Lucene search
K

3973 matches found

RedHat Linux
RedHat Linux
added 3 days ago7 views

Important: Red Hat Security Advisory: Red Hat AI Base Images 3.0.2 (cpu)

Red Hat AI Base Images 3.0.2 cpu is now available. Red Hat® AI Base Images...

8CVSS5.8AI score0.0032EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 5 days ago10 views

kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's XFRM ESP-in-TCP subsystem. Unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged...

7.8CVSS7.4AI score0.03663EPSS
Exploits11References5
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nfsd: Fixed the handling of cached open files in the nfsd4open code path. The commit fb70bf124b05 “NFSD: Instantiate a struct file when creating a regular NFSv4 file” added the ability to cache an open file descriptor across...

4.7CVSS5.4AI score0.00235EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

Intel’s microprocessor generations 6 to 8 are affected by a new Spectre variant that can bypass the retpoline mitigation mechanism in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to execute arbitrary speculative code under certain...

6.5CVSS7.2AI score0.04947EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/12 7:6 p.m.11 views

EUVD-2026-35191

TYPO3 HTML Sanitizer allows Cross-site Scripting...

2.1CVSS5.1AI score0.00282EPSS
Exploits0References5
OSV
OSV
added 2026/06/06 3:59 p.m.8 views

MINI-CMWG-65V3-H4GX

Bulletin has no description...

7CVSS5.2AI score0.00807EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.8 views

CVE-2026-4369

A maliciously crafted HTML payload in an assembly variant name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to...

7.1CVSS5.9AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2026/06/05 4:52 p.m.4 views

MINI-995X-C98F-P32M

Bulletin has no description...

6.5CVSS5.2AI score0.00248EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/04 9:24 p.m.13 views

kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's XFRM ESP-in-TCP subsystem. Unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged...

7.8CVSS6.1AI score0.03663EPSS
Exploits11References5
OSV
OSV
added 2026/06/04 9:59 a.m.7 views

MINI-5VGC-32CC-M48H

Bulletin has no description...

9.1CVSS5.7AI score0.0036EPSS
Exploits0
OSV
OSV
added 2026/06/01 12:57 p.m.3 views

SUSE-SU-2026:21945-1 Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: - Get rid of "'naked' return found in MITIGATIONRETHUNK build" objtool warnings bsc1212841, bsc1263834 - update CUDA variant to 580.159.03 - update non-CUDA variant to 580.159.03 bsc1262749 - Fixes CVEs: CVE-2025-33221,...

8.8CVSS5.7AI score0.00206EPSS
Exploits0References16
OSV
OSV
added 2026/06/01 9:27 a.m.5 views

SUSE-SU-2026:21920-1 Security update for nvidia-open-driver-G07-signed

This update for nvidia-open-driver-G07-signed fixes the following issues: - update CUDA variant to 595.71.05 - update non-CUDA variant to 595.71.05 bsc1262574 - CVEs fixed: CVE-2025-33221, CVE-2026-24187, CVE-2026-24182, CVE-2026-24192, CVE-2026-24194, CVE-2026-24195, CVE-2026-24196,...

8.8CVSS5.8AI score0.00206EPSS
Exploits0References14
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.22 views

glib2 security update

An update is available for glib2. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GLib provides the core application building blocks for libraries and...

9.8CVSS5.8AI score0.00754EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.9 views

RockyLinux 10 : glib2 (RLSA-2026:19148)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19148 advisory. glib: GLib: Buffer underflow in GVariant parser leads to heap corruption CVE-2025-14087 glib: Integer Overflow in GLib GIO Attribute Escaping Causes He...

9.8CVSS6.5AI score0.00754EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/27 12:17 p.m.40 views

CVE-2026-45904 powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event handling

In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: fix recursive pcilockrescanremove locking in EEH event handling The recent commit 1010b4c012b0 "powerpc/eeh: Make EEH driver device hotplug safe" restructured the EEH driver to improve synchronization with the PCI...

0.00156EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-43769

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the bq256xx power supply driver. The problem occurs because the devm variant for requesting an IRQ is used before the devm variant for allocating or...

7.8CVSS5.4AI score0.0016EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/26 9:32 p.m.34 views

CVE-2026-44788 SharpCompress: Directory traversal via directory entries in WriteToDirectory (zip slip variant)

SharpCompress is a fully managed C library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory allows a malicious archive to create directories outside the intended extraction root. For TAR archives, this can be...

5.9CVSS0.00313EPSS
Exploits1References1
OSV
OSV
added 2026/05/26 9:5 p.m.10 views

MAL-2026-4828 Malicious code in hmacsync (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d361ffcded0fc3d88b5095d800b13b3f8a07a581e8003c30bfcf9887eb71243f The package is a new version of the previously removed libhmac. The key parts, a malicious payload to inject into hijacked browser extensions, is not included ...

5.9AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/26 6:6 a.m.14 views

kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's XFRM ESP-in-TCP subsystem. Unsafe in-place cryptographic processing allows a low-privileged local attacker to write arbitrary bytes into the page cache of read-only files, including sensitive system files. An attacker can exploit this to overwrite privileged...

7.8CVSS6.1AI score0.03663EPSS
Exploits11References5
Rockylinux
Rockylinux
added 2026/05/23 6:0 a.m.29 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

7.8CVSS6.1AI score0.03663EPSS
Exploits17
Rows per page
Query Builder