Lucene search
K

31 matches found

OSV
OSV
added 2026/06/24 3:22 p.m.3 views

SUSE-SU-2026:22268-1 Security update for openssh

This update for openssh fixes the following issues Security fixes: - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions bsc1261441. - openssh...

8.2CVSS7.1AI score0.0218EPSS
Exploits0References6
OSV
OSV
added 2026/06/24 3:22 p.m.2 views

SUSE-SU-2026:22352-1 Security update for openssh

This update for openssh fixes the following issues Security fixes: - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions bsc1261441. - openssh...

8.2CVSS7.1AI score0.0218EPSS
Exploits0References6
OSV
OSV
added 2026/06/24 3:22 p.m.3 views

OPENSUSE-SU-2026:21044-1 Security update for openssh

This update for openssh fixes the following issues Security fixes: - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions bsc1261441. - openssh...

8.2CVSS7.1AI score0.0218EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.6 views

SUSE SLES12 Security Update : openssh8.4 (SUSE-SU-2026:2430-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2430-1 advisory. This update for openssh8.4 fixes the following issues - CVE-2026-3497: Information disclosure or denial of service due to uninitialized variabl...

8.2CVSS6.2AI score0.0218EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.6 views

SUSE SLES12 Security Update : openssh (SUSE-SU-2026:2395-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2395-1 advisory. This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables...

8.2CVSS7.1AI score0.0218EPSS
Exploits0References11
OSV
OSV
added 2026/06/17 10:51 a.m.4 views

SUSE-SU-2026:2430-1 Security update for openssh8.4

This update for openssh8.4 fixes the following issues - CVE-2026-3497: Information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. - CVE-2026-35388: omitted connection multiplexing...

8.2CVSS7.1AI score0.0218EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2026/06/15 2:34 p.m.6 views

Security update for openssh

This update for openssh fixes the following issues CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. CVE-2026-35414: mishandling of authorizedkeys principals...

7.5CVSS7.1AI score0.0218EPSS
Exploits0References14
OSV
OSV
added 2026/06/15 2:34 p.m.4 views

SUSE-SU-2026:2395-1 Security update for openssh

This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. - CVE-2026-35414: mishandling of authorizedkeys...

8.2CVSS5.3AI score0.0218EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.12 views

SUSE SLED15 / SLES15 Security Update : openssh (SUSE-SU-2026:2371-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2371-1 advisory. This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of servic...

8.2CVSS7.2AI score0.0218EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.7 views

SUSE SLES15 Security Update : openssh (SUSE-SU-2026:2375-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2375-1 advisory. This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialize...

8.2CVSS7.2AI score0.0218EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2026/06/11 4:6 p.m.10 views

Security update for openssh

This update for openssh fixes the following issues CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. CVE-2026-35388: omitted connection multiplexing...

7.5CVSS7.1AI score0.0218EPSS
Exploits0References18
OSV
OSV
added 2026/06/11 4:6 p.m.11 views

SUSE-SU-2026:2375-1 Security update for openssh

This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. - CVE-2026-35388: omitted connection multiplexing...

8.2CVSS5.3AI score0.0218EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2026/06/11 2:1 p.m.6 views

Security update for openssh

This update for openssh fixes the following issues CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. CVE-2026-35388: omitted connection multiplexing...

7.5CVSS7.1AI score0.0218EPSS
Exploits0References18
OSV
OSV
added 2026/06/11 2:1 p.m.6 views

SUSE-SU-2026:2371-1 Security update for openssh

This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables bsc1259642. - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. - CVE-2026-35388: omitted connection multiplexing...

8.2CVSS5.8AI score0.0218EPSS
Exploits0References10
OSV
OSV
added 2026/06/04 8:27 a.m.5 views

SUSE-SU-2026:22067-1 Security update for openssh

This update for openssh fixes the following issues: - CVE-2026-35388: Added missing askpass check for proxy-mode multiplexing sessions bsc1261441 - CVE-2026-3497: Fixed a possible information disclosure or denial of service due to uninitialized variables in gssapi patches bsc1259642 - Add patch t...

8.2CVSS5.4AI score0.0218EPSS
Exploits0References6
OSV
OSV
added 2026/05/28 3:2 p.m.7 views

SUSE-SU-2026:21875-1 Security update for openssh

This update for openssh fixes the following issues - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. - CVE-2026-35414: mishandling of authorizedkeys principals option bsc1261430. Changes for openssh: - Fix a potential issue when validating mac bsc1264568:...

8.1CVSS6AI score0.00419EPSS
Exploits0References6
OSV
OSV
added 2026/04/17 8:16 p.m.5 views

DEBIAN-CVE-2026-32105

xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code MAC signature of encrypted RDP packets when using the "Classic RDP Security" layer. While the sender correctly generates signatures, the receiving logic lacks th...

7.7CVSS5.3AI score0.00174EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/20 9:42 a.m.36 views

CVE-2024-35973 geneve: fix header validation in geneve[6]_xmit_skb

In the Linux kernel, the following vulnerability has been resolved: geneve: fix header validation in geneve6xmitskb syzbot is able to trigger an uninit-value in genevexmit 1 Problem : While most ip tunnel helpers like iptunnelgetdsfield uses skbprotocolskb, true, pskbinetmaypull is only using...

6.4AI score0.0025EPSS
Exploits0References8
CVE
CVE
added 2024/05/20 9:42 a.m.183 views

CVE-2024-35973

CVE-2024-35973 affects the Linux kernel's geneve code path. The issue arises from incomplete header validation in geneve_xmit_skb, where skb->protocol handling could leave pskb_inet_may_pull() with an uninitialized or unexpected value, potentially triggering an uninit-value during transmission...

5.5CVSS6.7AI score0.0025EPSS
Exploits0References12Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/20 9:42 a.m.18 views

CVE-2024-35973 geneve: fix header validation in geneve[6]_xmit_skb

In the Linux kernel, the following vulnerability has been resolved: geneve: fix header validation in geneve6xmitskb syzbot is able to trigger an uninit-value in genevexmit 1 Problem : While most ip tunnel helpers like iptunnelgetdsfield uses skbprotocolskb, true, pskbinetmaypull is only using...

6.8AI score0.0025EPSS
Exploits0References8
Rows per page
Query Builder