Lucene search
K

280 matches found

OSV
OSV
added 2025/09/05 12:52 p.m.3 views

CLSA-2025-1757076749 Fix CVE(s): CVE-2025-54574

SECURITY UPDATE: Disable URN protocol access to prevent potential security vulnerabilities - debian/patches/CVE-2025-54574.patch: Add ACL rules to deny URN protocol access by default - CVE-2025-54574...

9.8CVSS7.3AI score0.22744EPSS
Exploits1References1
OSV
OSV
added 2025/09/03 7:36 p.m.4 views

CLSA-2025-1756928197 Fix CVE(s): CVE-2025-26603

SECURITY UPDATE: fix use-after-free vulnerability in buffer closing - debian/patches/CVE-2025-26603.patch: Fix heap use-after-free in strtoreg - CVE-2025-26603...

4.2CVSS6.2AI score0.00223EPSS
Exploits0References1
OSV
OSV
added 2025/09/02 4:24 p.m.5 views

CLSA-2025-1756830276 Fix CVE(s): CVE-2024-47252

SECURITY UPDATE: insufficient escaping of user-supplied data in logging configurations - debian/patches/CVE-2024-47252.patch: Escape ssl vars to prevent potential security vulnerabilities - CVE-2024-47252...

7.5CVSS7.1AI score0.00669EPSS
Exploits0References1
OSV
OSV
added 2025/08/22 4:15 p.m.1 views

DEBIAN-CVE-2025-38675

In the Linux kernel, the following vulnerability has been resolved: xfrm: state: initialize stateptrs earlier in xfrmstatefind In case of preemption, xfrmstatelookat will find a different pcpuid and look up states for that other CPU. If we matched a state for CPU2 in the statecache while the look...

4.7CVSS4.8AI score0.00101EPSS
Exploits0References1
OSV
OSV
added 2025/08/16 2:15 p.m.3 views

DEBIAN-CVE-2023-32249

In the Linux kernel, the following vulnerability has been resolved: ksmbd: not allow guest user on multichannel This patch return STATUSNOTSUPPORTED if binding session is guest...

5.5CVSS5.6AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 7:26 p.m.4 views

CLSA-2025-1755113204 Fix CVE(s): CVE-2025-29088

SECURITY UPDATE: denial of service issue due to incorrect memory allocations - debian/patches/CVE-2025-29088.patch: harden the SQLITEDBCONFIGLOOKASIDE interface against misuse, such as described in forum post 48f365daec Enhancements to the SQLITEDBCONFIGLOOKASIDE documentation - CVE-2025-29088...

5.6CVSS6.6AI score0.00179EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 2:15 p.m.2 views

DEBIAN-CVE-2025-55154

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage in coders/png.c are unsafe and can overflow, leading to memory corruption. This issue has been patched in...

7.8CVSS8AI score0.00933EPSS
Exploits1References1
OSV
OSV
added 2025/08/13 2:15 p.m.2 views

DEBIAN-CVE-2025-55004

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This c...

4.3CVSS5.6AI score0.00503EPSS
Exploits1References1
OSV
OSV
added 2025/08/11 7:27 p.m.5 views

CLSA-2025-1754940449 Fix CVE(s): CVE-2024-46901

SECURITY UPDATE: Insufficient validation of filenames against control characters in repositories served via moddavsvn - debian/patches/CVE-2024-46901.patch: fix moddavsvn denial-of-service via control characters in paths...

4.3CVSS6.1AI score0.01943EPSS
Exploits1References1
OSV
OSV
added 2025/08/05 4:31 p.m.4 views

CLSA-2025-1754411479 Fix CVE(s): CVE-2025-48384

SECURITY UPDATE: security vulnerability - debian/patches/CVE-2025-48384.patch: quote values containing CR character in config to prevent unintended stripping of CR - CVE-2025-48384...

8CVSS7.1AI score0.02775EPSS
Exploits9References1
OSV
OSV
added 2025/08/04 8:16 p.m.4 views

CLSA-2025-1754338599 Fix CVE(s): CVE-2025-6965

SECURITY UPDATE: aggregate term exceeding column count vulnerability - debian/patches/CVE-2025-6965.patch: fix a potential memory corruption if the number of aggregate terms in a query exceeds the maximum number of columns - CVE-2025-6965...

7.7CVSS6.7AI score0.73495EPSS
Exploits3References1
OSV
OSV
added 2025/07/29 2:36 p.m.5 views

CLSA-2025-1753799801 Fix CVE(s): CVE-2025-32462

SECURITY UPDATE: unauthorized command execution on remote hosts - debian/patches/CVE-2025-32462.patch: restrict user from setting remote host for command unless listing privileges - CVE-2025-32462...

8.8CVSS7AI score0.03239EPSS
Exploits12References1
OSV
OSV
added 2025/07/22 5:59 p.m.6 views

CLSA-2025-1753207140 Fix CVE(s): CVE-2025-48384

SECURITY UPDATE: security vulnerability discovered - debian/patches/CVE-2025-48384.patch: quote values containing CR character in config to prevent unintentional stripping when reading - CVE-2025-48384...

8CVSS7.1AI score0.02775EPSS
Exploits9References1
OSV
OSV
added 2025/07/21 6:4 p.m.3 views

CLSA-2025-1753121050 Fix CVE(s): CVE-2025-48384

SECURITY UPDATE: security vulnerability addressed - debian/patches/CVE-2025-48384.patch: quote values containing CR character to prevent unintended behavior - CVE-2025-48384...

8CVSS7AI score0.02775EPSS
Exploits9References1
OSV
OSV
added 2025/07/10 8:15 a.m.5 views

DEBIAN-CVE-2025-38279

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not include stack ptr register in precision backtracking bookkeeping Yi Lai reported an issue 1 where the following warning appears in kernel dmesg: 60.643604 verifier backtracking bug 60.643635 WARNING: CPU: 10 PID: 2315...

7.8CVSS5.7AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/07/04 2:15 p.m.1 views

DEBIAN-CVE-2025-38206

In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayedfree The double free could happen in the following path. exfatcreateupcasetable exfatcreateupcasetable : return error exfatfreeupcasetable : free -volutbl exfatloaddefaultupcasetable : return erro...

7.8CVSS5.7AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2025/06/24 4:0 p.m.4 views

CLSA-2025-1750780819 Fix CVE(s): CVE-2025-31651

SECURITY UPDATE: Improper Neutralization of Escape, Meta, or Control Sequences vulnerability - debian/patches/CVE-2025-31651.patch: Enforces rewrite rules to preventing bypass of security constraints in specific configurations - CVE-2025-31651...

9.8CVSS7AI score0.0418EPSS
Exploits1References1
OSV
OSV
added 2025/06/24 1:57 p.m.3 views

CLSA-2025-1750752721 Fix CVE(s): CVE-2025-24813

SECURITY UPDATE: Remote code execution - debian/patches/CVE-2025-24813.patch: Delete temporary file right after finishing request processing - CVE-2025-24813...

10CVSS7.4AI score0.99945EPSS
Exploits46References1
OSV
OSV
added 2025/06/18 11:15 a.m.4 views

DEBIAN-CVE-2022-50186

In the Linux kernel, the following vulnerability has been resolved: ath11k: fix missing skb drop on htctxcompletion error On htctxcompletion error the skb is not dropped. This is wrong since the completionhandler logic expect the skb to be consumed anyway even when an error is triggered. Not...

5.5CVSS5.2AI score0.00201EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 11:15 a.m.1 views

DEBIAN-CVE-2022-50050

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Fix potential buffer overflow by snprintf snprintf returns the would-be-filled size when the string overflows the given buffer size, hence using this value may result in the buffer overflow although it's...

7.8CVSS5.6AI score0.00179EPSS
Exploits0References1
Rows per page
Query Builder