Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46279

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/alloctag: clear codetag for pages allocated before pageext initialization Due to initialization ordering, pageext is allocated and initialized relatively lat...

7.8CVSS6AI score0.00127EPSS
Exploits0References4
OSV
OSV
added 2026/05/22 9:5 a.m.31 views

CLSA-2026-1779375889 kernel: Fix of 95 CVEs

perf/x86/intel/uncore: Fix die ID init and look up bugs CVE-2026-43344 - x86/apic: Disable x2apic on resume if the kernel expects so CVE-2026-43363 - drm/amdgpu: Fix use-after-free race in VM acquire CVE-2026-43370 - dm: remove fake timeout to avoid leak request CVE-2026-43314 - md/bitmap: fix...

7.8CVSS5.9AI score0.00283EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-32951

Name of the Vulnerable Software and Affected Versions libsixel versions prior to 1.8.7-r1 Description A use-after-free issue exists in the sixel encoder encode bytes function. The sixel frame init function stores the caller-owned pixel buffer pointer directly in frame-pixels without creating a...

7.3CVSS6AI score0.00247EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.3.el7.AXS7 (AXSA:2024-8831:30)

"The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8831:30 advisory. xen/blkfront: force data bouncing when backend is untrusted CVE-2022-33742 ALSA: Fix deadlocks with kctl removals at disconnection CVE-2024-38600...

7.1CVSS5.9AI score0.00325EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/06 3:11 a.m.5 views

CVE-2026-21677 iccDEV has Undefined Behavior in CIccCLUT::Init()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have Undefined Behavior in its CIccCLUT::Init function which initializes and sets the size of a CLUT. This issue is fixed in version 2.3.1.1...

8.8CVSS6.4AI score0.00308EPSS
Exploits1References3
OSV
OSV
added 2025/12/19 5:32 p.m.3 views

CVE-2025-14958 floooh sokol sokol_gfx.h _sg_pipeline_common_init heap-based overflow

A security flaw has been discovered in floooh sokol up to 33e2271c431bf21de001e972f72da17a984da932. This vulnerability affects the function sgpipelinecommoninit in the library sokolgfx.h. Performing manipulation results in heap-based buffer overflow. The attack needs to be approached locally. The...

4.8CVSS6AI score0.00188EPSS
Exploits1References9
OSV
OSV
added 2025/12/08 12:46 a.m.3 views

CVE-2025-40317 regmap: slimbus: fix bus_context pointer in regmap init calls

In the Linux kernel, the following vulnerability has been resolved: regmap: slimbus: fix buscontext pointer in regmap init calls Commit 4e65bda8273c "ASoC: wcd934x: fix error handling in wcd934xcodecparsedata" revealed the problem in the slimbus regmap. That commit breaks audio playback, for...

6.3AI score0.00171EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-55466

Malicious code in bioql PyPI...

7.1AI score0.00208EPSS
Exploits0References4
NVD
NVD
added 2025/09/18 4:15 p.m.16 views

CVE-2022-50416

In the Linux kernel, the following vulnerability has been resolved: irqchip/wpcm450: Fix memory leak in wpcm450aicofinit If ofiomap failed, 'aic' should be freed before return. Otherwise there is a memory leak...

5.5CVSS0.00145EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/03/12 12:0 a.m.6 views

The vulnerabilities of the functions rdma_restrack_init() and type2str() in the InfiniBand driver (drivers/infiniband/core/restrack.c) of the Linux operating system allow a hacker to cause a service failure.

The vulnerabilities of the functions rdmarestrackinit and type2str in the InfiniBand driver drivers/infiniband/core/restrack.c of the Linux kernel are related to insufficient input validation. Exploiting these vulnerabilities could allow an attacker to cause a service failure...

6.6CVSS6.6AI score0.0023EPSS
Exploits0References36Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.10 views

The vulnerability of theradeon_crtc_init function in Linux kernel-based AMD Radeon graphics drivers allows a hacker to induce a service failure.

The vulnerability of the AMD Radeon driver for Linux operating systems is related to the assignment of a zero pointer in the function radeoncrtcinit within the drivers/gpu/drm/radeon/radeondisplay.c module. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.6CVSS6.3AI score0.0029EPSS
Exploits0References51Affected Software5
OSV
OSV
added 2018/05/02 9:29 p.m.2 views

DEBIAN-CVE-2018-10115

Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage of uninitialized memory, allowing remote attackers to cause a denial of service segmentation fault or execute arbitrary code via a crafted RAR archive...

7.8CVSS8.3AI score0.04666EPSS
Exploits1References1
OSV
OSV
added 2017/01/11 6:23 a.m.4 views

USN-3168-1 linux vulnerabilities

Dmitry Vyukov discovered that the KVM implementation in the Linux kernel did not properly initialize the Code Segment CS in certain error cases. A local attacker could use this to expose sensitive information kernel memory. CVE-2016-9756 Andrey Konovalov discovered that signed integer overflows...

7.8CVSS6.7AI score0.01566EPSS
Exploits8References5
OSV
OSV
added 2016/08/10 10:55 a.m.4 views

USN-3056-1 linux-raspi2 vulnerabilities

Ben Hawkes discovered an integer overflow in the Linux netfilter implementation. On systems running 32 bit kernels, a local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges. CVE-2016-3135 It was...

7.8CVSS7.1AI score0.01009EPSS
Exploits2References5
OSV
OSV
added 2016/08/06 10:59 a.m.1 views

DEBIAN-CVE-2014-9892

The sndcomprtstamp function in sound/core/compressoffload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 2013 devices, does not properly initialize a timestamp data structure, which allows attackers to obtain sensitive information via a crafted applicatio...

5.5CVSS6.1AI score0.00499EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 1970/01/01 12:0 a.m.17 views

PT-2013-6355 · Openssh +4 · Openssh +4

Name of the Vulnerable Software and Affected Versions: OpenSSH versions 6.2 through 6.3 Description: The issue allows remote authenticated users to bypass intended ForceCommand and login-shell restrictions via packet data that provides a crafted callback address. This is due to the mm newkeys fro...

10CVSS7.4AI score0.99506EPSS
Exploits207References347
Rows per page
Query Builder