Lucene search
K

369 matches found

OSV
OSV
added 2026/03/24 9:27 a.m.3 views

SUSE-SU-2026:20822-1 Security update for systemd

This update for systemd fixes the following issues: Security issues: - CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. - CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. - udev: check for invalid...

6.7CVSS5.9AI score0.00142EPSS
Exploits0References9
CVE
CVE
added 2025/12/16 2:44 p.m.17 views

CVE-2025-68257

CVE-2025-68257 : Linux kernel COMEDI subsystem vulnerability where compat ioctl handlers could dereference a NULL callback when the device was not attached. Root cause: compat ioctls lacked a proper sanity check of device attached status, allowing a NULL dereference in path leading to a crash. Fi...

6AI score0.0018EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-6659

Malware in sbrugna...

5.5CVSS5.6AI score0.00341EPSS
Exploits0References6
OSV
OSV
added 2020/12/06 12:15 a.m.5 views

UBUNTU-CVE-2020-29573

sysdeps/i386/ldbl2mpn.c in the GNU C Library aka glibc or libc6 before 2.23 on x86 targets has a stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern, as seen when passing a...

7.5CVSS7.2AI score0.02765EPSS
Exploits0References3
Veracode
Veracode
added 2020/04/10 12:44 a.m.39 views

Information Leakage

The kernel packages is vulnerable to an information leakage. A flaw was found in the printfatalsignal implementation in the Linux kernel. When "/proc/sys/kernel/print-fatal-signals" is set to 1 the default value is 0, memory that is reachable by the kernel could be leaked to user-space. This issu...

5.4CVSS2.4AI score0.00415EPSS
Exploits0References27Affected Software2
Prion
Prion
added 2018/08/01 6:29 a.m.29 views

Design/Logic Flaw

tssalloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service system crash due to incorrect I/O port access control on the i386 architecture...

4.9CVSS5.5AI score0.00341EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2018/08/01 6:29 a.m.21 views

CVE-2018-14775

tssalloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service system crash due to incorrect I/O port access control on the i386 architecture...

5.5CVSS5.5AI score0.00341EPSS
Exploits0References5
Cvelist
Cvelist
added 2018/08/01 6:0 a.m.24 views

CVE-2018-14775

tssalloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service system crash due to incorrect I/O port access control on the i386 architecture...

5.5AI score0.00341EPSS
Exploits0References5
CVE
CVE
added 2018/08/01 6:0 a.m.63 views

CVE-2018-14775

CVE-2018-14775 affects OpenBSD 6.2 and 6.3, where the function tss_alloc in sys/arch/i386/i386/gdt.c mishandles I/O port access control on the i386 architecture. This leads to a Local Denial of Service (system crash). The impact is local, with no information about remote exploitation provided. Pa...

5.5CVSS5.5AI score0.00341EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2018/05/18 4:29 p.m.3 views

UBUNTU-CVE-2017-18269

An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S in the GNU C Library aka glibc or libc6 2.21 through 2.27 does not correctly perform the overlapping memory check if the source memory range spans the middle of the address space, resulting in...

9.8CVSS6.9AI score0.04831EPSS
Exploits0References4
Ubuntu
Ubuntu
added 2018/01/23 1:2 a.m.119 views

USN-3542-1: Linux kernel vulnerabilities

Jann Horn discovered that microprocessors utilizing speculative execution and branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Spectre. A local attacker could use this to expose sensitive information, including kernel memory. This update provide...

5.6CVSS7.3AI score0.93838EPSS
Exploits12References1
OSV
OSV
added 2017/07/07 9:17 a.m.15 views

MGASA-2017-0201 Updated libffi packages fix security vulnerability

libffi, a library used to call code written in one language from code written in a different language, was enforcing an executable stack on the i386 architecture. While this might not be considered a vulnerability by itself, this could be leveraged when exploiting other vulnerabilities, such as t...

7CVSS6.9AI score0.00503EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/06/20 12:0 a.m.33 views

Debian DSA-3889-1 : libffi - security update (Stack Clash)

libffi, a library used to call code written in one language from code written in a different language, was enforcing an executable stack on the i386 architecture. While this might not be considered a vulnerability by itself, this could be leveraged when exploiting other vulnerabilities, like for...

7CVSS7.3AI score0.00503EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2017/06/19 12:0 a.m.5 views

PT-2017-3250 · Gnu +1 · Libffi +1

Name of the Vulnerable Software and Affected Versions: libffi versions prior to 3.1 Description: The issue is caused by libffi requesting an executable stack, allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. This is due to a buffer overflow operation in...

7CVSS7.4AI score0.00503EPSS
Exploits0References35
OpenVAS
OpenVAS
added 2017/06/18 12:0 a.m.21 views

Debian: Security Advisory (DSA-3889-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.1AI score0.00503EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/05/17 12:0 a.m.46 views

SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 2393)

This kernel update fixes the following security problems : - A bug within the UDF filesystem that caused machine hangs when truncating files on the filesystem was fixed. 186226. CVE-2006-4145 - A potential crash when receiving IPX packets was fixed. This problem is thought not to be exploitable...

7.8CVSS6AI score0.04722EPSS
Exploits5References34
securityvulns
securityvulns
added 2010/12/09 12:0 a.m.77 views

[USN-1029-1] OpenSSL vulnerabilities

=========================================================== Ubuntu Security Notice USN-1029-1 December 08, 2010 openssl vulnerabilities CVE-2008-7270, CVE-2010-4180 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS...

4.3CVSS0.3AI score0.09497EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/03/19 12:0 a.m.262 views

CentOS 5 : kernel (CESA-2010:0147)

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

7.8CVSS7AI score0.12426EPSS
Exploits7References8
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.11 views

Solaris 4 (x86) : 104663-10

CDE 1.0.2x86: dtfile patch. Date this patch was last updated by Sun : Apr/22/99 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
seebug.org
seebug.org
added 2009/04/01 12:0 a.m.42 views

Openswan和strongSwan DPD报文远程拒绝服务漏洞

BUGTRAQ ID: 34296 CVECAN ID: CVE-2009-0790 Openswan和strongSwan都是Linux系统下的IPSEC实现。 死亡对等体检测(DPD)是IPsec IKE通知消息,使用ICOOKIE/RCOOKIE机制将入站报文匹配到已知的安全关联(ISAKMP)。在一个端点的ISAKMP状态已过期但另一个端点仍在使用旧状态发送DPD通知的情况下,如果远程攻击者向Openswan和strongSwan发送了恶意的RUTHERE或 RUTHEREACK通知报文的话,就会在不存在的状态对象st上触发空指针引用,导致pluto IKE守护程序崩溃并重启。...

5CVSS0.3AI score0.03205EPSS
Exploits2
Rows per page
Query Builder