Lucene search
K

456423 matches found

ATTACKERKB
ATTACKERKB
added last week7 views

CVE-2026-11968

Argument Injection in TortoiseGitBlame via Malicious Git History Filenames Leads to Arbitrary File Write in TortoiseGit...

5.5CVSS5.9AI score0.00124EPSS
Exploits0References3Affected Software1
CVE
CVE
added last week11 views

CVE-2026-11968

CVE-2026-11968 affects TortoiseGitBlame. The issue arises from argument injection via malicious Git history filenames, enabling arbitrary file write in TortoiseGit. The provided sources describe the vulnerability name and impact but do not include concrete exploit details, affected versions, root...

5.5CVSS5.9AI score0.00124EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added last week9 views

coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS6AI score0.00215EPSS
Exploits0References6
OSV
OSV
added last week1 views

SUSE-SU-2026:2619-1 Security update for libpng15

This update for libpng15 fixes the following issues Security issues: - CVE-2025-64720: buffer overflow in pngimagereadcomposite via incorrect palette premultiplication bsc1254159. Non security issue: - version update to 1.5.30 jscPED-16191. Changes for libpng15: - Replaced 'unexpected' with an...

7.1CVSS6.1AI score0.00281EPSS
Exploits4References3
SUSE Linux
SUSE Linux
added last week4 views

Security update for libpng15

This update for libpng15 fixes the following issues Security issues: CVE-2025-64720: buffer overflow in pngimagereadcomposite via incorrect palette premultiplication bsc1254159. Non security issue: version update to 1.5.30 jscPED-16191. Changes for libpng15: Replaced "unexpected" with an integer ...

6.9CVSS6.1AI score0.10339EPSS
Exploits4References6
OSV
OSV
added last week2 views

DEBIAN-CVE-2026-52932

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

7.5CVSS5.6AI score0.00339EPSS
Exploits0References1
NVD
NVD
added last week7 views

CVE-2026-52932

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

7.5CVSS0.00339EPSS
Exploits0References3
OSV
OSV
added last week2 views

UBUNTU-CVE-2026-52932

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

7.5CVSS5.6AI score0.00339EPSS
Exploits0References6
EUVD
EUVD
added last week8 views

EUVD-2026-38702

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

5.7AI score0.00339EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added last week9 views

CVE-2026-52932

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

5.7AI score0.00339EPSS
Exploits0References4Affected Software1
CVE
CVE
added last week7 views

CVE-2026-52932

In CVE-2026-52932, the Linux kernel xfrm IPcomp path contains a fix to ensure that the allocated destination scatter-gather (dst SG) list is freed on error as well as on success, preventing potential resource leaks. The root cause is improper memory deallocation during error handling in the xfrm ...

7.5CVSS5.7AI score0.00339EPSS
Exploits0References3
Cvelist
Cvelist
added last week27 views

CVE-2026-52932 xfrm: ipcomp: Free destination pages on acomp errors

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

7.5CVSS0.00339EPSS
Exploits0References3
Debian CVE
Debian CVE
added last week5 views

CVE-2026-52932

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

7.5CVSS5.6AI score0.00339EPSS
Exploits0
OSV
OSV
added last week5 views

MAL-2026-6376 Malicious code in bn-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c14057d91b2283926b2b0c1093a66db17c40efbd0ceb21c29b0bdbfa79736da5 Package is published as 'bn-lint' but ships a verbatim copy of MikeMcl/big.js README, source, version banner v7.0.1, and repo URL all identify as...

5.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added last week9 views

Malicious code in bn-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c14057d91b2283926b2b0c1093a66db17c40efbd0ceb21c29b0bdbfa79736da5 Package is published as 'bn-lint' but ships a verbatim copy of MikeMcl/big.js README, source, version banner v7.0.1, and repo URL all identify as...

5.9AI score
Exploits0References2
Mageia
Mageia
added last week3 views

Updated podofo packages fix security vulnerabilities

Podofo v0.9.8 shares some of the vulnerable code that was discovered in Podofo v0.10.0. This package fixes that. CVE-2023-31567 Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptAESV3::PdfEncryptAESV3. CVE-2023-31568 Podofo v0.10.0 was discovered ...

8.8CVSS6.1AI score0.00749EPSS
Exploits2References5
Mageia
Mageia
added last week4 views

Updated opensc packages fix security vulnerabilities

These packages fix security vulnerabilities: CVE-2026-10275, A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is...

7.8CVSS5.2AI score0.00296EPSS
Exploits0References3
OSV
OSV
added last week2 views

MGASA-2026-0231 Updated opensc packages fix security vulnerabilities

These packages fix security vulnerabilities: CVE-2026-10275, A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is...

7.8CVSS5.5AI score0.00296EPSS
Exploits0References4
OSV
OSV
added last week3 views

MGASA-2026-0229 Updated podofo packages fix security vulnerabilities

Podofo v0.9.8 shares some of the vulnerable code that was discovered in Podofo v0.10.0. This package fixes that. CVE-2023-31567 Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptAESV3::PdfEncryptAESV3. CVE-2023-31568 Podofo v0.10.0 was discovered ...

8.8CVSS7.3AI score0.00749EPSS
Exploits2References6
Veracode
Veracode
added last week7 views

Open Redirect

Nuxt is vulnerable to open redirect. The vulnerability is due to improper validation of path-normalized URLs in navigateTo, where specially crafted paths can bypass external-host checks after normalization, allowing attackers to redirect users to malicious websites and facilitate phishing attacks...

6.1CVSS5.9AI score0.00205EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder