Lucene search
K

63145 matches found

RedhatCVE
RedhatCVE
added 2026/05/15 12:57 p.m.14 views

CVE-2026-41684

A flaw was found in Incus, a system container and virtual machine manager. An authenticated user with permissions to import instance backups could craft a malicious backup archive. This archive, containing a valid inline configuration but a malformed legacy backup file, could cause the Incus daem...

6.5CVSS5.8AI score0.00408EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/05/15 11:23 a.m.19 views

CVE-2026-43335

A flaw was found in the Linux kernel's interconnect driver for Qualcomm SM8450. The issue arises from unconverted dynamic IDs for platform interconnects, leading to a NULL pointer dereference in the icclinknodes function. This vulnerability can be triggered during runtime when a pointer to a...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/15 11:9 a.m.18 views

CVE-2026-43337

A flaw was found in the Linux kernel's drm/amd/display component. This flaw occurs because the dcn401inithw function does not properly validate a callback pointer updatebwboundingbox before use. This can lead to a NULL pointer dereference, potentially causing a system crash or denial of service...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/05/15 9:19 a.m.9 views

Security update for mozjs115

This update for mozjs115 fixes the following issues CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259728. CVE-2026-32777: libexpat: denial of service due to infinite loop in DTD content parsing bsc125971...

8.7CVSS5.8AI score0.00216EPSS
Exploits1References12
OSV
OSV
added 2026/05/15 7:56 a.m.12 views

CLSA-2026-1778787063 kernel: Fix of 122 CVEs

net: skbuff: propagate shared-frag marker through pskbcopy - mptcp: always handle address removal under msk socket lock CVE-2025-21875 - uprobes: Reject the shared zeropage in uprobewriteopcode CVE-2025-21881 - net: hns3: make sure ptp clock is unregister and freed if hclgeptpgetcycle returns an...

8.1CVSS6.5AI score0.13626EPSS
Exploits0References1
Hacker One
Hacker One
added 2026/05/15 2:27 a.m.32 views

Node.js: NULL pointer dereference in node:sqlite DatabaseSync#applyChangeset() via malformed SQLite changeset

Summary: A 19-byte malformed SQLite changeset passed to Node.js node:sqlite DatabaseSyncapplyChangeset causes a native NULL pointer dereference and terminates the Node.js process. Description: The built-in Node.js node:sqlite API exposes DatabaseSyncapplyChangesetchangeset, options, which accepts...

5.8AI score
Exploits0
Amazon
Amazon
added 2026/05/15 12:0 a.m.12 views

Low: glslang

Issue Overview: A vulnerability, which was classified as problematic, has been found in Khronos Group glslang 15.1.0. Affected by this issue is the function glslang::TIntermediate::isConversionAllowed of the file glslang/MachineIndependent/Intermediate.cpp. The manipulation leads to null pointer...

4.8CVSS4.7AI score0.00163EPSS
Exploits0
Redos
Redos
added 2026/05/15 12:0 a.m.6 views

ROS-20260515-73-0003

A vulnerability in the SDLinfo function of the Firebird database management system is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.00503EPSS
Exploits1
Redos
Redos
added 2026/05/15 12:0 a.m.8 views

ROS-20260515-73-0005

A vulnerability in the opcryptkeycallback function of the Firebird database management system is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

8.2CVSS5.8AI score0.00465EPSS
Exploits1
NVD
NVD
added 2026/05/14 8:17 p.m.14 views

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS0.00131EPSS
Exploits1References1
OSV
OSV
added 2026/05/14 8:17 p.m.10 views

DEBIAN-CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/05/14 8:17 p.m.11 views

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References2
OSV
OSV
added 2026/05/14 8:17 p.m.12 views

UBUNTU-CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References3
CVE
CVE
added 2026/05/14 7:59 p.m.25 views

CVE-2026-44638

CVE-2026-44638 affects the libsixel SIXEL encoder/decoder. A wrong NULL check after allocation in sixel_decode_raw and sixel_decode causes a NULL pointer dereference when allocation fails, enabling a denial-of-service for callers under low-memory conditions. The issue stems from testing the addre...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/14 7:59 p.m.12 views

CVE-2026-44638 libsixel: NULL pointer dereference

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00131EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/05/14 7:59 p.m.8 views

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00131EPSS
Exploits1
OSV
OSV
added 2026/05/14 7:41 p.m.7 views

CLSA-2026-1778787692 Fix CVE(s): CVE-2026-7258, CVE-2026-7262, CVE-2026-7568

SECURITY UPDATE: NULL pointer dereference in SOAP apache:Map decoder - debian/patches/CVE-2026-7262.patch: fix wrong variable checked in tozvalmap NULL check, changing if !xmlKey to if !xmlValue - CVE-2026-7262 SECURITY UPDATE: Signed integer overflow in metaphone char array offset -...

7.5CVSS5.9AI score0.0076EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 7:27 p.m.6 views

CLSA-2026-1778756832 kernel: Fix of 40 CVEs

fix: "vsock: Ignore signal/timeout on connect if already established CVE-2025-40248" - gfs2: Fix possible data races in gfs2showoptions CVE-2023-53622 - ALSA: 6fire: fix use-after-free on disconnect CVE-2026-31581 - nfnetlinkosf: validate individual option lengths in fingerprints CVE-2026-23397 -...

7.8CVSS6AI score0.00287EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 7:26 p.m.9 views

CLSA-2026-1778759582 kernel: Fix of 40 CVEs

fix: "vsock: Ignore signal/timeout on connect if already established CVE-2025-40248" - gfs2: Fix possible data races in gfs2showoptions CVE-2023-53622 - ALSA: 6fire: fix use-after-free on disconnect CVE-2026-31581 - nfnetlinkosf: validate individual option lengths in fingerprints CVE-2026-23397 -...

7.8CVSS6.5AI score0.00287EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 7:15 p.m.8 views

CLSA-2026-1778769697 kernel: Fix of 31 CVEs

net: skbuff: propagate shared-frag marker through pskbcopy - HID: ignore non-functional sensor in HP 5MP Camera CVE-2025-21992 - net: fix crash when config small gsomaxsize/gsoipv4maxsize CVE-2024-50258 - ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow CVE-2024-53042 - ALSA:...

7.8CVSS6.5AI score0.00266EPSS
Exploits2References1
Rows per page
Query Builder