CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

ATTACKERKB•added 2026/04/14 9:57 p.m.•2 views

CVE-2026-33021

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a use-after-free vulnerability in sixelencoderencodebytes because sixelframeinit stores the caller-owned pixel buffer pointer directly in frame-pixels without making a defensive copy...

7.3CVSS6AI score0.00009EPSS

Exploits1References3Affected Software1

Cvelist•added 2026/04/14 9:57 p.m.•20 views

CVE-2026-33021 libsixel: Use-after-free in sixel_encoder_encode_bytes()

7.3CVSS0.00009EPSS

Exploits1References2

Positive Technologies•added 2026/04/14 12:0 a.m.•2 views

PT-2026-32951

Name of the Vulnerable Software and Affected Versions libsixel versions prior to 1.8.7-r1 Description A use-after-free issue exists in the sixel encoder encode bytes function. The sixel frame init function stores the caller-owned pixel buffer pointer directly in frame-pixels without creating a...

7.3CVSS6AI score0.00009EPSS

Exploits1References6

OSV•added 2026/04/03 4:16 p.m.•2 views

UBUNTU-CVE-2026-23444

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211txprepareskb failure ieee80211txprepareskb has three error paths, but only two of them free the skb. The first error path ieee80211txprepare returning TXDROP does not free it, while...

7.8CVSS5.7AI score0.00015EPSS

Exploits0References6

Cvelist•added 2025/12/30 12:10 p.m.•20 views

CVE-2022-50829 wifi: ath9k: hif_usb: Fix use-after-free in ath9k_hif_usb_reg_in_cb()

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...

0.0004EPSS

Exploits0References9

OSV•added 2025/09/23 6:15 a.m.•1 views

AZL-74930 CVE-2025-39873 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: can: xilinxcan: xcanwriteframe: fix use-after-free of transmitted SKB canputechoskb takes ownership of the SKB and it may be freed during or after the call. However, xilinxcan xcanwriteframe keeps using SKB after the call. Fix th...

7.8CVSS5.8AI score0.0002EPSS

Exploits0References1

CVE•added 2025/09/23 6:0 a.m.•15 views

CVE-2025-39873

CVE-2025-39873 (Linux kernel) : The vulnerability concerns the xilinx_can driver where xcan_write_frame() may use a previously freed skb. The root cause is that can_put_echo_skb() can take ownership of the SKB, which may be freed during or after the call, while xcan_write_frame() continues to tou...

7.8CVSS6.5AI score0.0002EPSS

Exploits0References7Affected Software1

Microsoft CVE•added 2024/05/23 7:0 a.m.•3 views

net: mctp: take ownership of skb in mctp_local_output

...

5.5CVSS7.6AI score0.00033EPSS

Exploits0

SUSE CVE•added 2024/05/21 2:0 a.m.•1 views

SUSE CVE-2024-27418

In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput fails in specific states; the skb ownership isn't transferred until...

5.5CVSS6.7AI score0.00033EPSS

Exploits0References10

OSV•added 2024/05/17 12:15 p.m.•1 views

UBUNTU-CVE-2024-27418

5.5CVSS5.8AI score0.00033EPSS

Exploits0References7