Lucene search
K

35 matches found

Cvelist
Cvelist
added 2026/05/28 9:40 a.m.38 views

CVE-2026-46211 drm/msm/gem: fix error handling in msm_ioctl_gem_info_get_metadata()

In the Linux kernel, the following vulnerability has been resolved: drm/msm/gem: fix error handling in msmioctlgeminfogetmetadata msmioctlgeminfogetmetadata always returns 0 regardless of errors. When copytouser fails or the user buffer is too small, the error code stored in ret is ignored becaus...

0.00127EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: dm thin: Use the pmd-root from the last transaction when commit fails Recently, we discovered a problem with a softlockup in the dm thin pool’s btree lookup code due to corrupted metadata. Kernel panic – not syncing: Softlockup:...

5.5CVSS6.1AI score0.0015EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/19 1:31 p.m.17 views

kernel: nvmet: fix memory leak of bio integrity

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak of bio integrity If nvmet receives commands with metadata there is a continuous memory leak of kmalloc-128 slab or more precisely bio-biintegrity. Since commit bf4c89fc8797 "block: don't call biouninit from...

5.5CVSS5.9AI score0.00155EPSS
Exploits0References5
OSV
OSV
added 2026/05/06 8:40 p.m.2 views

CVE-2026-40251 Incus out-of-bounds panic in snapshot metadata handling allows denial of service

Incus is a system container and virtual machine manager. In versions before 7.0.0, missing validation logic in the storage volume import logic allows an authenticated user with access to the storage volume feature to cause the Incus daemon to crash. The backup restore subsystem contains an...

7.1CVSS5.9AI score0.00408EPSS
Exploits1References4
Snyk
Snyk
added 2026/04/07 6:16 p.m.7 views

Improper Handling of Case Sensitivity

Overview Affected versions of this package are vulnerable to Improper Handling of Case Sensitivity via improper handling of metadata tags in the exiftool process. An attacker can manipulate files on the filesystem, such as renaming, moving, or creating hard or symbolic links to arbitrary paths, b...

9.1CVSS5.7AI score
Exploits0References3
Ubuntu
Ubuntu
added 2026/03/19 7:8 a.m.7 views

USN-8103-2: Exiv2 regression

USN-8103-1 fixed vulnerabilities in Exiv2. The update caused a regression for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that Exiv2 did not correctly handle...

5.5CVSS6.7AI score0.00226EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.6 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Exiv2 vulnerabilities (USN-8103-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8103-1 advisory. It was discovered that Exiv2 did not correctly handle reading certain buffers. An attacker could...

8.1CVSS6.8AI score0.01848EPSS
Exploits4References8
Snyk
Snyk
added 2026/02/25 7:11 p.m.3 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free via the meta coder. An attacker can cause application instability or a denial of service by triggering a failed allocation that leads to writing a single byte to a freed memory location. Remediation A fix was pushed into...

6.5CVSS5.9AI score0.00184EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/23 12:0 a.m.10 views

AliasVault 安全漏洞

AliasVault is an open-source password manager developed by AliasVault. Versions of AliasVault prior to 0.25.3 contained a security vulnerability. This vulnerability stemmed from incorrect handling of parameters such as accessToken, refreshToken, metadata, keyderivationparams, and authMethods in t...

2.5CVSS5.8AI score0.00099EPSS
Exploits0References9
OSV
OSV
added 2025/10/17 2:56 p.m.4 views

OESA-2025-2483 poppler security update

is a PDF rendering library. Security Fixes: Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata such as GTSPDFEVersion of a PDF document, e.g., a regular expression for a long pdfsubver string. This occurs in...

8.6CVSS6.7AI score0.00159EPSS
Exploits0References3
OSV
OSV
added 2025/10/17 2:56 p.m.4 views

OESA-2025-2482 poppler security update

is a PDF rendering library. Security Fixes: Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata such as GTSPDFEVersion of a PDF document, e.g., a regular expression for a long pdfsubver string. This occurs in...

8.6CVSS6.7AI score0.00159EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/10/09 10:52 a.m.12 views

libtiff: Libtiff Write-What-Where

A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controll...

8.8CVSS7.6AI score0.00739EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17575

Malware in sbrugna...

5.5CVSS5.5AI score0.00388EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-15806

Malware in sbrugna...

7.8CVSS8.7AI score0.00297EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/08/04 12:20 p.m.5 views

USN-7545-4: Apport regression

USN-7545-1 fixed vulnerabilities in Apport. The update incorrectly handled logging if a crashing process was killed while Apport was analyzing it. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Qualys discovered that Apport incorrectly handled metada...

5.5AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/07/29 11:23 p.m.2 views

SUSE CVE-2025-38405

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak of bio integrity If nvmet receives commands with metadata there is a continuous memory leak of kmalloc-128 slab or more precisely bio-biintegrity. Since commit bf4c89fc8797 "block: don't call biouninit from...

3.3CVSS6.6AI score0.00155EPSS
Exploits0References9
NVD
NVD
added 2025/06/18 11:15 a.m.5 views

CVE-2022-50126

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix assertion 'jh-bfrozendata == NULL' failure when journal aborted Following process will fail assertion 'jh-bfrozendata == NULL' in jbd2journaldirtymetadata: jbd2journalcommittransaction unlinkdir/a jh-btransaction = tran...

5.5CVSS0.0016EPSS
Exploits0References8
OSV
OSV
added 2025/06/18 11:2 a.m.8 views

CVE-2022-50126 jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix assertion 'jh-bfrozendata == NULL' failure when journal aborted Following process will fail assertion 'jh-bfrozendata == NULL' in jbd2journaldirtymetadata: jbd2journalcommittransaction unlinkdir/a jh-btransaction = tran...

5.5CVSS5.7AI score0.0016EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2025/06/10 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-7559-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS4.9AI score0.0066EPSS
Exploits1References2
OSV
OSV
added 2025/06/09 12:57 p.m.4 views

USN-7545-2 apport regression

USN-7545-1 fixed a vulnerability in Apport. The update introduced a regression that prevented core dumps from being generated inside containers. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Qualys discovered that Apport incorrectly handled metadata...

5.8AI score
Exploits0References2
Rows per page
Query Builder