Lucene search
K

310 matches found

ptsecurity
ptsecurity
added 2026/05/14 12:0 a.m.20 views

PT-2026-41034

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixel decode raw and sixel decode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References2
fedora
fedora
added 2026/04/25 1:52 a.m.10 views

[SECURITY] Fedora 44 Update: nginx-1.28.3-1.fc44

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

8.8CVSS8.6AI score0.21621EPSS
Exploits0
opensuse
opensuse
added 2026/03/30 12:0 a.m.3 views

Security update for libjxl (moderate)

openSUSE Security Update: Security update for libjxl Announcement ID: openSUSE-SU-2026:0107-1 Rating: moderate References: 1258090 Cross-References: CVE-2025-12474 CVSS scores: CVE-2025-12474 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: openSUSE...

6.9CVSS5.9AI score0.00101EPSS
Exploits0References1
citrix
citrix
added 2026/03/18 4:41 p.m.11 views

XenServer Security Update for CVE-2026-4397

Severity: Medium Description of Problem An issue has been identified in XenServer 8.4 which, when starting a VM on a host with limited available memory, may allow a privileged user in that newly starting VM to access memory data of a previously terminated VM. This issue has the following...

5.7AI score
Exploits0
susecve
susecve
added 2026/03/11 4:25 p.m.4 views

SUSE CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References3
redhatcve
redhatcve
added 2026/03/07 1:44 a.m.6 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References1
snyk
snyk
added 2026/03/06 10:54 p.m.4 views

Reachable Assertion

Overview Affected versions of this package are vulnerable to Reachable Assertion in the qjs interpreter when executed with the -m option and a low memory limit. An attacker can trigger an out-of-memory condition followed by an assertion failure during runtime cleanup by providing crafted JavaScri...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References2
osv
osv
added 2026/03/06 8:16 p.m.5 views

UBUNTU-CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References3
cvelist
cvelist
added 2026/03/06 12:0 a.m.32 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

0.00284EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2026/03/06 12:0 a.m.2 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References1
cnnvd
cnnvd
added 2026/03/06 12:0 a.m.7 views

QuickJS 安全漏洞

QuickJS is a small and embeddable JavaScript engine developed by the QuickJS open-source project. The QuickJS 2025-09-13 version contains a security vulnerability. This vulnerability arises from improper memory release when processing specially crafted JavaScript inputs under low memory...

7.5CVSS5.8AI score0.00284EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/03/06 12:0 a.m.4 views

CVE-2025-69654

A crafted JavaScript input executed with the QuickJS release 2025-09-13, fixed in commit fcd33c1afa7b3028531f53cd1190a3877454f6b3 2025-12-11,qjs interpreter using the -m option and a low memory limit can cause an out-of-memory condition followed by an assertion failure in JSFreeRuntime...

5.8AI score0.00284EPSS
Exploits1References2
nessus
nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38122)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38122 advisory. - In the Linux kernel, the following vulnerability has been resolved: gve: add missing NULL check for...

5.5CVSS5.3AI score0.00156EPSS
Exploits0References2
openvas
openvas
added 2026/01/14 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for brotli (EulerOS-SA-2026-1083)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00509EPSS
Exploits0References2
fedora
fedora
added 2026/01/11 12:55 a.m.12 views

[SECURITY] Fedora 42 Update: nginx-1.28.1-3.fc42

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

6.9AI score
Exploits0
cnnvd
cnnvd
added 2026/01/07 12:0 a.m.3 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when launching a secure application on a device with insufficient memory...

7.8CVSS6.8AI score0.00072EPSS
Exploits0References1
fedora
fedora
added 2026/01/04 1:3 a.m.10 views

[SECURITY] Fedora 42 Update: nginx-1.28.1-1.fc42

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

6.3CVSS6.7AI score0.00371EPSS
Exploits0
fedora
fedora
added 2026/01/03 12:42 a.m.7 views

[SECURITY] Fedora 43 Update: nginx-1.28.1-1.fc43

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...

6.3CVSS6.9AI score0.00371EPSS
Exploits0
osv
osv
added 2025/12/16 2:15 p.m.6 views

UBUNTU-CVE-2025-68198

In the Linux kernel, the following vulnerability has been resolved: crash: fix crashkernel resource shrink When crashkernel is configured with a high reservation, shrinking its value below the low crashkernel reservation causes two issues: 1. Invalid crashkernel resource objects 2. Kernel crash i...

5.7AI score0.00168EPSS
Exploits0References22
nvd
nvd
added 2025/12/04 4:16 p.m.5 views

CVE-2025-40245

In the Linux kernel, the following vulnerability has been resolved: nios2: ensure that memblock.currentlimit is set when setting pfn limits On nios2, with CONFIGFLATMEM set, the kernel relies on memblockgetcurrentlimit to determine the limits of memmap, in particular for maxlowpfn. Unfortunately,...

0.00179EPSS
Exploits0References6
Rows per page
Query Builder