CVE-2026-33846CVE-2026-42009CVE-2026-42010 CVSS 9.8 2026-07-06 13:37 UTC · 2026-07-06 10:37 -03

It was discovered that PHP incorrectly handled SOAP object deduplication when processing apache:Map nodes with duplicate keys. An attacker could possibly use this to cause a use-after-free, resulting in remote code execution. (CVE-2026-672…

Ubuntu CVE-2026-6722CVE-2026-7261CVE-2025-14179 CVSS 9.8 2026-07-06 13:22 UTC · 2026-07-06 10:22 -03

It was discovered that Gzip's gzexe utility handled temporary files in an insecure manner. When the mktemp utility was not available, gzexe constructed a temporary file path based on the process ID, which could be predicted. A local attack…

Ubuntu CVE-2026-41991CVE-2026-41992 CVSS 7.5 2026-07-06 12:52 UTC · 2026-07-06 09:52 -03

It was discovered that socat incorrectly handled the SOCKS5 proxy server reply parser. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2026-56123) It was discovered that socat incorrectly handled a sample s…

Ubuntu CVE-2026-56123CVE-2024-54661 CVSS 9.8 2026-07-06 12:37 UTC · 2026-07-06 09:37 -03