Buscar noticias

Ctrl/Cmd para multiselección
Total: 3422

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could po…

Ubuntu CVE-2024-36347CVE-2024-57795CVE-2025-22022CVE-2025-22111CVE-2025-38022CVE-2025-38234CVE-2025-40164CVE-2025-40325CVE-2025-68206CVE-2025-68254CVE-2025-68255CVE-2025-68256CVE-2025-68257CVE-2025-68258CVE-2025-68259CVE-2025-68261CVE-2025-68263CVE-2025-68264CVE-2025-68265CVE-2025-68266CVE-2025-68291CVE-2025-68325CVE-2025-68332CVE-2025-68335CVE-2025-68336CVE-2025-68337CVE-2025-68344CVE-2025-68345CVE-2025-68346CVE-2025-68347CVE-2025-68349CVE-2025-68354CVE-2025-68362CVE-2025-68363CVE-2025-68364CVE-2025-68366CVE-2025-68367CVE-2025-68369CVE-2025-68371CVE-2025-68372CVE-2025-68374CVE-2025-68378CVE-2025-68379CVE-2025-68380CVE-2025-68724CVE-2025-68727CVE-2025-68728CVE-2025-68732CVE-2025-68733CVE-2025-68740CVE-2025-68741CVE-2025-68742CVE-2025-68744CVE-2025-68746CVE-2025-68753CVE-2025-68755CVE-2025-68756CVE-2025-68757CVE-2025-68758CVE-2025-68759CVE-2025-68763CVE-2025-68764CVE-2025-68765CVE-2025-68766CVE-2025-68767CVE-2025-68769CVE-2025-68770CVE-2025-68771CVE-2025-68772CVE-2025-68773CVE-2025-68774CVE-2025-68775CVE-2025-68776CVE-2025-68777CVE-2025-68778CVE-2025-68780CVE-2025-68782CVE-2025-68783CVE-2025-68785CVE-2025-68786CVE-2025-68787CVE-2025-68788CVE-2025-68794CVE-2025-68795CVE-2025-68796CVE-2025-68797CVE-2025-68798CVE-2025-68799CVE-2025-68800CVE-2025-68801CVE-2025-68804CVE-2025-68806CVE-2025-68808CVE-2025-68809CVE-2025-68810CVE-2025-68811CVE-2025-68813CVE-2025-68814CVE-2025-68815CVE-2025-68816CVE-2025-68817CVE-2025-68818CVE-2025-68819CVE-2025-68820CVE-2025-68821CVE-2025-71064CVE-2025-71065CVE-2025-71066CVE-2025-71067CVE-2025-71068CVE-2025-71069CVE-2025-71071CVE-2025-71072CVE-2025-71075CVE-2025-71077CVE-2025-71078CVE-2025-71079CVE-2025-71081CVE-2025-71082CVE-2025-71083CVE-2025-71084CVE-2025-71085CVE-2025-71086CVE-2025-71087CVE-2025-71088CVE-2025-71089CVE-2025-71091CVE-2025-71093CVE-2025-71094CVE-2025-71095CVE-2025-71096CVE-2025-71097CVE-2025-71098CVE-2025-71101CVE-2025-71102CVE-2025-71104CVE-2025-71105CVE-2025-71107CVE-2025-71108CVE-2025-71109CVE-2025-71111CVE-2025-71112CVE-2025-71113CVE-2025-71114CVE-2025-71116CVE-2025-71118CVE-2025-71119CVE-2025-71120CVE-2025-71121CVE-2025-71122CVE-2025-71123CVE-2025-71125CVE-2025-71126CVE-2025-71127CVE-2025-71130CVE-2025-71131CVE-2025-71132CVE-2025-71133CVE-2025-71135CVE-2025-71136CVE-2025-71137CVE-2025-71138CVE-2025-71140CVE-2025-71141CVE-2025-71143CVE-2025-71144CVE-2025-71147CVE-2025-71148CVE-2025-71150CVE-2025-71151CVE-2025-71153CVE-2025-71154CVE-2026-23112CVE-2026-23209CVE-2026-23231 CVSS 9.8 2026-05-07 15:27 UTC · 2026-05-07 12:27 -03

Andrew Nesbitt discovered that opam did not properly validate file destination paths in package install files. An attacker could use this issue to bypass sandbox protections and write files to arbitrary locations, possibly leading to arbit…

Ubuntu 2026-05-07 15:21 UTC · 2026-05-07 12:21 -03

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could po…

Ubuntu CVE-2024-36347CVE-2025-68351CVE-2025-68353CVE-2025-68365CVE-2025-68368CVE-2025-68725CVE-2025-68736CVE-2025-68745CVE-2025-68767CVE-2025-68768CVE-2025-68769CVE-2025-68770CVE-2025-68771CVE-2025-68772CVE-2025-68773CVE-2025-68774CVE-2025-68775CVE-2025-68776CVE-2025-68777CVE-2025-68778CVE-2025-68780CVE-2025-68781CVE-2025-68782CVE-2025-68783CVE-2025-68784CVE-2025-68785CVE-2025-68786CVE-2025-68787CVE-2025-68788CVE-2025-68791CVE-2025-68792CVE-2025-68793CVE-2025-68794CVE-2025-68795CVE-2025-68796CVE-2025-68797CVE-2025-68798CVE-2025-68799CVE-2025-68800CVE-2025-68801CVE-2025-68802CVE-2025-68803CVE-2025-68804CVE-2025-68805CVE-2025-68806CVE-2025-68807CVE-2025-68808CVE-2025-68809CVE-2025-68810CVE-2025-68811CVE-2025-68813CVE-2025-68814CVE-2025-68815CVE-2025-68816CVE-2025-68817CVE-2025-68818CVE-2025-68819CVE-2025-68820CVE-2025-68821CVE-2025-68822CVE-2025-68823CVE-2025-71064CVE-2025-71065CVE-2025-71066CVE-2025-71067CVE-2025-71068CVE-2025-71069CVE-2025-71070CVE-2025-71071CVE-2025-71072CVE-2025-71073CVE-2025-71075CVE-2025-71076CVE-2025-71077CVE-2025-71078CVE-2025-71079CVE-2025-71081CVE-2025-71082CVE-2025-71083CVE-2025-71084CVE-2025-71085CVE-2025-71086CVE-2025-71087CVE-2025-71089CVE-2025-71091CVE-2025-71093CVE-2025-71094CVE-2025-71095CVE-2025-71096CVE-2025-71097CVE-2025-71098CVE-2025-71099CVE-2025-71100CVE-2025-71101CVE-2025-71102CVE-2025-71104CVE-2025-71105CVE-2025-71107CVE-2025-71108CVE-2025-71109CVE-2025-71111CVE-2025-71112CVE-2025-71113CVE-2025-71114CVE-2025-71115CVE-2025-71116CVE-2025-71117CVE-2025-71118CVE-2025-71119CVE-2025-71120CVE-2025-71121CVE-2025-71122CVE-2025-71123CVE-2025-71124CVE-2025-71125CVE-2025-71126CVE-2025-71130CVE-2025-71131CVE-2025-71132CVE-2025-71133CVE-2025-71135CVE-2025-71136CVE-2025-71137CVE-2025-71138CVE-2025-71140CVE-2025-71143CVE-2025-71146CVE-2025-71147CVE-2025-71148CVE-2025-71150CVE-2025-71151CVE-2025-71153CVE-2025-71154CVE-2025-71156CVE-2025-71157CVE-2026-23091CVE-2026-23112CVE-2026-23209CVE-2026-23231CVE-2026-23273 CVSS 7.8 2026-05-07 15:16 UTC · 2026-05-07 12:16 -03

Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission checks in certain situations. A local attacker could possibly use this to gain elevated pr…

Ubuntu CVE-2023-2640CVE-2023-32629CVE-2026-23112CVE-2026-23273 CVSS 7.8 2026-05-07 15:01 UTC · 2026-05-07 12:01 -03

Michał Majchrowicz discovered that Vim’s zip plugin could overwrite arbitrary files. An attacker could possibly use this issue to delete sensitive data or execute arbitrary code. This issue only affected Ubuntu 26.04 LTS. (CVE-2026-35177) …

Ubuntu CVE-2026-35177CVE-2026-39881CVE-2026-41411 CVSS 7.8 2026-05-07 14:58 UTC · 2026-05-07 11:58 -03