Lucene search
+L

485 matches found

EUVD
EUVD
added 2026/04/03 6:31 p.m.4 views

EUVD-2026-18784

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hidhwrequest right now the returned value is considered to be always valid. However, when playing with HID-BPF, the return value can be arbitrary big, because it's the return value of...

6.2AI score0.00135EPSS
Exploits0References5
OSV
OSV
added 2026/04/03 5:49 p.m.17 views

CLSA-2026-1775224807 Fix of 95 CVEs

CVE-2025-39683 - tracing: Remove unneeded goto out logic CVE-2025-39683 - tracing: Limit access to parser-buffer when tracegetuser failed CVE-2025-39683 CVE-2025-38079 - crypto: algifhash - fix double free in hashaccept CVE-2025-38079 CVE-2025-38159 - wifi: rtw88: fix the 'para' buffer size to...

7.8CVSS7.2AI score0.00618EPSS
Exploits4References1
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.4 views

CVE-2026-31401

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hidhwrequest right now the returned value is considered to be always valid. However, when playing with HID-BPF, the return value can be arbitrary big, because it's the return value of...

7.8CVSS6.2AI score0.00135EPSS
Exploits0References6
CVE
CVE
added 2026/04/03 3:16 p.m.19 views

CVE-2026-31401

The CVE-2026-31401 issue affects the Linux kernel HID BPF path, specifically hid_hw_request. The vulnerability arises from an uncontrolled/arbitrary return value from dispatch_hid_bpf_raw_requests() (via struct_ops), which can cause a buffer overflow and memory corruption. Exploitation is describ...

7.8CVSS6.2AI score0.00135EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:16 p.m.24 views

CVE-2026-31401 HID: bpf: prevent buffer overflow in hid_hw_request

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hidhwrequest right now the returned value is considered to be always valid. However, when playing with HID-BPF, the return value can be arbitrary big, because it's the return value of...

7.8CVSS0.00135EPSS
Exploits0References4
OSV
OSV
added 2026/04/03 3:16 p.m.2 views

CVE-2026-31401 HID: bpf: prevent buffer overflow in hid_hw_request

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: prevent buffer overflow in hidhwrequest right now the returned value is considered to be always valid. However, when playing with HID-BPF, the return value can be arbitrary big, because it's the return value of...

7.8CVSS6.5AI score0.00135EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/03/25 4:55 p.m.10 views

SUSE CVE-2026-23382

In the Linux kernel, the following vulnerability has been resolved: HID: Add HIDCLAIMEDINPUT guards in rawevent callbacks missing them In commit 2ff5baa9b527 "HID: appleir: Fix potential NULL dereference at raw event handle", we handle the fact that raw event callbacks can happen even for a HID...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References17
EUVD
EUVD
added 2026/03/25 12:30 p.m.4 views

EUVD-2026-15319

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.6AI score0.00121EPSS
Exploits0References4
OSV
OSV
added 2026/03/25 11:16 a.m.6 views

UBUNTU-CVE-2026-23382

In the Linux kernel, the following vulnerability has been resolved: HID: Add HIDCLAIMEDINPUT guards in rawevent callbacks missing them In commit 2ff5baa9b527 "HID: appleir: Fix potential NULL dereference at raw event handle", we handle the fact that raw event callbacks can happen even for a HID...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References9
OSV
OSV
added 2026/03/25 10:28 a.m.6 views

CVE-2026-23382 HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them

In the Linux kernel, the following vulnerability has been resolved: HID: Add HIDCLAIMEDINPUT guards in rawevent callbacks missing them In commit 2ff5baa9b527 "HID: appleir: Fix potential NULL dereference at raw event handle", we handle the fact that raw event callbacks can happen even for a HID...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.3 views

CVE-2026-23349

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS5.2AI score0.00121EPSS
Exploits0
OSV
OSV
added 2026/03/25 10:27 a.m.6 views

CVE-2026-23349 HID: pidff: Fix condition effect bit clearing

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23382

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HID: Add HIDCLAIMEDINPUT guards in rawevent callbacks missing them In commit 2ff5baa9b527 HID: appleir: Fix potential NULL dereference at raw event handle, we...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References3
OSV
OSV
added 2026/03/15 5:52 a.m.5 views

OESA-2026-1549 wireshark security update

Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. Security Fixes: Wireshark ...

7.5CVSS6.1AI score0.00206EPSS
Exploits6References7
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.4 views

PT-2026-30184

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a flaw within the HID subsystem's BPF functionality. Specifically, the hid hw request function does not adequately validate the return value from dispatch hid b...

7.8CVSS7.6AI score0.00135EPSS
Exploits0References151
OSV
OSV
added 2026/03/09 8:38 a.m.18 views

CLSA-2026-1773045484 kernel: Fix of 28 CVEs

fix: dm: fix dmblkreportzones CVE-2025-38141 - ice: Fix a null pointer dereference in icecopyandinitpkg CVE-2025-38664 - qed: Don't collect too many protection override GRC elements CVE-2025-39949 - drm/amd/display: Avoid a NULL pointer dereference CVE-2025-39693 - iommu/amd/pgtbl: Fix possible...

7.8CVSS6.8AI score0.0071EPSS
Exploits3References1
Amazon
Amazon
added 2026/03/06 12:0 a.m.12 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED CVE-2022-50390 In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Reinit blkgiostatset after clearing in...

7.8CVSS6.5AI score0.00199EPSS
Exploits0
Redos
Redos
added 2026/03/04 12:0 a.m.5 views

ROS-20260304-73-0002

A vulnerability in the usbhidparse function of the bNumDescriptors component of the Linux kernel is related to a violation of the initial buffer boundary. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

7.1CVSS7.2AI score0.00175EPSS
Exploits0
CNVD
CNVD
added 2026/03/02 12:0 a.m.4 views

Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-14275)

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A denial-of-service vulnerability exists in several Apple products, which can be exploited by attackers to...

5.7CVSS5.8AI score0.00258EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/02 12:0 a.m.1 views

Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-14273)

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A denial-of-service vulnerability exists in several Apple products, which can be exploited by attackers to...

5.7CVSS5.8AI score0.00258EPSS
Exploits0References1
Rows per page
Query Builder