Lucene search
+L

9042 matches found

RedHat Linux
RedHat Linux
added 2026/06/30 10:34 a.m.5 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Networking component...

9.6CVSS5.7AI score0.00393EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/30 10:34 a.m.4 views

firefox: thunderbird: Same-origin policy bypass in the Networking: Cookies component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the Networking: Cookies component...

9.1CVSS5.7AI score0.00189EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/30 10:34 a.m.5 views

firefox: thunderbird: Use-after-free in the Networking: HTTP component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the Networking: HTTP component...

8.8CVSS5.8AI score0.00382EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/30 12:25 a.m.10 views

kernel: net: atm: fix crash due to unvalidated vcc pointer in sigd_send()

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM networking component. A local attacker, by acting as a malicious signaling daemon, could send a specially crafted message containing an unvalidated pointer. This unvalidated pointer would be directly used by the kernel, leading...

5.5CVSS5.9AI score0.00131EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/29 9:39 p.m.11 views

CVE-2026-10647 Deadlock denial of service in USB CDC-NCM device class on TX enqueue failure

The USB CDC-NCM device class subsys/usb/devicenext/class/usbdcdcncm.c ignores the return value of usbdepenqueue in its ethernet transmit callback cdcncmsend. When the enqueue fails, the function still calls ksemtake&data-syncsem, KFOREVER, blocking on a completion semaphore that is only ever...

5.3CVSS6.2AI score0.00134EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/29 6:30 p.m.8 views

firefox: thunderbird: Same-origin policy bypass in the Networking: Cookies component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Same-origin policy bypass in the Networking: Cookies component...

9.1CVSS5.7AI score0.00189EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/29 6:30 p.m.8 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Networking component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Networking component...

9.6CVSS5.7AI score0.00393EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/29 8:19 a.m.9 views

CVE-2026-53292

A flaw was found in the Linux kernel's phonet networking subsystem. A local user could trigger a kernel panic by sending a specially crafted message, leading to a denial of service. This occurs because the pnsocketautobind function incorrectly assumes a socket is already bound when pnsocketbind...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:5 a.m.3 views

neigh: let neigh_xmit take skb ownership

...

7.5CVSS6.1AI score0.00539EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/27 12:0 a.m.27 views

PT-2026-53076

Name of the Vulnerable Software and Affected Versions Zephyr versions 3.6.0 through 4.4.0 Description An out-of-bounds write exists in the IP socket recvmsg implementation within the insert pktinfo function. The issue occurs because the system validates the user-supplied ancillary msg control...

8.7CVSS6.1AI score0.00122EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.9 views

EulerOS 2.0 SP15 : kernel (EulerOS-SA-2026-2485)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : crypto: algifaead - Revert to operating out-of-placeCVE-2026-31431 bpf: Fix undefined behavior in interpreter sdiv/smod for INTMINCVE-2026-31525...

9.8CVSS7AI score0.96267EPSS
Exploits232References84
Chainguard
Chainguard
added 2026/06/26 8:22 p.m.24 views

GHSA-Q4H4-GMJ2-QVW2 vulnerabilities

Vulnerabilities for packages: google-guest-agent-manager, gitlab-runner, omnictl-multiarch-fips, knative-serving-fips, crossplane-provider-aws-ecs, fscrypt, gitlab-cng-fips, crossplane-provider-aws-rds, etcd, chainloop-control-plane, chisel-fips, step-issuer-fips,...

5.3AI score
Exploits0
OSV
OSV
added 2026/06/26 12:3 p.m.5 views

RLSA-2026:29703 Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/26 1:16 a.m.13 views

CVE-2026-53223

A flaw was found in the Linux kernel's networking component. This vulnerability allows a remote attacker to potentially access sensitive information or cause system instability. By sending specially crafted network packets, an attacker can exploit an issue in how the kernel handles timestamping f...

7.1CVSS5.9AI score0.00131EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 1:3 a.m.8 views

CVE-2026-53191

A flaw was found in the Linux kernel's iouring networking component. During bundle receive retries, an issue with inheriting the IORINGCQEFBUFMORE flag can cause the userspace to incorrectly advance the ring head. This memory handling error could lead to information disclosure or potentially allo...

7.8CVSS5.8AI score0.00138EPSS
Exploits0References4
Fedora
Fedora
added 2026/06/26 12:59 a.m.8 views

[SECURITY] Fedora 44 Update: perl-Socket-2.041-1.fc44

This Perl module provides a variety of constants, structure manipulators and other functions related to socket-based networking. The values and functions provided are useful when used in conjunction with Perl core functions such as socket, setsockopt and bind. It also provides several other suppo...

9.1CVSS5.6AI score0.00389EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.11 views

SUSE SLES12: MozillaFirefox / MozillaFirefox-devel / etc (SUSE-SU-2026:2583-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2583-1 advisory. Update to Firefox 140.12.0 ESR MFSA 2026-58, bsc1268071: - CVE-2026-12289: Privilege escalation in the Graphics: WebRender component. -...

9.6CVSS6.1AI score0.00476EPSS
Exploits0References60
RedhatCVE
RedhatCVE
added 2026/06/25 6:18 p.m.9 views

CVE-2026-52984

A flaw was found in the Linux kernel's networking scheduler netem. The queue limit check in the netemenqueue function does not properly account for reordered packets, allowing the total queue occupancy to exceed its configured limit. This oversight can lead to a Denial of Service DoS condition,...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 6:17 p.m.8 views

CVE-2026-53079

A flaw was found in the Linux kernel's networking scheduler netsched. When the network stack cleans up deferred packet lists, if the root queueing discipline qdisc does not implement the TCQFDEQUEUEDROPS flag, packets intended for release are not freed. This can lead to a memory leak, potentially...

5.8AI score0.00145EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 5:47 p.m.9 views

CVE-2026-53264

A flaw was found in the Linux kernel's networking scheduler. A race condition, which is a problem that occurs when multiple operations try to access the same resource at the same time, exists when network filter operations are run concurrently. This can lead to a Use-After-Free UAF vulnerability,...

7.8CVSS6AI score0.00129EPSS
Exploits0References4
Rows per page
Query Builder