Lucene search
+L

461 matches found

NVD
NVD
โ€ขadded yesterdayโ€ข8 views

CVE-2026-57074

XML::Bare versions through 0.53 for Perl have an unbounded character lookahead. The parsercparse function attempts to check for multicharacter strings such as "" without checking that the offsets are within the buffer. Truncated strings such as "a/" can trigger an out-of-bounds read...

Exploits0References3
NVD
NVD
โ€ขadded yesterdayโ€ข8 views

CVE-2026-57073

HTML::Bare versions through 0.04 for Perl have an unbounded character lookahead. The parsercparse function attempts to check for multicharacter strings such as "" without checking that the offsets are within the buffer. Truncated strings such as "a/" can trigger an out-of-bounds read. Note that t...

9.1CVSS
Exploits0References4
EUVD
EUVD
โ€ขadded yesterdayโ€ข5 views

EUVD-2026-44966

XML::Bare versions through 0.53 for Perl have an unbounded character lookahead. The parsercparse function attempts to check for multicharacter strings such as "" without checking that the offsets are within the buffer. Truncated strings such as "a/" can trigger an out-of-bounds read...

6.1AI score
Exploits0References2
EUVD
EUVD
โ€ขadded yesterdayโ€ข5 views

EUVD-2026-44965

HTML::Bare versions through 0.04 for Perl have an unbounded character lookahead. The parsercparse function attempts to check for multicharacter strings such as "" without checking that the offsets are within the buffer. Truncated strings such as "a/" can trigger an out-of-bounds read. Note that t...

6.1AI score
Exploits0References3
Rockylinux
Rockylinux
โ€ขadded 2 days agoโ€ข6 views

perl-XML-LibXML security update

An update is available for perl-XML-LibXML. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This module implements a Perl interface to the GNOME libxml2 library...

7.5CVSS6.1AI score0.00629EPSS
Exploits0
OSV
OSV
โ€ขadded 2 days agoโ€ข4 views

RLSA-2026:39553 Important: perl-XML-LibXML security update

This module implements a Perl interface to the GNOME libxml2 library which provides interfaces for parsing and manipulating XML files. This module allows Perl programmers to make use of the highly capable validating XML parser and the high performance DOM implementation. Security Fixes:...

7.5CVSS6.1AI score0.00629EPSS
Exploits0References2
RedHat Linux
RedHat Linux
โ€ขadded 2 days agoโ€ข7 views

Important: Red Hat Security Advisory: perl-XML-LibXML security update

An update for perl-XML-LibXML is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS6.1AI score0.00629EPSS
Exploits0References2
RedHat Linux
RedHat Linux
โ€ขadded 2 days agoโ€ข4 views

perl-XML-LibXML: XML::LibXML: Denial of Service via truncated UTF-8 in XML node names

A flaw was found in XML::LibXML for Perl. A remote attacker could exploit this vulnerability when processing specially crafted XML node names containing incomplete UTF-8 character sequences. This can lead to an out-of-bounds read in heap memory, potentially causing the application to crash and...

7.5CVSS6AI score0.00629EPSS
Exploits0References6
RedHat Linux
RedHat Linux
โ€ขadded 3 days agoโ€ข5 views

Important: Red Hat Security Advisory: perl-XML-LibXML security update

An update for perl-XML-LibXML is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

7.5CVSS6.1AI score0.00629EPSS
Exploits0References2
Rockylinux
Rockylinux
โ€ขadded 2026/07/10 12:5 p.m.โ€ข6 views

aardvark-dns security update

An update is available for aardvark-dns. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Authoritative DNS server for A/AAAA container records Forwards other...

7.5CVSS6.1AI score0.00383EPSS
Exploits0
Positive Technologies
Positive Technologies
โ€ขadded 2026/07/10 12:0 a.m.โ€ข10 views

PT-2026-57295

Name of the Vulnerable Software and Affected Versions FreeRDP versions 3.21.0 through 3.27.0 Description FreeRDP clients using the GFX pipeline contain an incomplete fix in the planar decompress plane rle only function within libfreerdp/codec/planar.c. This allows a malicious RDP server to send a...

9.8CVSS6.1AI score0.00698EPSS
Exploits3References13
Rockylinux
Rockylinux
โ€ขadded 2026/07/08 12:3 p.m.โ€ข4 views

aardvark-dns security update

An update is available for aardvark-dns. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Authoritative DNS server for A/AAAA container records Forwards other...

7.5CVSS6AI score0.00383EPSS
Exploits0
RedHat Linux
RedHat Linux
โ€ขadded 2026/07/08 6:13 a.m.โ€ข5 views

kernel: smb/client: fix out-of-bounds read in smb2_compound_op()

A flaw was found in the Linux kernel's Server Message Block SMB client. A remote attacker, acting as a malicious SMB server, could send a specially crafted, truncated response with an oversized buffer length. This could lead to an out-of-bounds read in the smb2compoundop function, allowing the...

9.1CVSS6.1AI score0.00478EPSS
Exploits0References5
OSV
OSV
โ€ขadded 2026/07/08 12:0 a.m.โ€ข3 views

ALSA-2026:36782 Moderate: aardvark-dns security update

Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in src/backend/mod.rs. Security Fixes: aardvark-dns: Aardvark-dns: Denial of Service via truncated TCP DNS query and connection reset CVE-2026-35406 For more details...

7.5CVSS6.1AI score0.00383EPSS
Exploits0References4
RedHat Linux
RedHat Linux
โ€ขadded 2026/07/07 6:10 p.m.โ€ข6 views

aardvark-dns: Aardvark-dns: Denial of Service via truncated TCP DNS query and connection reset

A flaw was found in aardvark-dns where a specially crafted TCP DNS query followed by a connection reset can trigger an infinite error loop, leading to 100% CPU usage and a denial of service. As aardvark-dns is only accessible via internal Podman networks, this issue can be exploited by a local...

7.5CVSS5.9AI score0.00383EPSS
Exploits0References7
RedHat Linux
RedHat Linux
โ€ขadded 2026/07/07 6:10 p.m.โ€ข7 views

Moderate: Red Hat Security Advisory: aardvark-dns security update

An update for aardvark-dns is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.5CVSS6AI score0.00383EPSS
Exploits0References2
RedHat Linux
RedHat Linux
โ€ขadded 2026/07/06 9:21 p.m.โ€ข4 views

kernel: smb/client: fix out-of-bounds read in smb2_compound_op()

A flaw was found in the Linux kernel's Server Message Block SMB client. A remote attacker, acting as a malicious SMB server, could send a specially crafted, truncated response with an oversized buffer length. This could lead to an out-of-bounds read in the smb2compoundop function, allowing the...

9.1CVSS7.3AI score0.00478EPSS
Exploits0References5
OSV
OSV
โ€ขadded 2026/07/06 6:27 a.m.โ€ข5 views

OESA-2026-2833 python-zeroconf security update

Pure Python Multicast DNS Service Discovery Library Bonjour/Avahi compatible Security Fixes: readcharacterstring and readstring in src/zeroconf/protocol/incoming.py sliced self.dataself.offset : self.offset + length and advanced self.offset by the declared length without checking it against...

6AI score
Exploits0References2
OSV
OSV
โ€ขadded 2026/06/28 9:26 a.m.โ€ข3 views

OPENSUSE-SU-2026:21076-1 Security update for giflib

This update for giflib fixes the following issue - CVE-2026-26740: heap out-of-bounds read when processing a specially crafted GIF file containing a GCE block with a truncated extension byte count bsc1259836...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References2
NVD
NVD
โ€ขadded 2026/06/28 2:16 a.m.โ€ข10 views

CVE-2026-58058

Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in ipv6getdataprimitive libnetutil/netutil.cc, so the pointer advances past the buffer and the remaining-length computation underflows to a large value. A scanned target or on-path attacker returning a craft...

6.9CVSS0.00278EPSS
Exploits0References4
Rows per page
Query Builder