Lucene search
K

216 matches found

ATTACKERKB
ATTACKERKB
added 2025/12/24 10:32 a.m.3 views

CVE-2025-68362

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187rxcb The rtl8187rxcb calculates the rx descriptor header address by subtracting its size from the skb tail pointer. However, it does not validate if the received...

5.4AI score0.00177EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2025/12/22 4:35 p.m.11 views

SUSE-SU-2025:4505-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...

7.8CVSS7.9AI score0.00338EPSS
Exploits1References142
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.5 views

kernel: io_uring: check if we need to reschedule during overflow flush

In the Linux kernel, the following vulnerability has been resolved: iouring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be empty. And if an application does overflow a bit, it'll have a few entries. However, nothing obviously...

5.5CVSS6.9AI score0.00219EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/10/29 8:3 a.m.5 views

mm/ksm: fix flag-dropping behavior in ksm_madvise

...

5.5CVSS7AI score0.00338EPSS
Exploits0
OSV
OSV
added 2025/10/28 5:47 p.m.4 views

CLSA-2025-1761673667 Fix CVE(s): CVE-2019-20044

SECURITY UPDATE: insecure privilege dropping vulnerability - debian/patches/CVE-2019-20044-.patch: improve error handling in setopt command, add OpenSSH-based setresuid/setresgid wrappers, simplify and secure privilege dropping logic, add comprehensive tests for PRIVILEGED option - CVE-2019-20044...

7.8CVSS7.2AI score0.00495EPSS
Exploits0References1
CVE
CVE
added 2025/10/28 11:48 a.m.31 views

CVE-2025-40040

CVE-2025-40040 is a Linux kernel vulnerability arising from the mm/ksm: fix flag-dropping behavior in ksm_madvise. The issue causes an UFFD inconsistency in userfaultfd Release paths when a VMA registered for UFFD in MINOR mode undergoes MADV_UNMEARGEABLE, inadvertently clearing the upper 32 bits...

5.5CVSS5.8AI score0.00338EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/10/28 11:48 a.m.3 views

CVE-2025-40040 mm/ksm: fix flag-dropping behavior in ksm_madvise

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise syzkaller discovered the following crash: kernel BUG 44.607039 ------------ cut here ------------ 44.607422 kernel BUG at mm/userfaultfd.c:2067! 44.608148 Oops: invalid opcode: 000...

5.5CVSS6.2AI score0.00338EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/10/28 11:48 a.m.4 views

CVE-2025-40040

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise syzkaller discovered the following crash: kernel BUG 44.607039 ------------ cut here ------------ 44.607422 kernel BUG at mm/userfaultfd.c:2067! 44.608148 Oops: invalid opcode: 000...

5.5CVSS5.3AI score0.00338EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper flag dropping behavior in the ksmmadvise function, which could lead to a kernel crash...

5.5CVSS6AI score0.00338EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-3429

Malware in sbrugna...

1.9CVSS6.3AI score0.00349EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-3428

Malware in sbrugna...

4.7CVSS6.3AI score0.0034EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-3314

Malware in sbrugna...

9.8CVSS9.4AI score0.01464EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-9472

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00158EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/10/01 11:30 p.m.5 views

SUSE CVE-2023-53455

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: drop all currently held locks if deadlock happens If vc4hdmiresetlink returns -EDEADLK, it means that a deadlock happened in the locking context. This situation should be addressed by dropping all currently held locks an...

5.5CVSS6.4AI score0.00143EPSS
Exploits0References3
OSV
OSV
added 2025/10/01 12:15 p.m.3 views

UBUNTU-CVE-2023-53455

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: drop all currently held locks if deadlock happens If vc4hdmiresetlink returns -EDEADLK, it means that a deadlock happened in the locking context. This situation should be addressed by dropping all currently held locks an...

5.5CVSS5.7AI score0.00143EPSS
Exploits0References6
OSV
OSV
added 2025/09/12 2:24 p.m.7 views

OESA-2025-2232 python-eventlet security update

Eventlet is a concurrent networking library for Python that allows you to change how you run your code, not how you write it. Security Fixes: Eventlet is a concurrent networking library for Python. Prior to version 0.40.3, the Eventlet WSGI parser is vulnerable to HTTP Request Smuggling due to...

9.1CVSS6.8AI score0.00363EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/01 11:22 p.m.3 views

SUSE CVE-2025-58068

Eventlet is a concurrent networking library for Python. Prior to version 0.40.3, the Eventlet WSGI parser is vulnerable to HTTP Request Smuggling due to improper handling of HTTP trailer sections. This vulnerability could enable attackers to, bypass front-end security controls, launch targeted...

6.5CVSS6.8AI score0.00363EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/08/29 9:12 p.m.3 views

CVE-2025-58068 Eventlet affected by HTTP request smuggling in unparsed trailers

Eventlet is a concurrent networking library for Python. Prior to version 0.40.3, the Eventlet WSGI parser is vulnerable to HTTP Request Smuggling due to improper handling of HTTP trailer sections. This vulnerability could enable attackers to, bypass front-end security controls, launch targeted...

6.3CVSS6AI score0.00363EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.4 views

PT-2025-37224

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's networking scheduler related to the cake queuing discipline. Specifically, cake enqueue does not return NET XMIT CN when packets are dropped due to...

7.8CVSS6.1AI score0.00168EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/08/17 12:0 a.m.2 views

ViT-EnsembleAttack: Augmenting Ensemble Models for Stronger Adversarial Transferability in Vision Transformers

Ensemble-based attacks have been proven to be effective in enhancing adversarial transferability by aggregating the outputs of models with various architectures. However, existing research primarily focuses on refining ensemble weights or optimizing the ensemble path, overlooking the exploration ...

7.1AI score
Exploits0
Rows per page
Query Builder