CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/07 12:0 a.m.•7 views

PT-2026-39177

Yashashree Gund discovered that the dpkg dpkg-deb tool incorrectly handled certain zstd-compressed .deb archives. If a user or automated system were tricked into manipulating a specially crafted .deb archive, a remote attacker could possibly use this issue to cause dpkg-deb to stop responding,...

7.5CVSS5.8AI score0.00019EPSS

Exploits0References3

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в dpkg

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory. This behavior is documented as being a safe operation even on untrusted data. This may result in temporary files being left behind during cleanup. Given...

8.2CVSS7.4AI score0.00265EPSS

Tenable Nessus•added 2026/03/29 12:0 a.m.•0 views

openSUSE 16 Security Update : salt (openSUSE-SU-2026:20412-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20412-1 advisory. Changes in salt: - Security issues fixed: CVE-2025-67724: fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: fixed Do...

7.5CVSS7.1AI score0.00215EPSS

Exploits0References14

SUSE Linux•added 2026/03/25 10:17 a.m.•1 views

Security update for salt

This update for salt fixes the following issues: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

OSV•added 2026/03/25 10:17 a.m.•0 views

Exploits0References24

SUSE-SU-2026:1030-1 Security update for salt

This update for salt fixes the following issues: - Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

SUSE Linux•added 2026/03/25 10:17 a.m.•3 views

Security update for salt

OSV•added 2026/03/25 10:16 a.m.•1 views

Exploits0References22

SUSE-SU-2026:1029-1 Security update for salt

7.5CVSS6.8AI score0.00215EPSS

OSV•added 2026/03/25 10:16 a.m.•2 views

SUSE-SU-2026:1028-1 Security update for salt

7.5CVSS6.8AI score0.00215EPSS

OSV•added 2026/03/25 10:15 a.m.•0 views

SUSE-SU-2026:1027-1 Security update for salt

SUSE Linux•added 2026/03/25 10:13 a.m.•4 views

Security update 5.0.7 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

SUSE Linux•added 2026/03/25 10:12 a.m.•3 views

Exploits0References32

Security update 5.0.7 for Multi-Linux Manager Salt Bundle

OSV•added 2026/03/25 10:10 a.m.•0 views

Exploits0References32

SUSE-SU-2026:1012-1 Security update 5.0.7 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

7.8CVSS5.9AI score0.00215EPSS

Exploits0References16

OSV•added 2026/03/24 6:24 a.m.•0 views

OPENSUSE-SU-2026:20412-1 Security update for salt

This update for salt fixes the following issues: Changes in salt: - Security issues fixed: CVE-2025-67724: fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: fixed HTTP header parameter parsing algorithm...

7.5CVSS5.9AI score0.00215EPSS

Exploits0References10

OSV•added 2026/03/24 6:19 a.m.•1 views

SUSE-SU-2026:20825-1 Security update for salt

This update for salt fixes the following issues: - Security issues fixed: CVE-2025-67724: missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: fix DoS via malicious HTTP request bsc1254905 CVE-2025-67726: fix HTTP header parameter parsing algorithm bsc1254904 - Fixed KeyError i...

OSV•added 2026/03/24 5:49 a.m.•0 views

Exploits0References11

SUSE-SU-2026:20820-1 Security update for salt

Tenable Nessus•added 2026/03/20 12:0 a.m.•1 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 24.04 LTS : Debian Goodies vulnerability (USN-8109-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 24.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8109-1 advisory. Jakub Wilk discovered that debmany in Debian Goodies incorrectly handled certain deb files. An attacker could possibly use thi...

7.8CVSS6.2AI score0.00094EPSS

OSV•added 2026/03/18 6:59 p.m.•0 views

USN-8109-1 debian-goodies vulnerability

Jakub Wilk discovered that debmany in Debian Goodies incorrectly handled certain deb files. An attacker could possibly use this issue to execute arbitrary shell commands...

7.8CVSS5.8AI score0.00094EPSS

Ubuntu•added 2026/03/18 6:59 p.m.•2 views

USN-8109-1: Debian Goodies vulnerability

Jakub Wilk discovered that debmany in Debian Goodies incorrectly handled certain deb files. An attacker could possibly use this issue to execute arbitrary shell commands...

7.8CVSS7.1AI score0.00094EPSS

Exploits0

RedhatCVE•added 2026/03/09 1:20 p.m.•2 views

CVE-2026-2219

A flaw was found in dpkg-deb, a component of the Debian package management system. This vulnerability allows a local user to trigger a Denial of Service DoS by providing a specially crafted zstd-compressed .deb archive. The flaw occurs because dpkg-deb does not properly validate the end of the da...

7.5CVSS5.8AI score0.00019EPSS