Lucene search
+L

11 matches found

osv
osv
added 2026/06/08 3:41 p.m.2 views

CVE-2026-46284 mm/hugetlb: fix early boot crash on parameters without '=' separator

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix early boot crash on parameters without '=' separator If hugepages, hugepagesz, or defaulthugepagesz are specified on the kernel command line without the '=' separator, early parameter parsing passes NULL to...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References6
euvd
euvd
added 2026/01/28 8:25 p.m.8 views

EUVD-2026-4873

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to versions 5.4.51, 6.4.33, 7.3.11, 7.4.5, and 8.0.5, the Symfony Process component did not correctly treat some characters notably = as “special” when escaping arguments on Windows. When PHP i...

6.3CVSS5.8AI score0.00201EPSS
Exploits1References5
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-34181

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.01866EPSS
Exploits0References11
nessus
nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 9 : cifs-utils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cifs-utils: stack-based buffer overflow mount.cifs may lead to local privilege escalation to root...

7.8CVSS9.6AI score0.01866EPSS
Exploits0References2
mageia
mageia
added 2022/05/12 10:24 a.m.46 views

Updated cifs-utils packages fix security vulnerability

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges. CVE-2022-27239 cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = equal sign...

7.8CVSS5.7AI score0.01866EPSS
Exploits0References4
osv
osv
added 2022/05/11 11:3 a.m.4 views

OESA-2022-1626 cifs-utils security update

The in-kernel CIFS filesystem is generally the preferred method for mounting SMB/CIFS shares on Linux. The in-kernel CIFS filesystem relies on a set of user-space tools. That package of tools is called cifs-utils.Although not really part of Samba proper, these tools were originally part of the...

7.8CVSS6.7AI score0.01866EPSS
Exploits0References3
osv
osv
added 2022/04/28 1:15 a.m.6 views

UBUNTU-CVE-2022-29869

cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = equal sign characters but is not a valid credentials file...

5.3CVSS6.8AI score0.01866EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2022/04/28 1:15 a.m.46 views

CVE-2022-29869

cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = equal sign characters but is not a valid credentials file...

5.3CVSS6.8AI score0.01866EPSS
Exploits0References3
oraclelinux
oraclelinux
added 2018/06/25 12:0 a.m.58 views

sssd and ding-libs security and bug fix update

ding-libs 0.4.0-13 - Resolves: rhbz1538061 - sssd/libiniconfig cannot parse configuration file with line longer than 5102 0.4.0-12 - Related: rhbz1377213 - ding-libs dont parse lines without an equal sign sssd 1.13.3-60.0.1 - Orabug 26746822 - revert patch 0118 to fix LDAP netgroup lookup problem...

8.8CVSS1.3AI score0.01499EPSS
Exploits0
nvd
nvd
added 2016/12/23 10:59 p.m.20 views

CVE-2016-7966

Through a malicious URL that contained a quote character it was possible to inject HTML code in KMail's plaintext viewer. Due to the parser used on the URL it was not possible to include the equal sign = or a space into the injected HTML, which greatly reduces the available HTML functionality...

7.5CVSS7.1AI score0.02345EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2016/10/05 12:0 a.m.46 views

CVE-2016-7966

Through a malicious URL that contained a quote character it was possible to inject HTML code in KMail's plaintext viewer. Due to the parser used on the URL it was not possible to include the equal sign = or a space into the injected HTML, which greatly reduces the available HTML functionality...

7.5CVSS7.2AI score0.02345EPSS
Exploits0References4
Rows per page
Query Builder