Lucene search
K

7030 matches found

RedhatCVE
RedhatCVE
added 2026/06/26 3:10 p.m.8 views

CVE-2026-52962

A flaw was found in the Linux kernel, specifically within the Ceph file system's extended attribute handling. A buffer leak occurs in the cephsetxattr function because a previously allocated buffer oldblob is not properly released. This can lead to resource exhaustion over time, potentially causi...

5.5CVSS5.9AI score0.00184EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 9:39 a.m.6 views

CVE-2026-53218

A flaw was found in the Linux kernel's netfilter component. This vulnerability occurs in the nftexthdr module when handling user-controlled data lengths with a specific flag, NFTEXTHDRFPRESENT, enabled. An attacker could exploit this by providing a crafted input, leading to the exposure of...

7CVSS5.8AI score0.00128EPSS
Exploits0References4
Redos
Redos
added 2026/06/26 12:0 a.m.4 views

ROS-20260626-73-0011

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to reading data beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS6.2AI score0.00499EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/25 10:58 p.m.4 views

CVE-2026-49943

A flaw was found in the BIRD Internet Routing Daemon. An established BGP Border Gateway Protocol peer can send a specially crafted BGP UPDATE message containing an unusually long ASPATH Autonomous System Path attribute. When a BIRD filter evaluates an AS path mask expression, this can lead to a...

6.3CVSS6.3AI score0.003EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2026/06/25 6:18 p.m.4 views

CVE-2026-53041

A flaw was found in the Linux kernel's Oracle Cluster File System version 2 OCFS2. When an OCFS2 inode has both inline and and block-based extended attributes xattrs, the listxattr function can return a size larger than the caller's buffer. This incorrect size handling can lead to a kernel bug an...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/25 6:18 p.m.7 views

Moderate: Red Hat Security Advisory: libxslt security update

An update for libxslt is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.5CVSS5.9AI score0.00161EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/25 4:16 p.m.3 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS5.8AI score0.00374EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/06/25 1:1 p.m.5 views

CVE-2026-52690

Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server to fail...

5.9CVSS5.8AI score0.00352EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/06/25 1:1 p.m.9 views

CVE-2026-52690

Spoofing replies to Recursor might mark an IP of an authoritative server as not supporting EDNS, causing valdiation of DNSSEC records served by that server to fail...

5.9CVSS5.8AI score0.00352EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/25 11:42 a.m.7 views

Important: Red Hat Security Advisory: perl-IO-Compress security update

An update for perl-IO-Compress is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.3CVSS6.2AI score0.00292EPSS
Exploits2References2
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53215

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP or skb use The RX error path returns the current descriptor buffer to the hardware BM pool. That is only valid while the driver still owns the buffer. mvpp2rxrefill can fail after the...

9.8CVSS5.9AI score0.00546EPSS
Exploits0References10
EUVD
EUVD
added 2026/06/25 8:38 a.m.4 views

EUVD-2026-39242

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the SACK table for parsing Fix modification of the received skbuff in rxrpcinputsoftacks and a potential incorrect access of the buffer in a fragmented UDP packet the packet would probably hav...

6AI score0.00497EPSS
Exploits0References3
Redos
Redos
added 2026/06/25 12:0 a.m.4 views

ROS-20260625-73-0019

The vulnerability of the DOM component in Firefox web browsers, Firefox ESR, and the Thunderbird email client is related to the use of memory after it is released. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protecte...

7.5CVSS5.8AI score0.00317EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53041

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ocfs2: fix listxattr handling when the buffer is full BUG If an OCFS2 inode has both inline and block- based xattrs, listxattr can return a size larger than the...

7.1CVSS6.2AI score0.00126EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.8 views

PT-2026-52247

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ACK parser of the rxrpc module. In the rxrpc input soft acks function, the AF RXRPC component incorrectly assumes that calling skb condense will always result in a...

9.8CVSS5.9AI score0.00497EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38827

In the Linux kernel, the following vulnerability has been resolved: virt: sev-guest: Do not use host-controlled page order in cleanup path When issuing an extended guest request SVMVMGEXITEXTGUESTREQUEST, getextreport allocates a buffer to retrieve a certificate blob from the host, keeping track ...

5.9AI score0.00093EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.4 views

CVE-2026-53041

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix listxattr handling when the buffer is full BUG If an OCFS2 inode has both inline and block-based xattrs, listxattr can return a size larger than the caller's buffer when the inline names consume that buffer exactly...

7.1CVSS0.00126EPSS
Exploits0References8
NVD
NVD
added 2026/06/24 5:17 p.m.9 views

CVE-2026-52959

In the Linux kernel, the following vulnerability has been resolved: virt: sev-guest: Do not use host-controlled page order in cleanup path When issuing an extended guest request SVMVMGEXITEXTGUESTREQUEST, getextreport allocates a buffer to retrieve a certificate blob from the host, keeping track ...

7.8CVSS0.00093EPSS
Exploits0References3
CVE
CVE
added 2026/06/24 4:29 p.m.6 views

CVE-2026-53045

CVE-2026-53045 concerns the Linux kernel memory subsystem, specifically the tegra124-emc component. The issue is that the check to determine whether DLL (Delay-Locked Loop) is enabled in the EMRS register was reversed: DLL is actually enabled when bit A0 is low. A fix to the check was applied in ...

9.8CVSS5.8AI score0.00521EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/24 4:28 p.m.27 views

CVE-2026-52962 ceph: fix a buffer leak in __ceph_setxattr()

In the Linux kernel, the following vulnerability has been resolved: ceph: fix a buffer leak in cephsetxattr The oldblob in cephsetxattr can store ci-ixattrs.preallocblob value during the retry. However, it is never called the cephbufferput for the oldblob object. This patch fixes the issue of the...

0.00184EPSS
Exploits0References8
Rows per page
Query Builder