Lucene search
+L

635 matches found

fedora
fedora
added 2026/07/06 2:55 p.m.20 views

[SECURITY] Fedora 44 Update: mir-2.26.0-2.fc44

Mir is a Wayland display server toolkit for Linux systems, with a focus on efficiency, robust operation, and a well-defined driver model...

6AI score
Exploits0
fedora
fedora
added 2026/06/27 1:12 a.m.19 views

[SECURITY] Fedora 44 Update: lighttpd-1.4.84-1.fc44

lighttpd pronounced /lighty/ is a secure, fast, compliant, and very flexible web server that has been optimized for high-performance environments. lighttpd uses memory and CPU efficiently and has lower resource use than other popular web servers. Its advanced feature-set FastCGI, CGI, Auth,...

5.7AI score
Exploits0
redhatcve
redhatcve
added 2026/06/25 11:52 p.m.5 views

CVE-2026-53257

A flaw was found in the Linux kernel. An issue within the mac80211 Wi-Fi subsystem, specifically related to the enforcement of High Efficiency HE and Extremely High Throughput EHT capabilities and operations, could lead to a system crash. This vulnerability arises when HE/EHT capabilities are set...

5.5CVSS5.8AI score0.00104EPSS
Exploits0References4
debiancve
debiancve
added 2026/06/25 8:39 a.m.7 views

CVE-2026-53257

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: enforce HE/EHT cap/oper consistency Xiang Mei reports that mac80211 could crash if ehtcap is set but ehtoper isn't. Rather than fixing that for the individual users, enforce that both HE/EHT have consistent elemen...

5.5CVSS5.7AI score0.00104EPSS
Exploits0
attackerkb
attackerkb
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53257

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: enforce HE/EHT cap/oper consistency Xiang Mei reports that mac80211 could crash if ehtcap is set but ehtoper isn't. Rather than fixing that for the individual users, enforce that both HE/EHT have consistent elemen...

5.8AI score0.00104EPSS
Exploits0References3Affected Software1
euvd
euvd
added 2026/06/25 8:39 a.m.6 views

EUVD-2026-39208

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: enforce HE/EHT cap/oper consistency Xiang Mei reports that mac80211 could crash if ehtcap is set but ehtoper isn't. Rather than fixing that for the individual users, enforce that both HE/EHT have consistent elemen...

5.8AI score0.00104EPSS
Exploits0References2
osv
osv
added 2026/06/25 8:39 a.m.4 views

CVE-2026-53257 wifi: cfg80211: enforce HE/EHT cap/oper consistency

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: enforce HE/EHT cap/oper consistency Xiang Mei reports that mac80211 could crash if ehtcap is set but ehtoper isn't. Rather than fixing that for the individual users, enforce that both HE/EHT have consistent elemen...

5.5CVSS5.8AI score0.00104EPSS
Exploits0References5
cve
cve
added 2026/06/25 8:39 a.m.16 views

CVE-2026-53257

The CVE-2026-53257 entry concerns the Linux kernel wifi subsystem (cfg80211/mac80211). The issue arises when HE (High Efficiency) and EHT elements are inconsistent between capabilities and operations, which could trigger a crash if eht_cap is set but eht_oper isn’t. The vulnerability is addressed...

5.5CVSS5.8AI score0.00104EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.9 views

PT-2026-52352

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A crash can occur in the mac80211 component of the wifi cfg80211 module when eht cap is set but eht oper is not. To prevent this, the system must enforce consistency between High...

5.5CVSS6.1AI score0.00104EPSS
Exploits0References16
euvd
euvd
added 2026/06/23 7:53 p.m.9 views

EUVD-2026-38606

A flaw was found in the GStreamer gst-plugins-bad package. When processing a malformed H.266/VVC video stream with a crafted aspect ratio indicator value, the H.266 parser performs an out-of-bounds read of up to 8 bytes from adjacent memory. This flaw allows an attacker to craft a malicious H.266...

4.3CVSS5.7AI score0.00276EPSS
Exploits0References3
osv
osv
added 2026/06/19 9:17 p.m.5 views

UBUNTU-CVE-2026-49295

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted H.265 bitstream can cause an out-of-bounds array write in decodercontext::processreferencepictureset libde265/decctx.cc:1376. The root cause is a missing aggregate bound check on predicted...

7.1CVSS5.8AI score0.00227EPSS
Exploits1References3
ubuntu
ubuntu
added 2026/06/16 9:2 p.m.10 views

USN-8438-1: OpenImageIO vulnerabilities

It was discovered that OpenImageIO incorrectly performed bounds checking when processing SGI files. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2026-43903 It was discovered that OpenImageIO incorrectly handled run-length encoding when...

8.8CVSS6.1AI score0.00371EPSS
Exploits5
impervablog
impervablog
added 2026/06/15 8:58 a.m.29 views

Best WAAP Solutions for Enterprise Application Security: How to Choose the Right Platform in 2026

Key Takeaways The major enterprise WAAP solutions evaluated in this guide are Akamai, Cloudflare, F5, Fastly, Fortinet, Imperva, and Radware. In the most recent independent benchmarks, Akamai, Cloudflare, and Imperva were named Leaders in the Forrester Wave: Web Application Firewall Solutions, Q1...

5.8AI score
Exploits0
susecve
susecve
added 2026/06/13 2:16 a.m.10 views

SUSE CVE-2026-53702

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS5.6AI score0.00228EPSS
Exploits0References3
euvd
euvd
added 2026/06/11 6:15 p.m.9 views

EUVD-2026-36295

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS5.7AI score0.00228EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/11 12:0 a.m.21 views

PT-2026-48725

Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description A stack buffer overflow exists in the GStreamer H.265 codec parser library gst-plugins-bad. The issue occurs when parsing a buffering period SEI message, where the parser utilizes an...

6.5CVSS5.6AI score0.00228EPSS
Exploits0References10
cnnvd
cnnvd
added 2026/06/11 12:0 a.m.14 views

gst-plugins-bad 缓冲区错误漏洞

gst-plugins-bad is a GStreamer open-source plugin. gst-plugins-bad has a buffer error vulnerability. This vulnerability stems from the H.265 codec parser library using incorrect loop boundaries when parsing SEI messages during the buffer period. As a result, the CPB values allocated for the stack...

6.5CVSS5.6AI score0.00228EPSS
Exploits0References1
nessus
nessus
added 2026/06/11 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-52293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A segmentation violaton in the gfhevcreadspsbsinternal function mediatools/avparsers.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via...

7.5CVSS5.5AI score0.00467EPSS
Exploits1References3
osv
osv
added 2026/06/10 1:4 p.m.3 views

CVE-2025-71329 image-size 2.0.2 Denial of Service via Infinite Loop in JXL/HEIF Parser

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-valued size field in a recognized box-type. Attackers can trigger an infinite loop in the JXL or...

8.7CVSS6.2AI score0.0043EPSS
Exploits1References6
cvelist
cvelist
added 2026/06/09 7:57 p.m.54 views

CVE-2025-71319 image-size 2.0.2 Denial of Service via Infinite Loop in JXL/HEIF Parser

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-valued size field in a recognized box-type. Attackers can trigger an infinite loop in the JXL or...

8.7CVSS0.0064EPSS
Exploits1References3
Rows per page
Query Builder