CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 6 days ago•3 views

SUSE CVE-2026-46209

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Fix inconsistent plane dimension calculation in drmgemfbinitwithfuncs drmgemfbinitwithfuncs computes sub-sampled plane dimensions using plain integer division: unsigned int width = modecmd-width / i ? info-hsub : 1;...

5.8AI score0.00013EPSS

RedhatCVE•added last week•7 views

CVE-2026-46191

A flaw was found in the Linux kernel's framebuffer console fbcon component. When console rotation fails, the fbconrotatefont function may keep an old font buffer that is too small for the rotated font. A local user printing to the rotated console with a high character code can trigger an...

5.5CVSS6AI score0.00024EPSS

NVD•added last week•6 views

CVE-2026-46209

7.8CVSS0.00013EPSS

OSV•added last week•1 views

UBUNTU-CVE-2026-46191

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

6AI score0.00024EPSS

Cvelist•added last week•23 views

CVE-2026-46209 drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs()

7.8CVSS0.00013EPSS

EUVD•added last week•3 views

EUVD-2026-32836

5.8AI score0.00013EPSS

Exploits0References5

ATTACKERKB•added last week•4 views

CVE-2026-46209

7.8CVSS5.8AI score0.00013EPSS

Exploits0References9Affected Software1

CVE•added last week•12 views

CVE-2026-46209

CVE-2026-46209 affects the Linux kernel DRM GEM: a discrepancy between plane dimension calculations in drm_gem_fb_init_with_funcs() (plain integer division) and framebuffer_check() (DIV_ROUND_UP via drm_format_info_plane_width/height) can cause GEM size checks to miscalculate, potentially allowin...

7.8CVSS5.8AI score0.00013EPSS

Debian CVE•added last week•3 views

CVE-2026-46209

EUVD•added last week•5 views

Exploits0

EUVD-2026-32818

6AI score0.00024EPSS

Exploits0References5

SUSE CVE•added last week•5 views

SUSE CVE-2026-46065

In the Linux kernel, the following vulnerability has been resolved: fbdev: defio: Disconnect deferred I/O from the lifetime of struct fbinfo Hold state of deferred I/O in struct fbdeferrediostate. Allocate an instance as part of initializing deferred I/O and remove it only after the final mapping...

7.8CVSS5.8AI score0.00013EPSS

Positive Technologies•added 2026/05/28 12:0 a.m.•4 views

PT-2026-44314

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbcon rotate font. The putcs implementations for the rotated buffer will return early in this case...

6AI score0.00024EPSS

Exploits0References6

RedhatCVE•added 2026/05/27 11:42 p.m.•4 views

CVE-2026-45954

A flaw was found in the Linux kernel's au1200fb framebuffer driver. When the platformgetirq function fails during the au1200fbdrvprobe process, the driver incorrectly returns an error without releasing allocated memory. This memory leak could be exploited by a local attacker, potentially leading ...

5.8AI score0.00032EPSS

RedhatCVE•added 2026/05/27 6:40 p.m.•6 views

CVE-2026-46065

A flaw was found in the Linux kernel's framebuffer device fbdev deferred I/O defio mechanism. A local user with an active mapping of graphics memory could trigger a device hot-unplug, leading to the system accessing undefined memory. This can result in system instability or a crash, causing a...

OSV•added 2026/05/27 3:16 p.m.•5 views

UBUNTU-CVE-2026-44988

LibVNCClient is a library for easy implementation of a VNC client. In 0.9.15 and earlier, LibVNCClient's Tight encoding decoder uses fixed-size 2048-pixel scratch buffers for the Gradient filter, but it does not reject Tight rectangles whose width is larger than 2048 pixels. A malicious VNC serve...

8.8CVSS5.8AI score0.00042EPSS

Cvelist•added 2026/05/27 2:26 p.m.•37 views

CVE-2026-44988 LibVNCClient Tight Gradient decoding allows malicious server-triggered heap/stack OOB writes

8.8CVSS0.00042EPSS

CVE•added 2026/05/27 2:26 p.m.•8 views

CVE-2026-44988

CVE-2026-44988 concerns LibVNCClient (0.9.15 and earlier) where the Tight encoding decoder uses fixed-size 2048-pixel scratch buffers for the Gradient filter and does not reject Wide Tight rectangles. A malicious VNC server can send a FramebufferUpdate rectangle encoded with Tight (NoZlib | Expli...

8.8CVSS5.8AI score0.00042EPSS

OSV•added 2026/05/27 2:17 p.m.•1 views

UBUNTU-CVE-2026-46065

Debian CVE•added 2026/05/27 12:57 p.m.•4 views

Exploits0References3

CVE-2026-46065