Lucene search
K

66515 matches found

Rockylinux
Rockylinux
added 2026/05/14 6:0 p.m.13 views

krb5 security update

An update is available for krb5. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kerberos is a network authentication system, which can improve the security of...

5.9CVSS5.8AI score0.00461EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/14 5:52 p.m.11 views

OpenEXR: OpenEXR: Arbitrary code execution and information disclosure via crafted EXR file

A flaw was found in OpenEXR, an image storage format for the motion picture industry. A remote attacker could exploit an integer overflow vulnerability in the internalexrundopiz function by providing a specially crafted EXR file. This flaw leads to out-of-bounds reads and writes, which may allow...

8.8CVSS6.3AI score0.00482EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/14 5:23 p.m.15 views

OpenEXR: OpenEXR: Arbitrary code execution and information disclosure via crafted EXR file

A flaw was found in OpenEXR, an image storage format for the motion picture industry. A remote attacker could exploit an integer overflow vulnerability in the internalexrundopiz function by providing a specially crafted EXR file. This flaw leads to out-of-bounds reads and writes, which may allow...

8.8CVSS6.3AI score0.00482EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/14 4:35 p.m.10 views

OpenEXR: OpenEXR: Arbitrary code execution and information disclosure via crafted EXR file

A flaw was found in OpenEXR, an image storage format for the motion picture industry. A remote attacker could exploit an integer overflow vulnerability in the internalexrundopiz function by providing a specially crafted EXR file. This flaw leads to out-of-bounds reads and writes, which may allow...

8.8CVSS6.3AI score0.00482EPSS
Exploits1References5
Snyk
Snyk
added 2026/05/14 3:22 p.m.12 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via integer wraparound in the allocation process. An attacker can execute arbitrary code or cause a segmentation fault by providing specially crafted, large-scale inputs to database functions. Remediation...

8.8CVSS7.7AI score0.00668EPSS
Exploits0References2
NVD
NVD
added 2026/05/14 2:16 p.m.20 views

CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS0.00668EPSS
Exploits0References28
OSV
OSV
added 2026/05/14 2:16 p.m.19 views

ALPINE-CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 2:16 p.m.5 views

UBUNTU-CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/14 2:16 p.m.12 views

CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References4
Snyk
Snyk
added 2026/05/14 1:18 p.m.9 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the escapeandappend function in the document-builder API when processing very large input strings on platforms with limited sizet width. An attacker can cause out-of-bounds memory reads, potentially...

6.9CVSS5.8AI score0.00279EPSS
Exploits0References2
OSV
OSV
added 2026/05/14 1:4 p.m.4 views

OPENSUSE-SU-2026:20727-1 Security update for chromium

This update for chromium fixes the following issues: Changes in chromium: - Chromium 148.0.7778.167 boo1265159 - Chromium 148 148.0.7778.96 promoted to stable boo1264175 CVE-2026-7896: Integer overflow in Blink CVE-2026-7897: Use after free in Mobile CVE-2026-7898: Use after free in Chromoting...

9.6CVSS6.1AI score0.00383EPSS
Exploits0References129
AlpineLinux
AlpineLinux
added 2026/05/14 1:0 p.m.10 views

CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/14 1:0 p.m.9 views

CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/14 1:0 p.m.8 views

CVE-2026-6473

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/14 1:0 p.m.17 views

EUVD-2026-30281

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/14 1:0 p.m.7 views

CVE-2026-6473 PostgreSQL server undersizes allocations, via integer wraparound

Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References1
CVE
CVE
added 2026/05/14 1:0 p.m.51 views

CVE-2026-6473

CVE-2026-6473 affects PostgreSQL server features where integer wraparound can cause undersized allocations and write out-of-bounds. An unprivileged database user could potentially execute arbitrary code as the OS user running the database, or trigger segmentation faults with gigabyte-scale inputs...

8.8CVSS6.2AI score0.00668EPSS
Exploits0References28Affected Software1
RedHat Linux
RedHat Linux
added 2026/05/14 12:9 p.m.7 views

GIMP: GIMP: Arbitrary code execution via specially crafted PSD file

A flaw was found in GIMP. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted PSD Photoshop Document file. This flaw is due to an integer overflow during the parsing of PSD files, which can lead to arbitrary code execution, allowing the attacker to run...

7.8CVSS7.4AI score0.00755EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/14 12:9 p.m.13 views

gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow

A flaw was found in GIMP. Remote attackers can exploit this vulnerability by tricking a user into opening a malicious XPM X PixMap image file. This can lead to an an integer overflow during file processing, allowing the attacker to execute arbitrary code on the affected system...

7.8CVSS7.5AI score0.00596EPSS
Exploits0References6
CVE
CVE
added 2026/05/14 10:27 a.m.17 views

CVE-2026-8295

The CVE-2026-8295 issue affects simdjson’s document-builder API, specifically the string_builder::escape_and_append() path. An integer overflow can occur when processing very large input strings on platforms with limited size_t width (e.g., 32-bit builds), causing insufficient buffer allocation a...

6.9CVSS5.9AI score0.00279EPSS
Exploits0References2
Rows per page
Query Builder