Lucene search
K

1517 matches found

Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.16 views

PT-2026-42473

Name of the Vulnerable Software and Affected Versions gdk-pixbuf-loader-libheif versions prior to 1.22.2-1.1 Description An integer underflow leads to an out-of-bounds OOB memory access. This issue was discovered using AI-assisted fuzzing, a technique that uses artificial intelligence to...

5.8AI score0.00035EPSS
Exploits0References52
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: cdrom: The check for lastmediachange has been rearranged to avoid unintentional overflow. When running syzkaller with the newly reintroduced signed integer wrap sanitizer, we encounter this error: 366.015950 UBSAN:...

7.8CVSS6.4AI score0.00236EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: Added a NULL check in BE reparenting. A NULL check was also added to the dpcmbereparent API, to handle kernel NULL pointer dereferencing errors. This issue occurred during fuzzing tests...

5.5CVSS6.2AI score0.00235EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: ath5k: The OOB issue in ath5keepromreadpcalinfo5111 has been fixed. The bug was discovered during fuzzing. The stack trace indicates that the issue lies in ath5keepromconvertpcalinfo5111. When no curve is selected in the loop, th...

7.1CVSS6.2AI score0.00248EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: media: mceusb: Use the new usbcontrolmsg routines. Automatic kernel fuzzing led to a WARN message regarding an invalid pipe direction in the mceusb driver: ------------ Cut here ------------ usb 6-1: BOGUS control dir, pipe...

5.5CVSS6AI score0.00148EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: UDF: Detection of system inodes linked into the directory hierarchy When the UDF filesystem is corrupted, hidden system inodes may be linked into the directory hierarchy. This can lead to further serious corruption of the...

6AI score0.00202EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/05/20 12:0 a.m.10 views

FuzzingBrain V2: A Multi-Agent LLM System for Automated Vulnerability Discovery and Reproduction

Software vulnerabilities pose critical security threats, with nearly 50,000 CVEs reported in 2025. While Large Language Models LLMs show promise for automated vulnerability detection, three key challenges remain. First, LLM-generated vulnerability reports suffer from high false positive rates and...

5.9AI score
Exploits0
OSV
OSV
added 2026/05/18 12:4 a.m.22 views

OSV-2026-762 Heap-buffer-overflow in coap_pdu_parse_header

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=513783540 Crash type: Heap-buffer-overflow READ 1 Crash state: coappduparseheader coappduparse2 coappduparse...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/17 12:0 a.m.12 views

Fedora 42 : coturn (2026-dfa8ea5809)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-dfa8ea5809 advisory. Coturn 4.11.0 - Fix prometheus response memory leak introduced in 4.10.0 - Use constant-time compare for STUN MESSAGE-INTEGRITY HMAC - Fix format-string...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/17 12:0 a.m.13 views

Fedora 44 : coturn (2026-3b3139882c)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-3b3139882c advisory. Coturn 4.11.0 - Fix prometheus response memory leak introduced in 4.10.0 - Use constant-time compare for STUN MESSAGE-INTEGRITY HMAC - Fix format-string...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/17 12:0 a.m.16 views

Fedora 43 : coturn (2026-f0fbd93125)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-f0fbd93125 advisory. Coturn 4.11.0 - Fix prometheus response memory leak introduced in 4.10.0 - Use constant-time compare for STUN MESSAGE-INTEGRITY HMAC - Fix format-string...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/16 12:7 a.m.9 views

OSV-2026-743 UNKNOWN READ in persist_target.c

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=513282269 Crash type: UNKNOWN READ Crash state: persisttarget.c...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/14 12:21 a.m.8 views

OSV-2026-736 Heap-buffer-overflow in coap_pdu_parse_header

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=512517700 Crash type: Heap-buffer-overflow READ 1 Crash state: coappduparseheader coappduparse2 coappduparse...

5.8AI score
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/05/14 12:0 a.m.28 views

Wapiti Web Application Vulnerability Scanner 3.3.0

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities. This is the source code release...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/14 12:0 a.m.11 views

FuzzAgent: Multi-Agent System for Evolutionary Library Fuzzing

Library fuzzing is essential for hardening the software supply chain, but adopting it at scale remains expensive. Practitioners still spend substantial effort on environment setup, struggle to generate harnesses that respect intricate API constraints, and lack reliable means to tell genuine libra...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/14 12:0 a.m.68 views

PickleFuzzer: A Case Study in Fuzzing for Discrepancies between Python Pickle Implementations

Python's native serialization protocol, pickle, is a powerful but insecure format for transferring untrusted data. It is frequently used, especially for saving machine learning models, despite known security challenges. While developers sometimes mitigate this risk by restricting imports during...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/13 12:0 a.m.18 views

No Attack Required: Semantic Fuzzing for Specification Violations in Agent Skills

LLM-powered agents can silently delete documents, leak credentials, or transfer funds on a routine user request, not because the agent was attacked, but because the skill it invoked broke its own declared safety rules. We call these specification violations: benign inputs cause a skill to breach...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/11 12:0 a.m.10 views

Agentic Fuzzing: Opportunities and Challenges

Fuzzers and static analyzers find many bugs but struggle with logic bugs in mature codebases. Triggering such a bug often requires multi-step reasoning that produces no distinctive execution feedback, and variants can appear across implementations too different for a single pattern to match. Rece...

6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/10 6:4 a.m.140 views

kernel-exploit-intelligence

🐧 Kernel Exploit Intelligence KEI !KEI Logo./assets/logo...

5.9AI score0.92766EPSS
Exploits20
Packet Storm News
Packet Storm News
added 2026/05/10 12:0 a.m.9 views

Position: AI Security Policy Should Target Systems, Not Models

We present swarm-attack, an open-source adversarial testing framework in which multiple lightweight LLM agents coordinate through shared memory, parallel exploration, and evolutionary optimization. Together, our results demonstrate that both safety bypass of frontier models and software...

5.9AI score
Exploits0
Rows per page
Query Builder