Lucene search
K

3030 matches found

AstraLinux
AstraLinux
โ€ขadded 2026/06/19 11:10 a.m.โ€ข5 views

Astra Linux โ€“ Vulnerability in libvpx

There is a heap overflow vulnerability in libvpx. Encoding a frame with dimensions larger than the originally configured size using VP9 may lead to a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or higher...

7.5CVSS6.9AI score0.00368EPSS
Exploits1References2
AstraLinux
AstraLinux
โ€ขadded 2026/06/19 11:10 a.m.โ€ข4 views

Astra Linux โ€“ Vulnerability in libde265

It was discovered that Libde265 v1.0.8 contains an unknown vulnerability through the ffhevcputhevcqpelh3v3sse function in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS attack using a specially crafted video file...

6.5CVSS6.6AI score0.00856EPSS
Exploits1References2
AstraLinux
AstraLinux
โ€ขadded 2026/06/19 11:10 a.m.โ€ข4 views

Astra Linux โ€“ Vulnerability in TIF format

LibTIFF 4.4.0 contains an out-of-bounds write vulnerability in TIFFmemcpy in libtiff/tifunix.c:346, when called from extractImageSection, located at tools/tiffcrop.c:6826. This vulnerability allows attackers to cause a denial-of-service attack through a crafted TIFF file. For users who compile...

6.5CVSS6.8AI score0.00949EPSS
Exploits1References2
OSV
OSV
โ€ขadded 2026/06/19 6:17 a.m.โ€ข6 views

DEBIAN-CVE-2026-56132

In libexpat before 2.8.2, there is a heap-based buffer overflow in doProlog in xmlparse.c because scaffold backing array reallocation is mishandled when there is data-structure sharing across parsers...

6.9CVSS6.1AI score0.00088EPSS
Exploits0References1
OSV
OSV
โ€ขadded 2026/06/19 6:17 a.m.โ€ข3 views

UBUNTU-CVE-2026-56131

libexpat before 2.8.2 lacks handler call depth tracking for calls to XMLResumeParser from within handlers in cases of a policy violation. Thus, a use-after-free can occur similar to the CVE-2026-50219 situation...

4.9CVSS5.8AI score0.00102EPSS
Exploits0References3
OSV
OSV
โ€ขadded 2026/06/18 2:17 p.m.โ€ข7 views

UBUNTU-CVE-2026-42489

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...

5.3CVSS5.8AI score0.00078EPSS
Exploits0References3
OSV
OSV
โ€ขadded 2026/06/18 2:17 p.m.โ€ข6 views

UBUNTU-CVE-2026-42490

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. To create and manage guests, domctl operations are used by the control domain, a possible Xenstore domain, or by a domain controlling a particular guest. Some of these...

6.5CVSS5.8AI score0.002EPSS
Exploits0References3
OSV
OSV
โ€ขadded 2026/06/18 1:55 p.m.โ€ข7 views

ROOT-APP-GOBINARY-CVE-2026-33816 CVE-2026-33816 in rootio-github.com/jackc/pgx/v5 - Patched by Root

Root has patched CVE-2026-33816 in the rootio-github.com/jackc/pgx/v5 package for Root:Go. Multiple fixed versions available...

9.8CVSS5.8AI score0.00561EPSS
Exploits0
OSV
OSV
โ€ขadded 2026/06/17 9:16 p.m.โ€ข4 views

UBUNTU-CVE-2026-48979

PHP Standard Library PSL is set of APIs covering async, collections, networking, I/O, cryptography, terminal UI, etc. In versions 6.1.0, 6.1.1 and 6.2.0, the Psl\H2\ServerConnection does not validate that the total bytes received in DATA frames match the content-length header declared in the...

7.5CVSS5.8AI score0.00267EPSS
Exploits0References2
OSV
OSV
โ€ขadded 2026/06/17 10:54 a.m.โ€ข5 views

UBUNTU-CVE-2026-46869

Vulnerability in the MySQL Shell product of Oracle MySQL component: Shell: Dump and Load. Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Shell...

6.5CVSS5.8AI score0.0018EPSS
Exploits0References2
OSV
OSV
โ€ขadded 2026/06/17 10:54 a.m.โ€ข4 views

UBUNTU-CVE-2026-46974

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.8. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...

7.5CVSS5.8AI score0.0014EPSS
Exploits0References2
OSV
OSV
โ€ขadded 2026/06/17 10:53 a.m.โ€ข4 views

UBUNTU-CVE-2026-46768

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: VMSVGA device. The supported version that is affected is 7.2.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

6CVSS5.8AI score0.0015EPSS
Exploits0References2
OSV
OSV
โ€ขadded 2026/06/17 7:48 a.m.โ€ข5 views

DEBIAN-CVE-2026-53613

Bulletin has no description...

5AI score
Exploits0References1
OSV
OSV
โ€ขadded 2026/06/17 6:11 a.m.โ€ข5 views

BELL-CVE-2026-46331

Bulletin has no description...

7.8CVSS4.9AI score0.00259EPSS
Exploits9References1
CVE
CVE
โ€ขadded 2026/06/16 4:50 p.m.โ€ข130 views

CVE-2026-4367

LibXpm vulnerability CVE-2026-4367: a local user can trigger an out-of-bounds read in xpmNextWord() while parsing XPM images, potentially crashing the process and causing DoS. Concrete details across connected docs show the flaw resides in libXpm, with impact limited to availability (I) and no co...

5.5CVSS4.7AI score0.00129EPSS
Exploits0References6
OSV
OSV
โ€ขadded 2026/06/16 1:16 p.m.โ€ข5 views

DEBIAN-CVE-2026-12295

Sandbox escape in the DOM: Navigation component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12...

9.6CVSS5.2AI score0.00393EPSS
Exploits0References1
OSV
OSV
โ€ขadded 2026/06/16 1:16 p.m.โ€ข3 views

UBUNTU-CVE-2026-12310

Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12...

7.5CVSS5.8AI score0.00252EPSS
Exploits0References5
CVE
CVE
โ€ขadded 2026/06/16 11:52 a.m.โ€ข21 views

CVE-2026-12325

CVE-2026-12325 is a denial-of-service vulnerability in the Graphics: ImageLib component. Affected products include Mozilla Firefox and Thunderbird; root cause and impact are described as DoS in ImageLib. The vulnerability is fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbir...

6.5CVSS5.2AI score0.00227EPSS
Exploits0References6Affected Software2
OSV
OSV
โ€ขadded 2026/06/15 8:16 p.m.โ€ข6 views

UBUNTU-CVE-2025-55648

A heap buffer overflow in the gfopusparsepacketheader function mediatools/avparsers.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS6.1AI score0.00235EPSS
Exploits1References2
OSV
OSV
โ€ขadded 2026/06/15 8:16 p.m.โ€ข7 views

UBUNTU-CVE-2025-55652

A heap buffer overflow in the gfisomvpconfignew function isomedia/avcext.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS6.1AI score0.00202EPSS
Exploits1References2
Rows per page
Query Builder