Lucene search
+L

1469 matches found

Fedora
Fedora
added 2026/04/16 11:42 p.m.9 views

[SECURITY] Fedora 44 Update: kf6-baloo-6.25.0-1.fc44

A Tier 3 KDE Frameworks 6 module that provides indexing and search functional ity...

5.8AI score
Exploits0
OSV
OSV
added 2026/04/16 1:15 p.m.7 views

SUSE-SU-2026:21208-1 Security update for dovecot24

This update for dovecot24 fixes the following issues: - Update to v2.4.3 - CVE-2025-59028: Invalid base64 authentication can cause DoS for other logins bsc1260894. - CVE-2025-59031: decode2text.sh OOXML extraction may follow symlinks and read unintended files during indexing bsc1260895. -...

8.2CVSS5.8AI score0.0079EPSS
Exploits6References21
OSV
OSV
added 2026/04/16 1:10 p.m.7 views

OPENSUSE-SU-2026:20554-1 Security update for dovecot24

This update for dovecot24 fixes the following issues: - Update to v2.4.3 - CVE-2025-59028: Invalid base64 authentication can cause DoS for other logins bsc1260894. - CVE-2025-59031: decode2text.sh OOXML extraction may follow symlinks and read unintended files during indexing bsc1260895. -...

8.2CVSS5.8AI score0.0079EPSS
Exploits6References20
Redos
Redos
added 2026/04/14 12:0 a.m.8 views

ROS-20260414-73-0020

Vulnerability in kernel-lt related to unchecked array indexing. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...

7.8CVSS5.8AI score0.00154EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/13 12:51 p.m.3 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS6.7AI score0.00643EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/04/10 2:24 p.m.2 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS6.9AI score0.00643EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/04/10 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: grafana (UTSA-2026-007106)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007106 advisory. archive/zip uses a super-linear file name indexing algorithm that is invoked the first time a file in an archive is opened. This can lead to a denial of service when...

6.5CVSS6.8AI score0.00643EPSS
Exploits1References4
EUVD
EUVD
added 2026/04/09 8:23 p.m.7 views

EUVD-2026-21025

Wasmtime has host panic when Winch compiler executes table.fill...

5.9CVSS5.9AI score0.00358EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/09 8:23 p.m.14 views

Wasmtime has host panic when Winch compiler executes `table.fill`

Impact Wasmtime's Winch compiler contains a vulnerability where the compilation of the table.fill instruction can result in a host panic. This means that a valid guest can be compiled with Winch, on any architecture, and cause the host to panic. This represents a denial-of-service vulnerability i...

7.5CVSS5.9AI score0.00358EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/04/09 7:16 p.m.12 views

CVE-2026-34946

Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler contains a vulnerability where the compilation of the table.fill instruction can result in a host panic. This means that a valid guest can be compiled with Winch, on any architecture...

7.5CVSS0.00358EPSS
Exploits0References1
OSV
OSV
added 2026/04/09 7:16 p.m.5 views

UBUNTU-CVE-2026-34946

Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler contains a vulnerability where the compilation of the table.fill instruction can result in a host panic. This means that a valid guest can be compiled with Winch, on any architecture...

7.5CVSS5.8AI score0.00358EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/09 11:0 a.m.2 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS6.9AI score0.00643EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.7 views

PT-2026-31687

Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Winch compiler contains a vulnerability where the compilation of the table.fill instruction can result in a host panic. This means that a valid guest can be compiled with Winch, on any architecture...

5.9CVSS6AI score0.00358EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.9 views

Golang 1.25.x < 1.25.9 / 1.26.x < 1.26.2 Multiple Vulnerabilities

The version of Golang running on the remote host is 1.25.x prior to 1.25.9, or 1.26.x prior to 1.26.2. It is, therefore, affected by multiple vulnerabilities, including: - Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler...

9.8CVSS6.5AI score0.00658EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2026/04/08 11:26 p.m.7 views

SUSE CVE-2026-27143

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

7.4CVSS5.9AI score0.00536EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/04/08 5:18 p.m.4 views

CVE-2026-27143

A flaw was found in the cmd/compile package in the Go standard library. The compiler fails to correctly check for integer overflow or underflow in arithmetic operations involving loop induction variables. As a result, the compiler allows invalid memory indexing to occur at runtime, potentially...

9.8CVSS5.9AI score0.00536EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/08 3:32 a.m.6 views

EUVD-2026-20004

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

6AI score0.00536EPSS
Exploits0References5
NVD
NVD
added 2026/04/08 2:16 a.m.6 views

CVE-2026-27143

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

9.8CVSS0.00536EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/04/08 2:16 a.m.6 views

CVE-2026-27143

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

9.8CVSS6AI score0.00536EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/08 1:6 a.m.23 views

CVE-2026-27143 Missing bound checks can lead to memory corruption in safe Go in cmd/compile

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

0.00536EPSS
Exploits0References4
Rows per page
Query Builder