Lucene search
+L

789 matches found

OSV
OSV
added 2026/05/08 2:16 p.m.10 views

UBUNTU-CVE-2026-43330

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix overflow on long hmac keys When a key longer than block size is supplied, it is copied and then hashed into the real key. The memory allocated for the copy needs to be rounded to DMA cache alignment, as otherwi...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References8
CVE
CVE
added 2026/05/08 1:31 p.m.21 views

CVE-2026-43330

CVE-2026-43330 relates to the Linux kernel crypto/caam path, where an overflow occurs when a long HMAC key (longer than the block size) is copied for hashing. The vulnerability arises because the copy’s allocated memory is aligned for DMA, and the original kmemdup path could read beyond the key b...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.12 views

PT-2026-38981

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An overflow occurs in the crypto caam component when a key longer than the block size is supplied. The system copies and hashes the key into the real key, but the memory allocated for th...

7.8CVSS6.1AI score0.00129EPSS
Exploits0
CVE
CVE
added 2026/05/06 7:40 a.m.30 views

CVE-2026-43078

The CVE-2026-43078 entry affects the Linux kernel crypto/af_alg component. A root-cause was an overflow in page reassignment within af_alg_pull_tsgl where the update to support page reallocation wasn’t fully reflected in the loop, allowing one extra page to be reassigned. The vulnerability is des...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
CloudLinux
CloudLinux
added 2026/05/02 12:53 a.m.13 views

php: Fix of 4 CVEs

CVE-2018-14883: fix integer overflow leading to heap buffer overflow in exifthumbnailextract - CVE-2019-19246: fix heap buffer overflow in oniguruma strlowercasematch - CVE-2018-19518: disable imap rsh/ssh by default to prevent argument injection imap.enableinsecurersh INI added - CVE-2018-20783:...

8.5CVSS6.9AI score0.9523EPSS
Exploits8
OSV
OSV
added 2026/04/24 3:16 p.m.9 views

DEBIAN-CVE-2026-31616

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fphonet: fix skb frags overflow in pnrxcomplete A broken/bored/mean USB host can overflow the skbsharedinfo-frags array on a Linux gadget exposing a Phonet function by sending an unbounded sequence of full-page OUT...

5.5CVSS5.3AI score0.00125EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/24 2:42 p.m.6 views

EUVD-2026-25509

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fphonet: fix skb frags overflow in pnrxcomplete A broken/bored/mean USB host can overflow the skbsharedinfo-frags array on a Linux gadget exposing a Phonet function by sending an unbounded sequence of full-page OUT...

5.4AI score0.00125EPSS
Exploits0References4
OSV
OSV
added 2026/04/21 1:41 p.m.9 views

CLSA-2026-1776778859 gstreamer1-plugins-base: Fix of CVE-2026-2921

CVE-2026-2921: fix integer overflow in RIFF palette handling...

7.8CVSS7.2AI score0.00867EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013346)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013346 advisory. In the Linux kernel, the following vulnerability has been resolved: loop: loopsetstatusfrominfo check before assignment In loopsetstatusfrominfo, lo-looffset and...

5.7AI score0.00242EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007594)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007594 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: avoid overflows in dirty throttling logic The dirty throttling logic is interspersed with...

4.4CVSS6.3AI score0.00244EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/13 3:31 p.m.2 views

EUVD-2026-21934

In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid overflows in ip6datagramsendctl Yiming Qian reported : I believe I found a locally triggerable kernel bug in the IPv6 sendmsg ancillary-data path that can panic the kernel via skbunderpanic local DoS. The core issue i...

5.7AI score0.00114EPSS
Exploits0References7
OSV
OSV
added 2026/04/13 2:16 p.m.7 views

UBUNTU-CVE-2026-31417

In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix overflow when accumulating packets Add a check to ensure that x25sock.fraglen does not overflow. The fraglen also needs to be resetted when purging fragmentqueue in x25clearqueues...

7.5CVSS6.1AI score0.00449EPSS
Exploits0References3
CVE
CVE
added 2026/04/13 1:21 p.m.25 views

CVE-2026-31417

The CVE-2026-31417 issue affects the Linux kernel’s net/x25 implementation. Affected component: x25_sock.fraglen can overflow during packet accumulation, with the root cause involving missing overflow checks and an incorrect fraglen reset when fragment_queue is purged in x25_clear_queues(). The p...

7.5CVSS5.8AI score0.00449EPSS
Exploits0References10Affected Software1
UbuntuCve
UbuntuCve
added 2026/04/13 12:0 a.m.6 views

CVE-2026-31417

In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix overflow when accumulating packets Add a check to ensure that x25sock.fraglen does not overflow. The fraglen also needs to be resetted when purging fragmentqueue in x25clearqueues...

7.5CVSS6.1AI score0.00449EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/03/25 4:56 p.m.7 views

SUSE CVE-2026-23323

In the Linux kernel, the following vulnerability has been resolved: hwmon: macsmc Fix regressions in Apple Silicon SMC hwmon driver The recently added macsmc-hwmon driver contained several critical bugs in its sensor population logic and float conversion routines. Specifically: - The voltage sens...

7.8CVSS5.8AI score0.00134EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/25 12:30 p.m.5 views

EUVD-2026-15276

In the Linux kernel, the following vulnerability has been resolved: hwmon: macsmc Fix regressions in Apple Silicon SMC hwmon driver The recently added macsmc-hwmon driver contained several critical bugs in its sensor population logic and float conversion routines. Specifically: - The voltage sens...

5.7AI score0.00134EPSS
Exploits0References3
OSV
OSV
added 2026/03/19 2:28 p.m.8 views

CLSA-2026-1773930526 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...

7.8CVSS7AI score0.00193EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: perf: armspe: Prevent overflow in PERFIDX2OFF By casting nrpages to unsigned long, an overflow can be avoided when handling large AUX buffer sizes = 2 GiB...

6.7AI score0.00193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005550)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005550 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with...

7.8CVSS6AI score0.00155EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005567)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005567 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection...

7.8CVSS6.9AI score0.0032EPSS
Exploits0References4
Rows per page
Query Builder