Lucene search
K

31582 matches found

EUVD
EUVD
added 2026/04/22 9:31 a.m.7 views

EUVD-2026-24710

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References3
NVD
NVD
added 2026/04/22 9:16 a.m.4 views

CVE-2026-6844

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS0.00104EPSS
Exploits0References2
OSV
OSV
added 2026/04/22 8:55 a.m.6 views

CLSA-2026-1776848113 gimp: Fix of 2 CVEs

CVE-2026-2239: fix heap-buffer-overflow in freadpascalstring when processing PSD files and a follow-up NULL pointer dereference in loadresource1006 alpha names handling - CVE-2026-2272: fix integer overflow in ICO file loading...

6.5CVSS5.8AI score0.00838EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2026/04/22 8:37 a.m.3 views

CVE-2026-6844 Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/22 8:37 a.m.4 views

CVE-2026-6844

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References3
CVE
CVE
added 2026/04/22 8:37 a.m.27 views

CVE-2026-6844

CVE-2026-6844 affects the readelf utility in the binutils package. A crafted ELF file can trigger two DoS conditions: (1) resource exhaustion leading to out-of-memory and (2) a null pointer dereference causing a segmentation fault. Both can render readelf unresponsive or crash, resulting in denia...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References2Affected Software4
Cvelist
Cvelist
added 2026/04/22 8:37 a.m.47 views

CVE-2026-6844 Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS0.00104EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34327

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34326

An attacker can send replies that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service. Cookies are disabled by default...

5.9CVSS5.8AI score0.00418EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.5 views

PT-2026-34364

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix param ctx leak on damon sysfs new test ctx failure Patch series "mm/damon/sysfs: fix memory leak and NULL dereference issues", v4. DAMON SYSFS can leak memory under allocation failure, and do NULL pointer...

5.6AI score0.00121EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.5 views

PT-2026-34415

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference exists in the Bluetooth L2CAP component. The issue occurs within the l2cap sock ready cb function when the sk pointer is used without verifying if it is null...

7.8CVSS5.4AI score0.00378EPSS
Exploits0References122
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34363

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description Multiple sysfs command paths dereference contexts arr0 without verifying that kdamond-contexts-nr equals 1. A privileged user can set nr contexts to 0 via sysfs while DAMON is running,...

5.5CVSS6AI score0.00122EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013605)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013605 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: Add missing check for allocorderedworkqueue Add check for the return value of...

5.5AI score0.00177EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

PowerDNS Recursor(pdns_recursor) 代码问题漏洞

PowerDNS Recursor pdnsrecursor is a domain name resolution server developed by the Dutch company PowerDNS. There is a code vulnerability in PowerDNS Recursor. This vulnerability arises from the use of the zoneToCache function, where attackers can send zones that result in null pointer...

4.9CVSS5.9AI score0.00512EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.12 views

PT-2026-43131

Name of the Vulnerable Software and Affected Versions GNU LibreDWG versions prior to 0.15 Description A security flaw in the DWG File Handler component occurs within the dwg next entity function of the src/decode.c file. The issue is caused by incorrect resource cleanup or release, leading to a...

4.8CVSS6.1AI score0.00143EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34318

An RPZ sent by a malicious authoritative server can result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00523EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.7 views

PowerDNS Recursor(pdns_recursor) 代码问题漏洞

PowerDNS Recursor pdnsrecursor is a domain name resolution server developed by the Dutch company PowerDNS. There is a code vulnerability in PowerDNS Recursor, which stems from the ability for attackers to send responses that lead to null pointer dereferencing. Due to lack of consistency checks,...

5.9CVSS5.9AI score0.00418EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from incorrect descriptor completion in the llistabortdesc function of the dmaengine module. This...

9.8CVSS7.1AI score0.00457EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013734)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013734 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: Fix potential null-ptr-deref due to drmmmodeconfiginit drmmmodeconfiginit will call...

5.5AI score0.00197EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.9 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013613)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013613 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: mts64: fix possible null-ptr-defer in sndmts64interrupt I got a null-ptr-defer error report...

5.5AI score0.00239EPSS
Exploits0References4
Rows per page
Query Builder