Lucene search
K

4292 matches found

OSV
OSV
added yesterday3 views

DEBIAN-CVE-2026-58380

A flaw was found in GIMP's PNM file format parser. When parsing a specially crafted PNM file, the pnmscannergettoken function writes a null terminator one byte past the end of a stack-allocated buffer due to an off-by-one error in the loop boundary check. This could lead to memory corruption,...

7.3CVSS6.3AI score
Exploits0References1
OSV
OSV
added yesterday3 views

RHSA-2026:35841 Red Hat Security Advisory: nodejs24 security, bug fix, and enhancement update

Bulletin has no description...

8.1CVSS6.4AI score0.02445EPSS
Exploits1References76
OSV
OSV
added 3 days ago11 views

DEBIAN-CVE-2026-53361

In the Linux kernel, the following vulnerability has been resolved: afunix: Set gcinprogress to true in unixgc. Igor Ushakov reported that unixgc could run with gcinprogress being false if the work is scheduled while running: Thread 1 Thread 2 Thread 3 -------- -------- -------- unixschedulegc...

5.8AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 3 days ago4 views

DEBIAN-CVE-2026-53359

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected role Commit 0cb2af2ea66ad "KVM: x86: Fix shadow paging use-after-free due to unexpected GFN" fixed a shadow paging mismatch between stored and computed GFNs; the bug...

5.8AI score0.00176EPSS
Exploits2References1
OSV
OSV
added 3 days ago7 views

DEBIAN-CVE-2026-58211

Bulletin has no description...

5.9AI score
Exploits0References1
OSV
OSV
added 3 days ago7 views

BELL-CVE-2026-53346

Bulletin has no description...

5.9AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 4 days ago4 views

DEBIAN-CVE-2026-14612

Two off-by-one errors in the FreeIPA ipa-otpd daemon's OAuth2 device authorization handler can cause out-of-bounds memory access when processing an oversized response from a configured external OAuth2/OIDC Identity Provider. An attacker who controls or can man-in-the-middle the IdP endpoint may b...

4.2CVSS6AI score0.00142EPSS
Exploits0References1
OSV
OSV
added 4 days ago5 views

DEBIAN-CVE-2026-9547

When a libcurl-based application performs transfers via SCP:// or SFTP:// and utilizes the CURLOPTSSHKEYFUNCTION callback, it may silently accept an untrusted server. This vulnerability occurs when a server presents a host key type that does not match the specific key type already recorded for th...

7.4CVSS6AI score0.00187EPSS
Exploits1References1
OSV
OSV
added 4 days ago4 views

DEBIAN-CVE-2026-9079

libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them...

9.8CVSS6AI score0.0025EPSS
Exploits1References1
OSV
OSV
added 5 days ago3 views

MINI-M98G-6VC7-WVMP

Bulletin has no description...

8.1CVSS5.9AI score0.00677EPSS
Exploits0
OSV
OSV
added 5 days ago2 views

MINI-QC25-X8M8-M36V

Bulletin has no description...

8.1CVSS5.7AI score0.00617EPSS
Exploits1
OSV
OSV
added 5 days ago2 views

DEBIAN-CVE-2026-12932

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 5 days ago2 views

DEBIAN-CVE-2026-12996

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 5 days ago4 views

BELL-CVE-2026-11564

Bulletin has no description...

9.1CVSS5.9AI score0.00196EPSS
Exploits1References1
OSV
OSV
added 5 days ago2 views

DEBIAN-CVE-2026-55950

Time-of-check Time-of-use TOCTOU race condition vulnerability in Erlang/OTP ssl dtlspacketdemux module allows an unauthenticated remote attacker to crash all active DTLS sessions on a listener. A DTLS server listener uses a single shared dtlspacketdemux genserver process to route incoming UDP...

8.7CVSS6AI score0.00406EPSS
Exploits0References1
OSV
OSV
added 5 days ago4 views

MINI-R26X-4V53-CW6G

Bulletin has no description...

7.5CVSS7AI score0.00616EPSS
Exploits1
OSV
OSV
added 5 days ago6 views

MINI-32WF-RX86-653H

Bulletin has no description...

8.7CVSS7.2AI score0.01041EPSS
Exploits1
OSV
OSV
added 5 days ago7 views

DEBIAN-CVE-2026-53358

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: use chan timer to close channels in cleanuplisten l2capchanclose removes the channel from conn-chanl, which must be done under conn-lock. cleanuplisten runs under the parent sklock, so acquiring conn-lock would...

5.7AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 5 days ago5 views

RHSA-2026:34443 Red Hat Security Advisory: kernel security update

Bulletin has no description...

7.3CVSS6.7AI score0.0031EPSS
Exploits0References23
OSV
OSV
added 5 days ago5 views

RHSA-2026:34365 Red Hat Security Advisory: Satellite 6.19.2 Async Update

Bulletin has no description...

8.8CVSS6.7AI score0.00812EPSS
Exploits2References92
Rows per page
Query Builder