Lucene search
K

37 matches found

EUVD
EUVD
added 2026/06/24 7:14 a.m.7 views

EUVD-2026-38720

In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dumpone path The SCTP exact sockdiag lookup can hold a transport reference, block on locksocksk, and then resume after sctpassociationfree has marked the association dead and freed its bin...

5.7AI score0.00126EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/05/28 3:53 a.m.10 views

SUSE CVE-2026-46073

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Fix missing usbkillurb on signal interrupt waitforcompletioninterruptibletimeout returns -ERESTARTSYS when interrupted. This needs to abort the URB and return an error. No data has been received from the device so a...

6.1CVSS5.8AI score0.00122EPSS
Exploits0References3
CVE
CVE
added 2026/05/27 12:58 p.m.19 views

CVE-2026-46073

CVE-2026-46073 is a Linux kernel issue in hwmon: powerz where wait_for_completion_interruptible_timeout() could return -ERESTARTSYS on signal interrupt and skip usb_kill_urb(), leading to reads from an unfilled transfer buffer. Public documents confirm a patch that: 1) captures the function retur...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/03/18 8:32 p.m.17 views

CVE-2026-31972 samtools mpileup has use-after-free leading to an invalid read

SAMtools is a program for reading, manipulating and writing bioinformatics file formats. The mpileup command outputs DNA sequences that have been aligned against a known reference. On each output line it writes the reference position, optionally the reference DNA base at that position obtained fr...

6.9CVSS0.00516EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/12/04 12:56 a.m.11 views

kernel: drm/vmwgfx: Fix invalid reads in fence signaled events

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

7.1CVSS6.7AI score0.00288EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/10/26 3:1 a.m.4 views

SUSE CVE-2024-49932

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't readahead the relocation inode on RST On relocation we're doing readahead on the relocation inode, but if the filesystem is backed by a RAID stripe tree we can get ENOENT e.g. due to preallocated extents not being...

5.5CVSS6.4AI score0.00201EPSS
Exploits0References5
OSV
OSV
added 2024/10/21 6:15 p.m.2 views

DEBIAN-CVE-2024-49932

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't readahead the relocation inode on RST On relocation we're doing readahead on the relocation inode, but if the filesystem is backed by a RAID stripe tree we can get ENOENT e.g. due to preallocated extents not being...

5.5CVSS5.4AI score0.00201EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2024/10/08 8:33 a.m.2 views

Security update for podofo

This update for podofo fixes the following issues: CVE-2015-8981: Fixed heap overflow in the function ReadXRefSubsection bsc1023190 CVE-2017-6840: Fixed invalid memory read in ColorChanger::GetColorFromStack colorchanger.cpp bsc1027787 CVE-2017-6841: Fixed NULL pointer dereference in...

5.9CVSS7.5AI score0.02618EPSS
Exploits3References44
CloudLinux
CloudLinux
added 2024/08/27 3:58 p.m.49 views

kernel: Fix of 11 CVEs

drm/vmwgfx: Fix invalid reads in fence signaled events CVE-2024-36960 - afunix: Fix garbage collector racing against connect CVE-2024-26923 - ipv6: remove maxsize check inline with ipv4 CVE-2023-52340 - aoe: fix the potential use-after-free problem in aoecmdcfgpkts CVE-2023-6270 - smb: client:...

7.8CVSS8AI score0.03292EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2024/06/04 4:49 p.m.23 views

CVE-2024-36960

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

7.1CVSS6.5AI score0.00288EPSS
Exploits0References4
NVD
NVD
added 2024/06/03 8:15 a.m.19 views

CVE-2024-36960

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

7.1CVSS6.4AI score0.00288EPSS
Exploits0References10
OSV
OSV
added 2024/06/03 8:15 a.m.1 views

DEBIAN-CVE-2024-36960

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

7.1CVSS5.8AI score0.00288EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/06/03 8:15 a.m.15 views

CVE-2024-36960

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

7.1CVSS6.4AI score0.00288EPSS
Exploits0References28
Cvelist
Cvelist
added 2024/06/03 7:49 a.m.27 views

CVE-2024-36960 drm/vmwgfx: Fix invalid reads in fence signaled events

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

6.4AI score0.00288EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/06/03 7:49 a.m.26 views

CVE-2024-36960 drm/vmwgfx: Fix invalid reads in fence signaled events

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drmevent to the size of the structure that's actually used. The length of the drmevent was set to the parent structure instead of to the...

6.8AI score0.00288EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.5 views

PT-2023-17453 · Suse · Suse

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to insufficient DRAM address validation in the System Management Unit SMU, which may allow an attacker to read or write from an...

9.8CVSS5.6AI score0.01018EPSS
Exploits0References32
SUSE CVE
SUSE CVE
added 2023/02/15 4:49 a.m.4 views

SUSE CVE-2017-6307

An issue was discovered in tnef before 1.4.13. Two OOB Writes have been identified in src/mapiattr.c:mapiattrread. These might lead to invalid read and write operations, controlled by an attacker...

7.8CVSS7AI score0.01411EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/05/26 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for OpenEXR (EulerOS-SA-2020-1584)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.0331EPSS
Exploits1References2
Veracode
Veracode
added 2019/05/02 6:10 a.m.22 views

Denial Of Service (DoS)

JasPer is vulnerable to denial of service attacks. A remote attacker could cause invalid reads and application crash via a crafted JPEG 2000 image. This issue affects the function jasmatrixclip of the file jasseq.c of the component JPEG 2000 Image Handler...

6.5CVSS6.4AI score0.02556EPSS
Exploits0References8Affected Software1
RedHat Linux
RedHat Linux
added 2018/05/24 7:59 p.m.3 views

Mozilla: Backport critical security fixes in Skia

Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer reads and writes during graphic operations. This vulnerability affects Thunderbird ESR 52.8, Thunderbird 52.8, and Firefox ESR 52.8...

9.8CVSS7.5AI score0.0318EPSS
Exploits0References5
Rows per page
Query Builder