Lucene search
K

3917 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: s390/crypto: Use vector instructions only if they are available for ChaCha20. Commit 349d03ffd5f6 “crypto: s390 – add a crypto library interface for ChaCha20” added a library interface to the s390-specific ChaCha20...

6AI score0.00193EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/19 2:43 p.m.89 views

Security Bulletin: Updating IBM WebSphere Liberty Profile in Identity Insight for security update

Summary Identity Insight customers are advised to update IBM WebSphere Liberty Profile WLP to version 26.0.0.4 for security update in WLP. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|-...

9.8CVSS6.9AI score0.64718EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/19 2:39 p.m.59 views

Security Bulletin: Updating Java in Identity Insight 10.0.0.0 for security update

Summary Identity Insight customers are advised to update OpenJDK 17 to version 17.0.19. for the security update in Java. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM InfoSphere...

8.1CVSS6.8AI score0.01361EPSS
Exploits2Affected Software1
SUSE Linux
SUSE Linux
added 2026/05/19 8:21 a.m.7 views

Security update for rsync

This update for rsync fixes the following issue CVE-2026-41035: count of entries mismatch can lead to a use-after-free bsc1262223. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.6CVSS5.8AI score0.00393EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2026/05/19 7:10 a.m.7 views

Security update for xen

This update for xen fixes the following issue CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption bsc1264066. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like...

7.8CVSS5.8AI score0.00258EPSS
Exploits0References12
NVD
NVD
added 2026/05/19 4:16 a.m.13 views

CVE-2026-47307

NULL pointer dereference vulnerability in Samsung Open Source Walrus allows an attacker to cause a denial of service via a crafted WebAssembly module containing deeply nested instructions. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9...

7.5CVSS0.00193EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/19 2:51 a.m.14 views

EUVD-2026-30823

NULL pointer dereference vulnerability in Samsung Open Source Walrus allows an attacker to cause a denial of service via a crafted WebAssembly module containing deeply nested instructions. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/19 2:51 a.m.47 views

CVE-2026-47307

NULL pointer dereference vulnerability in Samsung Open Source Walrus allows an attacker to cause a denial of service via a crafted WebAssembly module containing deeply nested instructions. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9...

5.5CVSS0.00193EPSS
Exploits0References1
CVE
CVE
added 2026/05/19 2:51 a.m.22 views

CVE-2026-47307

CVE-2026-47307 concerns a NULL pointer dereference in Samsung Open Source Walrus, a WebAssembly runtime. The vulnerability is triggered by a crafted WebAssembly module with deeply nested instructions, enabling denial of service. The issue affects Walrus at commit f339b8ee4ea701772e8ae640b3d1b12ac...

7.5CVSS5.8AI score0.00193EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.10 views

SAMSUNG Walrus 代码问题漏洞

SAMSUNG Walrus is a WebAssembly runtime engine developed by South Korean company Samsung. There is a code vulnerability in SAMSUNG Walrus, which stems from null pointer dereferencing. This vulnerability could allow attackers to exploit it by using specially crafted WebAssembly modules that contai...

5.5CVSS5.9AI score0.00193EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.23 views

PT-2026-41824

Name of the Vulnerable Software and Affected Versions Samsung Open Source Walrus version f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9 Description A NULL pointer dereference occurs when the software processes a crafted WebAssembly module containing deeply nested instructions, which allows an attacker ...

7.5CVSS5.4AI score0.00193EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2026/05/18 7:30 a.m.8 views

Security update for podman

This update for podman rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15.3...

5.8AI score
Exploits0
Amazon
Amazon
added 2026/05/15 12:0 a.m.30 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers CVE-2026-43503 In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through pskbcopy...

8.8CVSS5.4AI score0.03663EPSS
Exploits18
Packet Storm News
Packet Storm News
added 2026/05/11 12:0 a.m.15 views

Can You Keep a Secret? Involuntary Information Leakage in Language Model Writing

Language models are deployed in settings that require compartmentalization: system prompts should not be disclosed, chain-of-thought reasoning is hidden from users, and sensitive data passes through shared contexts. We test whether models can keep prompted information out of their writing. We giv...

5.7AI score
Exploits0
Amazon
Amazon
added 2026/05/09 12:0 a.m.16 views

Important: kernel-livepatch-6.1.170-208.319

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags "Dirty Frag" and other issues in Amazon Linux kernels: https://aws.amazon.com/security/security-bulletins/2026-027-aws/ CVE-2026-43284 Affected Packages:...

7.8CVSS6AI score0.93235EPSS
Exploits31
Amazon
Amazon
added 2026/05/09 12:0 a.m.17 views

Important: kernel-livepatch-6.12.74-98.124

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags "Dirty Frag" and other issues in Amazon Linux kernels: https://aws.amazon.com/security/security-bulletins/2026-027-aws/ CVE-2026-43284 Affected Packages:...

7.8CVSS6AI score0.93235EPSS
Exploits31
Amazon
Amazon
added 2026/05/09 12:0 a.m.16 views

Important: kernel-livepatch-5.10.252-250.1005

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags "Dirty Frag" and other issues in Amazon Linux kernels: https://aws.amazon.com/security/security-bulletins/2026-027-aws/ CVE-2026-43284 Affected Packages:...

7.8CVSS6AI score0.93235EPSS
Exploits31
Amazon
Amazon
added 2026/05/09 12:0 a.m.14 views

Important: kernel-livepatch-6.18.20-41.237

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags "Dirty Frag" and other issues in Amazon Linux kernels: https://aws.amazon.com/security/security-bulletins/2026-027-aws/ CVE-2026-43284 Affected Packages:...

7.8CVSS6AI score0.93235EPSS
Exploits31
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.7 views

Fedora 44 : nodejs22 (2026-3b76d8047d)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3b76d8047d advisory. Update to version 22.22.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

9.8CVSS7AI score0.26356EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2026/05/07 3:49 a.m.7 views

CVE-2026-41675

xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package allows attacker-controlled processing instruction data to be serialized into XML without...

8.7CVSS5.8AI score0.00408EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder