684 matches found
CVE-2025-20054
Uncaught exception in the core management mechanism for some IntelR Processors may allow an authenticated user to potentially enable denial of service via local access...
Moderate: Red Hat Security Advisory: corosync security update
An update for corosync is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Moderate: Red Hat Security Advisory: git security update
An update for git is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
Moderate: Red Hat Security Advisory: libtasn1 security update
An update for libtasn1 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1510)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ALSA-2025:7444 Moderate: expat security update
Expat is a C library for parsing XML documents. Security Fixes: libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat CVE-2024-8176 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to th...
CVE-2025-46825 Kanboard has stored Cross-site Scripting vulnerability in project name
Kanboard is project management software that focuses on the Kanban methodology. Versions 1.2.26 through 1.2.44 have a Stored Cross-Site Scripting XSS Vulnerability in the name parameter of the http://localhost/?controller=ProjectCreationController&action=create form. This vulnerability allows...
CVE-2025-31206
The CVE-2025-31206 entry describes a type confusion issue in WebKit content processing that can cause an unexpected process crash. Connected advisories confirm this vulnerability affects WebKitGTK/WebKit-based components across multiple Linux distros (e.g., webkit2gtk) and related packages, with ...
CVE-2025-37880
In the Linux kernel, the following vulnerability has been resolved: um: work around schedyield not yielding in time-travel mode schedyield by a userspace may not actually cause scheduling in time-travel mode as no time has passed. In the case seen it appears to be a badly implemented userspace...
CVE-2025-37881
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed: Add NULL pointer check in astvhubinitdev The variable d-name, returned by devmkasprintf, could be NULL. A pointer check is added to prevent potential NULL pointer dereference. This is similar to the fix in...
CVE-2024-56523
creationtimestamp| type| source ---|---|--- 2025-05-08 03:23:21+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lomxjktb622g 2025-05-12 15:55:48+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114495674653335932 2025-05-12 18:37:21+00:00| seen|...
mod_auth_openidc:2.3 security update
An update is available for modauthopenidc, module.cjose, cjose, module.modauthopenidc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The modauthopenidc is an...
WordPress Widget Countdown plugin <= 2.7.4 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Widget Countdown versions = 2.7.4...
CVE-2025-21470
Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter...
CVE-2024-45566
CVE-2024-45566 concerns memory corruption in Qualcomm camera driver due to concurrent buffer access triggered by modification of the reference count. Multiple sources (NVD/Red Hat/CVE list) describe a use-after-free style memory corruption when references are modified while buffers are in use, wi...
CVE-2024-45565 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver
Memory corruption when blob structure is modified by user-space after kernel verification...
Moderate: Red Hat Security Advisory: xmlrpc-c security update
An update for xmlrpc-c is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
CVE-2023-53112
In the Linux kernel, the following vulnerability has been resolved: drm/i915/sseu: fix maxsubslices array-index-out-of-bounds access It seems that commit bc3c5e0809ae "drm/i915/sseu: Don't try to store EU mask internally in UAPI format" exposed a potential out-of-bounds access, reported by UBSAN ...
CVE-2023-53085 drm/edid: fix info leak when failing to get panel id
In the Linux kernel, the following vulnerability has been resolved: drm/edid: fix info leak when failing to get panel id Make sure to clear the transfer buffer before fetching the EDID to avoid leaking slab data to the logs on errors that leave the buffer unchanged...
CVE-2025-37753
In the Linux kernel, the following vulnerability has been resolved: s390/cpumf: Fix double free on error in cpumfpmueventinit In PMU event initialization functions - cpumsfpmueventinit - cpumfpmueventinit - cfdiageventinit the partially created event had to be removed when an error was detected...