Lucene search
K

1098 matches found

OSV
OSV
added 2026/07/02 1:2 p.m.5 views

MAL-2026-6725 Malicious code in @modhamanish/rn-mm-template (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bafa948cdfb9fda0d33e923e0e352a384adecfaaab1ece9a20b1b645c1b58ae6 The package was found to contain malicious code or consuming dependency that contains malicious code Source: ghsa-malware...

6.1AI score
Exploits0References2
OSV
OSV
added 2026/07/02 11:0 a.m.3 views

CGA-FV49-J265-MMRC

Bulletin has no description...

5.7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/07/01 3:19 a.m.4 views

SUSE CVE-2026-53085

In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget. If the task exits concurrently, the mmstruct can be freed as it is...

7.8CVSS5.8AI score0.00113EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53085

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget...

7.8CVSS6AI score0.00113EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.5 views

CVE-2026-53085

In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget. If the task exits concurrently, the mmstruct can be freed as it is...

7.8CVSS0.00113EPSS
Exploits0References7
CVE
CVE
added 2026/06/24 4:30 p.m.10 views

CVE-2026-53085

The CVE-2026-53085 issue affects the Linux kernel BPF subsystem where the open-coded task_vma iterator reads task->mm locklessly and uses mmap_read_trylock() without taking an mm reference, risking use-after-free if the task exits concurrently. The patch reads task->mm with a trylock on all...

7.8CVSS5.7AI score0.00113EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/24 4:30 p.m.4 views

EUVD-2026-38953

In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget. If the task exits concurrently, the mmstruct can be freed as it is...

5.7AI score0.00113EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.13 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: drm/buddy: This issue was addressed by validating the rounded allocation size before proceeding with the allocation process. When the DRMBUDDYCONTIGUOUSALLOCATION flag is set, the requested allocation size is rounded up to the ne...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.11 views

PT-2026-51979

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free flaw exists in the Berkeley Packet Filter BPF subsystem. The task vma iterator reads task-mm locklessly and acquires mmap read trylock without calling mmget. If a task...

7.8CVSS5.7AI score0.00113EPSS
Exploits0References9
OSV
OSV
added 2026/06/17 4:23 p.m.7 views

MINI-6MGR-V25C-G9MM

Bulletin has no description...

5AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/11 1:54 p.m.12 views

Malicious code in mm-ts-utils-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6f5526f66eb7799c34080dc4e5f938decfa90924772556b159a26eaa3b1c4eb3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.5AI score
Exploits0References1
Snyk
Snyk
added 2026/06/11 1:54 p.m.12 views

Malicious Package

Overview sitecore-mm-component-style is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.4AI score
Exploits0References2
Snyk
Snyk
added 2026/06/11 1:54 p.m.12 views

Malicious Package

Overview mm-ts-utils-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score
Exploits0References2
OSV
OSV
added 2026/06/11 1:54 p.m.10 views

MAL-2026-5669 Malicious code in mm-ts-utils-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6f5526f66eb7799c34080dc4e5f938decfa90924772556b159a26eaa3b1c4eb3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.5AI score
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/09 12:11 p.m.13 views

CVE-2026-46318

In the Linux kernel, the following vulnerability has been resolved: Revert "mm/hugetlbfs: update hugetlbfs to use mmapprepare" This reverts commit ea52cb24cd3f "mm/hugetlbfs: update hugetlbfs to use mmapprepare" with conflict resolution to account for changes in commit ea52cb24cd3f "mm/hugetlbfs:...

5.5CVSS5.3AI score0.001EPSS
Exploits0
OSV
OSV
added 2026/06/08 5:16 p.m.9 views

UBUNTU-CVE-2026-46276

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix zero-size GDS range init on RDNA4 RDNA4 GFX 12 hardware removes the GDS, GWS, and OA on-chip memory resources. The gfxv120 initialisation code correctly leaves adev-gds.gdssize, adev-gds.gwssize, and adev-gds.oasi...

5.5CVSS5.4AI score0.00123EPSS
Exploits0References15
Packet Storm News
Packet Storm News
added 2026/06/08 12:0 a.m.8 views

Unveiling Privacy Risks in Multi-Modal Large Language Models: Task-Specific Vulnerabilities and Mitigation Challenges

Privacy risks in text-only Large Language Models LLMs are well studied, particularly their tendency to memorize and leak sensitive information. However, Multi-modal Large Language Models MLLMs, which process both text and images, introduce unique privacy challenges that remain underexplored...

5.5AI score
Exploits0
OSV
OSV
added 2026/06/05 6:24 p.m.11 views

OPENSUSE-SU-2026:20912-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: iommu/amd: Use maximum Event log buffer size when SNP is enabled on Family 0x19 bsc1243603. - CVE-2026-3150: bcache: fix cacheddev.sbbio use-after-free and...

9.8CVSS6.9AI score0.005EPSS
Exploits17References83
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-45931

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - accel/amdxdna: Hold mm structure across iommusvaunbinddevice Some tests trigger a crash in iommusvaunbinddevice due to accessing iommumm after the associated mm...

7.8CVSS7AI score0.00173EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.7 views

CVE-2026-46183

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: protect path kfree with damonsysfslock damonsysfsquotgoal-path can be read and written by users, via DAMON sysfs 'path' file. It can also be indirectly read, for the parameters on,offline committing to...

7.8CVSS5.8AI score0.0012EPSS
Exploits0
Rows per page
Query Builder