Lucene search
K

11468 matches found

OSV
OSV
added 2025/10/22 2:15 p.m.2 views

DEBIAN-CVE-2022-50559

In the Linux kernel, the following vulnerability has been resolved: clk: imx: scu: fix memleak on platformdeviceadd fails No error handling is performed when platformdeviceadd fails. Add error processing before return, and modified the return value...

5.2AI score0.00195EPSS
Exploits0References1
OSV
OSV
added 2025/10/22 2:15 p.m.2 views

DEBIAN-CVE-2022-50557

In the Linux kernel, the following vulnerability has been resolved: pinctrl: thunderbay: fix possible memory leak in thunderbaybuildfunctions The thunderbayaddfunctions will free memory of thunderbayfuncs when everything is ok, but thunderbayfuncs will not be freed when thunderbayaddfunctions...

5.2AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2025/10/22 2:15 p.m.3 views

UBUNTU-CVE-2022-50559

In the Linux kernel, the following vulnerability has been resolved: clk: imx: scu: fix memleak on platformdeviceadd fails No error handling is performed when platformdeviceadd fails. Add error processing before return, and modified the return value...

5.7AI score0.00195EPSS
Exploits0References7
OSV
OSV
added 2025/10/22 1:23 p.m.5 views

CVE-2022-50578 class: fix possible memory leak in __class_register()

In the Linux kernel, the following vulnerability has been resolved: class: fix possible memory leak in classregister If classaddgroups returns error, the 'cp-subsys' need be unregister, and the 'cp' need be freed. We can not call ksetunregister here, because the 'cls' will be freed in callback...

6.8AI score0.00223EPSS
Exploits0References11
OSV
OSV
added 2025/10/22 1:23 p.m.7 views

CVE-2022-50568 usb: gadget: f_hid: fix f_hidg lifetime vs cdev

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fix fhidg lifetime vs cdev The embedded struct cdev does not have its lifetime correctly tied to the enclosing struct fhidg, so there is a use-after-free if /dev/hidgN is held open while the gadget is deleted...

6.5AI score0.002EPSS
Exploits0References10
CVE
CVE
added 2025/10/22 1:23 p.m.12 views

CVE-2022-50566

CVE-2022-50566 affects the Linux kernel MTD subsystem. The description reports a fix for a device name leak that occurs when register_device() fails in add_mtd_device(), which can lead to a kmemleak unreferenced object being left (example: mtd0). The backtrace shows allocations and naming via kob...

6AI score0.00229EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/10/22 1:23 p.m.7 views

CVE-2022-50559 clk: imx: scu: fix memleak on platform_device_add() fails

In the Linux kernel, the following vulnerability has been resolved: clk: imx: scu: fix memleak on platformdeviceadd fails No error handling is performed when platformdeviceadd fails. Add error processing before return, and modified the return value...

0.00195EPSS
Exploits0References4
CVE
CVE
added 2025/10/22 1:23 p.m.11 views

CVE-2022-50559

CVE-2022-50559 affects the Linux kernel component clock: imx (scu). The issue is caused by missing error handling when platform_device_add() fails, leading to a memleak. The fix adds proper error processing before returning and adjusts the return value to reflect the error. The connected sources ...

6.2AI score0.00195EPSS
Exploits0References4
OSV
OSV
added 2025/10/22 1:23 p.m.5 views

CVE-2022-50559 clk: imx: scu: fix memleak on platform_device_add() fails

In the Linux kernel, the following vulnerability has been resolved: clk: imx: scu: fix memleak on platformdeviceadd fails No error handling is performed when platformdeviceadd fails. Add error processing before return, and modified the return value...

6.5AI score0.00195EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an invalid timer ID search loop limit in the posixtimeradd function, which could lead to an infinite loop...

5.9AI score0.00193EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from regmapaddirqchipfwnode not using the numconfigregs attribute, which could result in a null pointer dereference...

6.2AI score0.00193EPSS
Exploits0References4
OSV
OSV
added 2025/10/21 5:24 p.m.6 views

JLSEC-2025-174 An issue was discovered in GNU gettext 0.19.8

An issue was discovered in GNU gettext 0.19.8. There is a double free in defaultaddmessage in read-catalog.c, related to an invalid free in pogramparse in po-gram-gen.y, as demonstrated by lt-msgfmt...

9.8CVSS7.2AI score0.04293EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.6 views

AlmaLinux 8 : kernel-rt (ALSA-2025:18298)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:18298 advisory. kernel: ALSA: usb-audio: Validate UAC3 cluster segment descriptors CVE-2025-39757 kernel: ALSA: hda/ca0132: Fix buffer overflow in addtuningcontrol...

7.8CVSS7.7AI score0.00164EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987716)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987716 advisory. In the Linux kernel, the following vulnerability has been resolved: Revert wifi: mac80211: fix memory leak in ieee80211ifadd This reverts commit...

5.5CVSS6.1AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/20 10:30 p.m.10 views

CVE-2025-11946

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.4CVSS3.7AI score0.00329EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/20 9:27 p.m.19 views

CVE-2025-62425

MAS Matrix Authentication Service is a user management and authentication service for Matrix homeservers, written and maintained by Element. A logic flaw in matrix-authentication-service 0.20.0 through 1.4.0 allows an attacker with access to an authenticated MAS session to perform sensitive...

8.3CVSS6.8AI score0.00427EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/20 12:30 a.m.6 views

EUVD-2025-35010

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.1CVSS5.1AI score0.00329EPSS
Exploits1References6
OSV
OSV
added 2025/10/19 10:31 p.m.4 views

JLSEC-2025-155 GNOME GLib before 2.65.3 has an integer overflow, that might lead to an out-of-bounds write, in g_op...

GNOME GLib before 2.65.3 has an integer overflow, that might lead to an out-of-bounds write, in goptiongroupaddentries. NOTE: the vendor's position is "Realistically this is not a security issue. The standard pattern is for callers to provide a static list of option entries in a fixed number of...

7.8CVSS6.9AI score0.00567EPSS
Exploits1References3
NVD
NVD
added 2025/10/19 10:15 p.m.8 views

CVE-2025-11946

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.4CVSS0.00329EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/19 9:32 p.m.4 views

CVE-2025-11946 LogicalDOC Community Edition Add Contact frontend.jsp cross site scripting

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site...

5.1CVSS3.7AI score0.00329EPSS
Exploits1References5
Rows per page
Query Builder