Lucene search
K

2521 matches found

SUSE CVE
SUSE CVE
added 2025/06/19 3:42 a.m.7 views

SUSE CVE-2022-50066

In the Linux kernel, the following vulnerability has been resolved: net: atlantic: fix aqvec index out of range error The final update statement of the for loop exceeds the array range, the dereference of self-aqveci is not checked and then leads to the index out of range error. Also fixed this...

5.5CVSS6.4AI score0.00165EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2025/06/19 3:16 a.m.4 views

SUSE CVE-2025-38013

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set nchannels after allocating struct cfg80211scanrequest Make sure that nchannels is set after allocating the struct cfg80211registereddevice::intscanreq member. Seen with syzkaller: UBSAN:...

6.6CVSS7.9AI score0.00164EPSS
Exploits0References18
OSV
OSV
added 2025/06/16 4:15 p.m.1 views

ALPINE-CVE-2025-49794

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS6.8AI score0.00669EPSS
Exploits0References1
OSV
OSV
added 2025/06/16 4:15 p.m.1 views

DEBIAN-CVE-2025-49794

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS6.6AI score0.00669EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/06/16 3:24 p.m.2 views

CVE-2025-49794

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS6.9AI score0.00669EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.13 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: f2fs: fixed to avoid out-of-bounds access in f2fstruncateinodeblocks syzbot reports an UBSAN issue as follows: ------------ cut here --- UBSAN: Array index out of bounds in fs/f2fs/node.h:381:10 Index 18446744073709550692 is out ...

7.1CVSS6.2AI score0.00167EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in Firefox

A vulnerability was identified in Thunderbird, where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and, potentially, memory corruption. This vulnerability has been fixed in Firefox 138, Firefox ESR...

4.8CVSS6.7AI score0.00267EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability in coreutils

The vulnerability of the factor utility in the GNU Core Utilities suite is related to its dependence on behaviors that are undefined for each type of implementation. Exploiting this vulnerability allows an attacker to cause service failures...

5.5CVSS5.8AI score
Exploits0References2
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fixed the UBSAN panic in samsungclkinit. With UBSANARRAYBOUNDS=y, I encounter the following panic due to dereferencing ctx-clkdata.hws before setting ctx-clkdata.num = nrclks. This issue needs to be fixed. Panic...

5.5CVSS6.1AI score0.00214EPSS
Exploits0References3
OSV
OSV
added 2025/06/13 2:19 p.m.4 views

OESA-2025-1626 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix WRITESAME No Data Buffer crash In newer version of the SBC specs, we have a NDOB bit that indicates there is no data buffer that gets written...

7.8CVSS6.5AI score0.0019EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/06/12 12:29 a.m.5 views

CVE-2025-49794

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's...

9.1CVSS9.1AI score0.00669EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/06/06 2:25 a.m.4 views

SUSE CVE-2025-4638

A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary PCL. This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib...

9.8CVSS6.8AI score0.00431EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2025:01776-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.0141EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/06/02 9:24 p.m.11 views

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

8.8CVSS7.3AI score0.04793EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/06/02 12:0 a.m.5 views

openSUSE Security Advisory (SUSE-SU-2025:01776-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.0141EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/06/02 12:0 a.m.13 views

Amazon Linux 2023 : firefox (ALAS2023-2025-976)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-976 advisory. An issue in sqlite v.3.49.0 allows an attacker to cause a denial of service via the SQLITEDBCONFIGLOOKASIDE component CVE-2025-29088 A process isolation vulnerability in Firefox stemmed from...

9.1CVSS7.7AI score0.00419EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/05/31 12:0 a.m.6 views

SUSE SLES12 Security Update : iputils (SUSE-SU-2025:01777-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:01777-1 advisory. - CVE-2025-47268: Fixed integer overflow in RTT calculation can lead to undefined behavior bsc1242300 Tenable has extracted the preceding description...

6.5CVSS6.5AI score0.0141EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/05/31 12:0 a.m.8 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : iputils (SUSE-SU-2025:01776-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:01776-1 advisory. - CVE-2025-47268: Fixed integer overflow in RTT calculation can lead to undefined behavior bsc1242300...

6.5CVSS6.5AI score0.0141EPSS
Exploits1References4
OSV
OSV
added 2025/05/30 1:39 p.m.2 views

SUSE-SU-2025:01779-1 Security update for iputils

This update for iputils fixes the following issues: Security fixes: - CVE-2025-47268: Fixed integer overflow in RTT calculation can lead to undefined behavior bsc1242300. Other bug fixes: - Fixed incorrect IPV4 TTL value when using SOCKDGRAM on big endian systems bsc1243284...

6.5CVSS6.7AI score0.0141EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/05/30 1:4 p.m.1 views

Security update for iputils

This update for iputils fixes the following issues: CVE-2025-47268: Fixed integer overflow in RTT calculation can lead to undefined behavior bsc1242300 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.5CVSS7.6AI score0.0141EPSS
Exploits1References4
Rows per page
Query Builder