Lucene search
K

97 matches found

EUVD
EUVD
added 2026/06/25 9:31 a.m.6 views

EUVD-2026-39331

A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.6.0 through 2.15.0. Users are recommended to upgrade to version 2.16.0, which fixes the issue...

6.4CVSS5.8AI score0.00349EPSS
Exploits0References2
Slackware Linux
Slackware Linux
added 2026/06/17 9:43 p.m.7 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-140.12.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

9.6CVSS5.4AI score0.00476EPSS
Exploits0
NVD
NVD
added 2026/06/02 8:16 p.m.15 views

CVE-2026-42342

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

7.5CVSS0.00299EPSS
Exploits0References1
OSV
OSV
added 2026/05/29 3:16 p.m.5 views

UBUNTU-CVE-2026-41150

Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, there is a denial-of-service attack when rendering gantt charts, if they use the excludes attribute to exclude all dates. mermaid.parse is unaffected, unless you th...

5.3CVSS5.8AI score0.00384EPSS
Exploits0References9
EUVD
EUVD
added 2026/05/29 1:54 p.m.9 views

EUVD-2026-33325

Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Prior to 10.9.6 and 11.15.0, there is a denial-of-service attack when rendering gantt charts, if they use the excludes attribute to exclude all dates. mermaid.parse is unaffected, unless you th...

5.3CVSS5.8AI score0.00384EPSS
Exploits0References5
NVD
NVD
added 2026/05/22 11:16 p.m.22 views

CVE-2026-41148

Mermaid is a JavaScript tool that uses Markdown-inspired text to create and modify diagrams and charts. Versions 10.9.5 and prior, in addition to 11.0.0-alpha.1 through 11.12.0 are vulnerable to CSS injection through improper sanitization. The state diagram and any other diagram type that routes...

5.3CVSS0.00338EPSS
Exploits0References6
Slackware Linux
Slackware Linux
added 2026/05/19 11:54 p.m.13 views

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-140.11.0esr-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For...

9.8CVSS5.8AI score0.00605EPSS
Exploits0
Slackware Linux
Slackware Linux
added 2026/05/19 11:53 p.m.14 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-140.11.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

9.8CVSS5.8AI score0.00605EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/19 1:47 p.m.6 views

CVE-2026-45557

Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0...

6.9CVSS5.8AI score0.00389EPSS
Exploits0References4
Slackware Linux
Slackware Linux
added 2026/05/08 10:16 p.m.13 views

[slackware-security] kernel

New kernel packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/linux-5.15.205/kernel-generic-5.15.205-i586-1.txz: Upgraded. patches/packages/linux-5.15.205/kernel-generic-smp-5.15.205smp-i686-1.tx...

8.8CVSS6AI score0.93235EPSS
Exploits33
Slackware Linux
Slackware Linux
added 2026/05/05 8:16 p.m.16 views

[slackware-security] hunspell

New hunspell packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/hunspell-1.7.3-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues. For more information, see:...

5.8AI score
Exploits0
Slackware Linux
Slackware Linux
added 2026/05/03 1:42 a.m.16 views

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-140.10.1esr-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For...

9.6CVSS5.8AI score0.00375EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/03 12:0 a.m.5 views

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2026-122-03)

The version of mozilla-thunderbird installed on the remote host is prior to 140.10.1esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-122-03 advisory. New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues...

9.6CVSS6.1AI score0.00375EPSS
Exploits0References5
Slackware Linux
Slackware Linux
added 2026/04/27 11:13 p.m.6 views

[slackware-security] mpg123

New mpg123 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mpg123-1.33.5-i586-1.txz: Upgraded. mpg123: Fix generic control mode for largefile-sensitive builds, where 32 bit offt was used with...

5.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/26 12:0 a.m.12 views

PT-2026-35197

Technitium DNS Server before 15.0 allows DNS traffic amplification via cyclic name server delegation...

7.2CVSS5.1AI score0.00207EPSS
Exploits0References2
Slackware Linux
Slackware Linux
added 2026/04/22 12:44 a.m.8 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-140.10.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

9.8CVSS5.7AI score0.04938EPSS
Exploits1
Slackware Linux
Slackware Linux
added 2026/04/22 12:44 a.m.11 views

[slackware-security] libXpm

New libXpm packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libXpm-3.5.19-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Out-of-bounds read in xpmNextWord. For more...

5.8AI score0.00129EPSS
Exploits0
Slackware Linux
Slackware Linux
added 2026/04/16 10:42 p.m.10 views

[slackware-security] libxml2

New libxml2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.9-i586-9slack15.0.txz: Rebuilt. This update fixes security issues: entities: copy children in xmlCopyEntity. c14n: Fix...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.5 views

PT-2026-32601

Header injection vulnerability in Apache APISIX. The attacker can take advantage of certain configuration in forward-auth plugin to inject malicious headers. This issue affects Apache APISIX: from 2.12.0 through 3.15.0. Users are recommended to upgrade to version 3.16.0, which fixes the issue...

9.1CVSS5.8AI score0.00521EPSS
Exploits1References5
Slackware Linux
Slackware Linux
added 2026/04/13 10:1 p.m.9 views

[slackware-security] libarchive

New libarchive packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libarchive-3.8.7-i586-1slack15.0.txz: Upgraded. Libarchive 3.8.7 is a security and bugfix release. Notable fixes: CAB: fix NULL...

6.1AI score
Exploits0
Rows per page
Query Builder