Lucene search
K

6095 matches found

Rosalinux
Rosalinux
added 2025/09/29 1:42 p.m.4 views

Advisory ROSA-SA-2025-3018

software: libssh 0.9.8 OS: ROSA-CHROME unaffected versions = libssh-0.9.8-2 affected versions libssh-0.9.8-2 CVE-ID: CVE-2025-5372 BDU-ID: 2025-07644 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libssh library's sshkdf function is related to incorrect code generation control. Exploitation o...

8.8CVSS7.3AI score0.00407EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/09/29 1:39 p.m.6 views

Advisory ROSA-SA-2025-3017

software: chromium-browser-stable 140.0.7339.185 WASP: ROSA-CHROME unaffected versions = chromium-browser-stable-140.0.7339.185-1 affected versions chromium-browser-stable-140.0.7339.185-1 CVE-ID: CVE-2025-10585 BDU-ID: 2025-11457 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the V8 component of...

9.8CVSS7.1AI score0.05419EPSS
Exploits1
Rosalinux
Rosalinux
added 2025/09/29 1:37 p.m.6 views

Advisory ROSA-SA-2025-3015

Software: dovecot 2.3.21.1 OS: ROSA-CHROME unaffected versions = dovecot-2.3.21.1-6 affected versions dovecot-2.3.21.1-6 CVE-ID: CVE-2022-30550 BDU-ID: 2022-04273 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the passdb account database of the Dovecot mail server is related to configuration...

8.8CVSS7.1AI score0.01748EPSS
Exploits1
Debian CVE
Debian CVE
added 2025/09/23 6:0 a.m.3 views

CVE-2025-39888

In the Linux kernel, the following vulnerability has been resolved: fuse: Block access to folio overlimit syz reported a slab-out-of-bounds Write in fusedevdowrite. When the number of bytes to be retrieved is truncated to the upper limit by fc-maxpages and there is an offset, the oob is triggered...

7.8CVSS6.2AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/23 6:0 a.m.3 views

CVE-2025-39886

In the Linux kernel, the following vulnerability has been resolved: bpf: Tell memcg to use allowspinning=false path in bpftimerinit Currently, calling bpfmapkmallocnode from bpfasyncinit can cause various locking issues; see the following stack trace edited for style as one example: ... 10.011566...

5.5CVSS5.5AI score0.00139EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.8 views

CVE-2023-53447

In the Linux kernel, the following vulnerability has been resolved: f2fs: don't reset unchangable mount option in f2fsremount syzbot reports a bug as below: general protection fault, probably for non-canonical address 0xdffffc0000000009: 0000 1 PREEMPT SMP KASAN RIP: 0010:lockacquire+0x69/0x2000...

4.7CVSS5.1AI score0.00086EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.3 views

CVE-2023-53441

In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced object 0xff110001198ef748 size 192: comm "syz-executor.3", pid 17672, jiffies 4298118891 age 9.906s hex...

5.5CVSS5.5AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.4 views

CVE-2023-53436

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...

5.5CVSS5.3AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.5 views

CVE-2023-53435

In the Linux kernel, the following vulnerability has been resolved: cassini: Fix a memory leak in the error handling path of casinitone cassaturnfirmwareinit allocates some memory using vmalloc. This memory is freed in the .remove function but not it the error handling path of the probe. Add the...

5.5CVSS5.3AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.3 views

CVE-2023-53426

In the Linux kernel, the following vulnerability has been resolved: xsk: Fix xskdiag use-after-free error during socket cleanup Fix a use-after-free error that is possible if the xskdiag interface is used after the socket has been unbound from the device. This can happen either due to the socket...

7.8CVSS6.3AI score0.00141EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.4 views

CVE-2023-53424

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: fix ofiomap memory leak Smatch reports: drivers/clk/mediatek/clk-mtk.c:583 mtkclksimpleprobe warn: 'base' from ofiomap not released on lines: 496. This problem was also found in linux-next. In mtkclksimpleprobe, ba...

5.5CVSS5.3AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 4:4 p.m.2 views

CVE-2023-53419

In the Linux kernel, the following vulnerability has been resolved: rcu: Protect rcuprinttaskexpstall -exptasks access For kernels built with CONFIGPREEMPTRCU=y, the following scenario can result in a NULL-pointer dereference: CPU1 CPU2 rcupreemptdeferredqsirqrestore rcuprinttaskexpstall if...

5.5CVSS5.3AI score0.00145EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 1:58 p.m.4 views

CVE-2023-53417

In the Linux kernel, the following vulnerability has been resolved: USB: sl811: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove instead...

5.5CVSS5.4AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 1:58 p.m.4 views

CVE-2023-53416

In the Linux kernel, the following vulnerability has been resolved: USB: isp1362: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove instead...

5.5CVSS5.4AI score0.00135EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/16 4:11 p.m.3 views

CVE-2022-50340

In the Linux kernel, the following vulnerability has been resolved: media: vimc: Fix wrong function called when vimcinit fails In vimcinit, when platformdriverregister&vimcpdrv fails, platformdriverunregister&vimcpdrv is wrongly called rather than platformdeviceunregister&vimcpdev, which causes...

5.5CVSS5.3AI score0.00145EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/16 4:11 p.m.4 views

CVE-2022-50339

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: avoid hcidevtestandsetflag in mgmtinithdev syzbot is again reporting attempt to cancel uninitialized work at mgmtindexremoved 1, for setting of HCIMGMT flag from mgmtinithdev from hcimgmtcmd from hcisocksendmsg can rac...

7CVSS6.1AI score0.00098EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/16 1:8 p.m.4 views

CVE-2025-39834

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, Fix memory leak in hwsactiongetsharedstcnic error flow When an invalid stctype is provided, the function allocates memory for sharedstc but jumps to unlockandout without freeing it, causing a memory leak. Fix by...

5.5CVSS5.3AI score0.0012EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/16 1:0 p.m.5 views

CVE-2025-39826

In the Linux kernel, the following vulnerability has been resolved: net: rose: convert 'use' field to refcountt The 'use' field in struct roseneigh is used as a reference counter but lacks atomicity. This can lead to race conditions where a roseneigh structure is freed while still being reference...

7CVSS6.2AI score0.00132EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/16 1:0 p.m.2 views

CVE-2025-39812

In the Linux kernel, the following vulnerability has been resolved: sctp: initialize more fields in sctpv6fromsk syzbot found that sin6scopeid was not properly initialized, leading to undefined behavior. Clear sin6scopeid and sin6flowinfo. BUG: KMSAN: uninit-value in sctpv6cmpaddr+0x887/0x8c0...

5.5CVSS5.3AI score0.0016EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/16 1:0 p.m.2 views

CVE-2025-39813

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix potential warning in traceprintkseq during ftracedump When calling ftracedumpone concurrently with reading tracepipe, a WARNONONCE in traceprintkseq can be triggered due to a race condition. The issue occurs because:...

4.7CVSS5.1AI score0.0011EPSS
Exploits0
Rows per page
Query Builder