Lucene search
K

4722 matches found

SUSE CVE
SUSE CVE
added 2025/05/21 12:46 a.m.3 views

SUSE CVE-2025-37969

In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup in stlsm6dsxreadtaggedfifo Prevent stlsm6dsxreadtaggedfifo from falling in an infinite loop in case patternlen is equal to zero and the device FIFO is not empty...

5.5CVSS7.7AI score0.00127EPSS
Exploits0References16
OSV
OSV
added 2025/05/20 5:15 p.m.1 views

DEBIAN-CVE-2025-37970

In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup in stlsm6dsxreadfifo Prevent stlsm6dsxreadfifo from falling in an infinite loop in case patternlen is equal to zero and the device FIFO is not empty...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 5:15 p.m.0 views

UBUNTU-CVE-2025-37969

In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup in stlsm6dsxreadtaggedfifo Prevent stlsm6dsxreadtaggedfifo from falling in an infinite loop in case patternlen is equal to zero and the device FIFO is not empty...

5.5CVSS6.2AI score0.00127EPSS
Exploits0References38
NVD
NVD
added 2025/05/20 4:15 p.m.14 views

CVE-2025-37956

In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent rename with empty string Client can send empty newname string to ksmbd server. It will cause a kernel oops from dalloc. This patch return the error when attempting to rename a file or directory with an empty new na...

5.5CVSS0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/05/20 4:15 p.m.0 views

DEBIAN-CVE-2025-37956

In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent rename with empty string Client can send empty newname string to ksmbd server. It will cause a kernel oops from dalloc. This patch return the error when attempting to rename a file or directory with an empty new na...

5.5CVSS5.6AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.1 views

UBUNTU-CVE-2025-37956

In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent rename with empty string Client can send empty newname string to ksmbd server. It will cause a kernel oops from dalloc. This patch return the error when attempting to rename a file or directory with an empty new na...

5.5CVSS6.2AI score0.00149EPSS
Exploits0References26
CVE
CVE
added 2025/05/20 4:1 p.m.95 views

CVE-2025-37956

CVE-2025-37956 : In the Linux kernel, the ksmbd component is vulnerable to a race/validation issue where a client can send an empty newname string to the ksmbd server, potentially causing a kernel oops in d_alloc. The patch resolves this by returning an error when attempting to rename a file or d...

5.5CVSS6.8AI score0.00149EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/05/20 4:1 p.m.8 views

CVE-2025-37956 ksmbd: prevent rename with empty string

In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent rename with empty string Client can send empty newname string to ksmbd server. It will cause a kernel oops from dalloc. This patch return the error when attempting to rename a file or directory with an empty new na...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/05/20 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly handling empty string rename requests, which could cause the kernel to crash...

5.5CVSS6.3AI score0.00149EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/05/19 5:21 p.m.1 views

Security update for apache2-mod_auth_openidc

This update for apache2-modauthopenidc fixes the following issues: CVE-2025-3891: denial of service via POST requests with an empty Content-Type header and with OIDCPreservePost On bsc1242015. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS7.3AI score0.01214EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/19 6:36 a.m.6 views

kernel: net: ppp: Add bound checking for skb data on ppp_sync_txmung

An out-of-bounds read vulnerability exists in the pppsynctxmunge function in the Linux kernel's PPP subsystem. Insufficient bounds checking on incoming PPP packets may lead to a kernel crash if a packet with an empty or truncated payload is processed...

7.1CVSS6.9AI score0.00161EPSS
Exploits0References5
OSV
OSV
added 2025/05/16 1:24 p.m.4 views

OESA-2025-1518 mariadb security update

MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs a...

4.9CVSS7.5AI score0.00432EPSS
Exploits0References2
OSV
OSV
added 2025/05/16 1:24 p.m.3 views

OESA-2025-1517 mariadb security update

MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs a...

4.9CVSS7.5AI score0.00432EPSS
Exploits0References2
OSV
OSV
added 2025/05/16 1:24 p.m.3 views

OESA-2025-1516 mariadb security update

MariaDB is a community developed fork from MySQL - a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs a...

4.9CVSS7.5AI score0.00432EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.3 views

kernel: drm/amdgpu: add list empty check to avoid null pointer issue

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add list empty check to avoid null pointer issue Add list empty check to avoid null pointer issues in some corner cases. - listforeachentrysafe...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.4 views

kernel: ppp: fix ppp_async_encode() illegal access

In the Linux kernel, the following vulnerability has been resolved: ppp: fix pppasyncencode illegal access syzbot reported an issue in pppasyncencode 1 In this case, pppoesendmsg is called with a zero size. Then pppasyncencode is called with an empty skb. BUG: KMSAN: uninit-value in pppasyncencod...

7.1CVSS6.8AI score0.00272EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/05/07 2:12 a.m.3 views

SUSE CVE-2025-3416

A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string...

3.7CVSS6.7AI score0.00452EPSS
Exploits0References47
Tenable Nessus
Tenable Nessus
added 2025/05/07 12:0 a.m.4 views

RHEL 8 : mod_auth_openidc:2.3 (RHSA-2025:4597)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:4597 advisory. The modauthopenidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an OpenID Connec...

7.5CVSS6.3AI score0.01214EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.4 views

Do Not Allow Empty Links

Empty links are redundant files and waste system resources. In addition, if a file is installed or created at the target location of an empty link, the file can be accessed through the link, leading to possible information leakage or tampering. If the file to which the link points has been delete...

6.7AI score
Exploits0References4
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.3 views

Do Not Allow Login with an Empty Password

Login with an empty password means that a user can log in to a system without a password. If an empty password is allowed for login, the user with an empty password may be attacked or may be used by attackers. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted fro...

7AI score
Exploits0References4
Rows per page
Query Builder