This site uses cookies for analytics and to improve your experience. By clicking Accept, you consent to our use of cookies. Learn more in our privacy policy.

Home
About
System Admin
Tech
Home Lab
Rambles
Deals
Lifestyle
Threats
Weekly Digest
Advisories
Security
Phishing Updates
Image Scraper
Contact

Security Advisory – 24 Feb 2026

Security fixes and advisories. The feed was updated 24 Feb 2026 11:00 GMT.

Top items

Ubuntu

USN-8057-1: GIMP vulnerabilities

Multiple GIMP parsers could be triggered by maliciously-crafted files to cause out-of-bounds writes and indexing errors. An attacker could possibly use these issues to cause a denial of service or execute arbitrary code in affected Ubuntu releases.

  • Published: 23 Feb 2026 20:09 GMT
  • CVEs: CVE-2017-17785, CVE-2025-2761, CVE-2025-10922, CVE-2025-14425, CVE-2025-15059
  • Notes: maliciously-crafted files can cause out-of-bounds writes

USN-8051-2: libssh vulnerabilities

Multiple issues in libssh affected clients and SCP/SFTP handling, including crashes and path sanitisation errors. Remote or local attackers could cause denial of service, overwrite files outside the working directory or possibly execute arbitrary code.

  • Published: 23 Feb 2026 19:56 GMT
  • CVEs: CVE-2025-8277, CVE-2026-0964, CVE-2026-0965, CVE-2026-0966, CVE-2026-0967, CVE-2026-0968
  • Notes: SCP client could overwrite files outside of the working directory

USN-8056-1: U-Boot vulnerabilities

U-Boot parsing and filesystem handling errors could be triggered by specially crafted DHCP responses and malformed squashfs or EXT4 images. An attacker could obtain sensitive memory contents, cause crashes resulting in denial of service, or possibly execute arbitrary code.

  • Published: 23 Feb 2026 13:04 GMT
  • CVEs: CVE-2024-42040, CVE-2024-57254, CVE-2024-57255, CVE-2024-57256, CVE-2024-57257, CVE-2024-57258
  • Notes: attacker on the local network could obtain sensitive memory contents

USN-8055-1: Evolution Data Server vulnerability

Evolution Data Server incorrectly handled removing local cache files which could be abused. An attacker could possibly use this issue to cause Evolution Data Server to remove arbitrary files.

  • Published: 23 Feb 2026 12:50 GMT
  • CVEs: Not stated in the advisory excerpt
  • Notes: could remove arbitrary files

USN-8054-1: DjVuLibre vulnerabilities

DjVuLibre could be forced to execute a division by zero and mishandle memory operations when processing crafted files. A remote attacker could cause applications to stop responding or crash, or possibly execute arbitrary code on affected older releases.

  • Published: 23 Feb 2026 12:38 GMT
  • CVEs: CVE-2021-46312, CVE-2025-53367
  • Notes: execute a division by zero
0
0
0
0
Total
0
Shares
Share 0
Tweet 0
Pin it 0
Share 0
Tags:
Advisories
Home Lab
Real Life
Security
System Admin
Tech
Technology
Threats

Related posts

Self-hosted automation: designing for reproducible builds

A dark lab build only works when the same input gives the same image every time, and an automated build pipeline is only useful if it is boring in all the right places. Pin everything, trust nothing...

Vector | vdev-v0.3.1

Vector vdev v0 3 1: patch release with reliability fixes, upgrade and migration guidance, CI and packaging updates, assets and changelog available

NocoDB | 2026.04.1

NocoDB 2026 04 1: Bugfix release fixes webhooks, UI rendering, links, markdown and DB issues, workspace creation restricted, admins must grant Org Creator