CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 4 days ago•8 views

EUVD-2026-38004

A use-after-free vulnerability was found in FFmpeg's RASC video decoder. The decodemove function initializes a read pointer into a decompressed buffer, but a subsequent reallocation of that same buffer during move-table processing leaves the pointer dangling. An attacker could exploit this by...

6.5CVSS6AI score

Exploits0References4

NVD•added 4 days ago•11 views

CVE-2026-56132

In libexpat before 2.8.2, there is a heap-based buffer overflow in doProlog in xmlparse.c because scaffold backing array reallocation is mishandled when there is data-structure sharing across parsers...

6.9CVSS

SUSE CVE•added 2026/05/29 1:15 a.m.•8 views

SUSE CVE-2026-46191

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

5.5CVSS6AI score0.00131EPSS

Exploits0References3

CVE•added 2026/05/28 9:36 a.m.•25 views

CVE-2026-46191

CVE-2026-46191 concerns the Linux kernel fbcon component: when console rotation fails during fbcon_rotate_font(), the font buffer may overflow due to an OOB access. The fix clears the font buffer if the reallocation during console rotation fails and ensures the rotated buffer does not overflow. D...

7.1CVSS6AI score0.00131EPSS

Exploits0References8Affected Software1

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Ice: Fixed DMA mapping leaks The leak was addressed when the user changed ring parameters. During the reallocation of RX buffers, new DMA mappings are created for those buffers. New buffers with a different RX ring count shoul...

5.5CVSS6AI score0.00193EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в expat, firefox, thunderbird

In libexpat before version 2.7.4, the doContent function does not properly determine the buffer size bufSize, as there is no check for integer overflow during the reallocation of the tag buffer...

AstraLinux•added 2026/05/03 11:59 p.m.•7 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: i40e: Fixed DMA mapping leaks During the reallocation of RX buffers, new DMA mappings are created for those buffers. Reproduction steps: While doing the following: Do For i=0; i=8160; i=i+32 Do ethtool -G enp130s0f0 rx $i tx $...

5.6AI score0.00206EPSS

OSV•added 2026/05/01 5:50 p.m.•5 views

JLSEC-2026-380

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

OSV•added 2026/04/17 5:30 p.m.•6 views

CLSA-2026-1773928447 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent function...

7.8CVSS7.4AI score0.00186EPSS

EUVD•added 2026/03/30 9:43 p.m.•3 views

EUVD-2026-17233

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and h264-height are updated before the reallocation loop. If any winpralignedrecalloc call fails, the function returns FALSE but width/height are...

7.5CVSS5.8AI score0.0022EPSS

OSV•added 2026/03/23 4:31 p.m.•4 views

CLSA-2026-1774283473 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: Improve determination of buffer size bufSize in function doContent - debian/patches/CVE-2026-25210.patch: fix integer overflow in doContent tag buffer reallocation - CVE-2026-25210...

OSV•added 2026/03/23 2:52 p.m.•6 views

CLSA-2026-1774021165 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix memory corruption via integer overflow in doContent function during tag buffer reallocation...

CloudLinux•added 2026/03/23 2:52 p.m.•6 views

expat: Fix of CVE-2026-25210

CVE-2026-25210: fix memory corruption via integer overflow in doContent function during tag buffer reallocation...

7.8CVSS6AI score0.00186EPSS

Exploits0

OSV•added 2026/03/23 2:50 p.m.•9 views

CLSA-2026-1773925534 expat: Fix of CVE-2026-25210

Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation...

OSV•added 2026/03/20 12:31 p.m.•5 views

CLSA-2026-1774009875 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...

OSV•added 2026/03/20 11:40 a.m.•6 views

CLSA-2026-1774006814 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent...

OSV•added 2026/03/19 2:32 p.m.•3 views

CLSA-2026-1773930717 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...

OSV•added 2026/03/19 2:28 p.m.•3 views

CLSA-2026-1773930526 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...

OSV•added 2026/03/19 1:49 p.m.•3 views

CLSA-2026-1773928179 expat: Fix of CVE-2026-25210

Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation...

7.8CVSS7.4AI score0.00186EPSS