Lucene search
+L

288 matches found

nvd
nvd
added 2026/06/30 5:16 p.m.10 views

CVE-2026-10652

Zephyr's DNS resolver subsys/net/lib/dns parses resource records from DNS responses in dnsunpackanswer, which validated only the fixed RR header type, class, TTL, rdlength and accepted any attacker-declared rdlength, including one extending past the end of the received datagram. The TXT and SRV...

7.4CVSS0.00252EPSS
Exploits1References2
nessus
nessus
added 2026/06/28 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-53147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without...

8.1CVSS6.2AI score0.00283EPSS
Exploits0References3
mscve
mscve
added 2026/06/27 8:7 a.m.8 views

thunderbolt: Validate XDomain request packet size before type cast

...

8.1CVSS5.8AI score0.00283EPSS
Exploits0
susecve
susecve
added 2026/06/26 2:12 a.m.9 views

SUSE CVE-2026-53147

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

8.1CVSS5.9AI score0.00283EPSS
Exploits0References3
susecve
susecve
added 2026/06/26 2:8 a.m.8 views

SUSE CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

5.8AI score0.00127EPSS
Exploits0References3
nvd
nvd
added 2026/06/25 9:16 a.m.8 views

CVE-2026-53147

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

8.1CVSS0.00283EPSS
Exploits0References6
osv
osv
added 2026/06/25 9:16 a.m.7 views

UBUNTU-CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References7
osv
osv
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53147

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

8.1CVSS5.9AI score0.00283EPSS
Exploits0References9
attackerkb
attackerkb
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

5.8AI score0.00127EPSS
Exploits0References5Affected Software1
euvd
euvd
added 2026/06/25 8:39 a.m.9 views

EUVD-2026-39192

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

5.8AI score0.00127EPSS
Exploits0References4
cve
cve
added 2026/06/25 8:39 a.m.15 views

CVE-2026-53241

Summary: CVE-2026-53241 affects the Linux kernel ALSA sequencer dummy port. A local attacker could trigger a stack overread when handling Universal MIDI Packet (UMP) events due to copying a UMP-sized packet into legacy stack storage, leaving the UMP data truncated. The root cause is the dummy cli...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4Affected Software1
debiancve
debiancve
added 2026/06/25 8:38 a.m.7 views

CVE-2026-53147

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

8.1CVSS5.8AI score0.00283EPSS
Exploits0
cve
cve
added 2026/06/25 8:38 a.m.26 views

CVE-2026-53147

The CVE-2026-53147 issue affects the Linux kernel Thunderbolt XDomain handling. tb_xdp_handle_request() casts the received packet buffer to protocol-specific structs without confirming that the allocation is large enough for the target type. A peer could send a minimal XDomain packet that passes ...

8.1CVSS5.9AI score0.00283EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2026/06/25 8:38 a.m.7 views

EUVD-2026-39238

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

5.9AI score0.00283EPSS
Exploits0References6
cvelist
cvelist
added 2026/06/25 8:38 a.m.35 views

CVE-2026-53147 thunderbolt: Validate XDomain request packet size before type cast

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

8.1CVSS0.00283EPSS
Exploits0References6
osv
osv
added 2026/06/25 8:38 a.m.2 views

CVE-2026-53147 thunderbolt: Validate XDomain request packet size before type cast

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request packet size before type cast tbxdphandlerequest casts the received packet buffer to protocol-specific structs without verifying that the allocation is large enough for the target type. A peer...

8.1CVSS5.9AI score0.00283EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.5 views

PT-2026-52243

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the thunderbolt component where the tb xdp handle request function casts a received packet buffer to protocol-specific structs without verifying if the allocation is...

8.1CVSS6.1AI score0.00283EPSS
Exploits0References20
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.9 views

PT-2026-52336

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ALSA dummy sequencer port where events are forwarded by copying an incoming struct snd seq event into a stack temporary. Because the legacy event storage is smalle...

5.5CVSS6.1AI score0.00127EPSS
Exploits0References17
euvd
euvd
added 2026/06/24 7:14 a.m.13 views

EUVD-2026-38704

In the Linux kernel, the following vulnerability has been resolved: batman-adv: tvlv: reject oversized TVLV packets batadvtvlvcontainerogmappend builds a TVLV packet section from the tvlv.containerlist. The total size of this section is computed by batadvtvlvcontainerlistsize, which sums the size...

5.7AI score0.00247EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2026/06/10 8:19 p.m.9 views

CVE-2026-46702 Russh: Post-decompression SSH packet size was not bounded, allowing remote oversized compressed packets

Russh is a Rust SSH client & server library. From version 0.34.0 to before version 0.61.1, when SSH compression is enabled, russh accepted compressed packets whose on-wire size passed the normal transport packet-length checks but whose decompressed size was much larger. This allowed a remote peer...

7.5CVSS5.5AI score0.00268EPSS
Exploits0References1
Rows per page
Query Builder