Lucene search
+L

313 matches found

Vulnrichment
Vulnrichment
added 2026/05/14 7:59 p.m.15 views

CVE-2026-44638 libsixel: NULL pointer dereference

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/14 7:59 p.m.37 views

CVE-2026-44638 libsixel: NULL pointer dereference

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS0.00131EPSS
Exploits1References1
OSV
OSV
added 2026/05/14 7:59 p.m.4 views

CVE-2026-44638 libsixel: NULL pointer dereference

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS6AI score0.00131EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.22 views

PT-2026-41034

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixel decode raw and sixel decode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References2
Fedora
Fedora
added 2026/04/25 1:52 a.m.11 views

[SECURITY] Fedora 44 Update: nginx-1.28.3-1.fc44

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

8.8CVSS8.6AI score0.21621EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/30 12:0 a.m.3 views

Security update for libjxl (moderate)

openSUSE Security Update: Security update for libjxl Announcement ID: openSUSE-SU-2026:0107-1 Rating: moderate References: 1258090 Cross-References: CVE-2025-12474 CVSS scores: CVE-2025-12474 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: openSUSE...

6.9CVSS5.9AI score0.00101EPSS
Exploits0References1
Citrix
Citrix
added 2026/03/18 4:41 p.m.13 views

XenServer Security Update for CVE-2026-4397

Severity: Medium Description of Problem An issue has been identified in XenServer 8.4 which, when starting a VM on a host with limited available memory, may allow a privileged user in that newly starting VM to access memory data of a previously terminated VM. This issue has the following...

5.7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/11 4:25 p.m.4 views

SUSE CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/07 1:44 a.m.6 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References1
Snyk
Snyk
added 2026/03/06 10:54 p.m.7 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion in the qjs interpreter when executed with the -m option and a low memory limit. An attacker can trigger an out-of-memory condition followed by an assertion failure during runtime cleanup by providing crafted JavaScri...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2026/03/06 8:16 p.m.5 views

UBUNTU-CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.7 views

QuickJS 安全漏洞

QuickJS is a small and embeddable JavaScript engine developed by the QuickJS open-source project. The QuickJS 2025-09-13 version contains a security vulnerability. This vulnerability arises from improper memory release when processing specially crafted JavaScript inputs under low memory...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/06 12:0 a.m.4 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/06 12:0 a.m.33 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

0.00284EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/06 12:0 a.m.2 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38122)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38122 advisory. - In the Linux kernel, the following vulnerability has been resolved: gve: add missing NULL check for...

5.5CVSS5.3AI score0.00156EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/01/14 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for brotli (EulerOS-SA-2026-1083)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00509EPSS
Exploits0References2
Fedora
Fedora
added 2026/01/11 12:55 a.m.15 views

[SECURITY] Fedora 42 Update: nginx-1.28.1-3.fc42

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.4 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when launching a secure application on a device with insufficient memory...

7.8CVSS6.8AI score0.00072EPSS
Exploits0References1
Fedora
Fedora
added 2026/01/04 1:3 a.m.12 views

[SECURITY] Fedora 42 Update: nginx-1.28.1-1.fc42

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

6.3CVSS6.7AI score0.00394EPSS
Exploits0
Rows per page
Query Builder