Lucene search
K

63137 matches found

CNNVD
CNNVD
added 2026/04/24 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mtkdsi driver not storing driver data before calling mipidsihostregister, resulting in a null...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.11 views

PT-2026-34914

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the drm/mediatek component where driver data is not stored before the mipi dsi host register function is invoked. This causes the mtk dsi bind function to attempt to...

7.8CVSS6AI score0.00164EPSS
Exploits0References144
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of null pointer checking in the kstrdup function, potentially leading to kernel crashes...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the bonddebugrlbhashshow function not checking whether the slave pointer is empty, potentially...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of input validation in the alpsrawevent mechanism, potentially leading to null pointer...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References1
OSV
OSV
added 2026/04/23 6:38 p.m.6 views

CLSA-2026-1776879277 squid: Fix of 13 CVEs

CVE-2018-1000027: fix NULL pointer dereference in clientFollowXForwardedForCheck for transactions without a client connection - CVE-2018-19131: fix XSS via X.509 certificate fields rendered unescaped in SSL error pages - CVE-2019-12520: prevent cache poisoning by suppressing URL userinfo from...

9.8CVSS6.8AI score0.74477EPSS
Exploits2References1
SUSE Linux
SUSE Linux
added 2026/04/23 3:53 p.m.3 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

8.2CVSS6.1AI score0.00885EPSS
Exploits0References20
Microsoft CVE
Microsoft CVE
added 2026/04/23 8:6 a.m.5 views

Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready_cb

...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/23 7:18 a.m.12 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.7AI score0.00467EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2026/04/23 7:6 a.m.5 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28390: NULL pointer dereference during processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo bsc1261678. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like Ya...

8.2CVSS5.7AI score0.00805EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/04/23 1:28 a.m.7 views

SUSE CVE-2026-6844

A flaw was found in the readelf utility of the binutils package. A local attacker could exploit two Denial of Service DoS vulnerabilities by providing a specially crafted Executable and Linkable Format ELF file. One vulnerability, a resource exhaustion CWE-400, can lead to an out-of-memory...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.9 views

SUSE CVE-2026-31436

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor completion in llistabortdesc At the end of this function, d is the traversal cursor of flist, but the code completes found instead. This can lead to issues such as NULL pointer...

7CVSS5.6AI score0.00457EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.6 views

SUSE CVE-2026-31437

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix NULL pointer dereference in netfsunbufferedwrite on retry When a write subrequest is marked NETFSSREQNEEDRETRY, the retry path in netfsunbufferedwrite unconditionally calls stream-preparewrite without checking if it is...

5.6AI score0.00121EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.5 views

SUSE CVE-2026-31457

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts-nr in repeatcallfn damonsysfsrepeatcallfn calls damonsysfsupdtunedintervals, damonsysfsupdschemesstats, and damonsysfsupdschemeseffectivequotas without checking contexts-nr. If nrcontexts is set to ...

5.6AI score0.00121EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.6 views

SUSE CVE-2026-31458

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts-nr before accessing contextsarr0 Multiple sysfs command paths dereference contextsarr0 without first verifying that kdamond-contexts-nr == 1. A user can set nrcontexts to 0 via sysfs while DAMON is...

5.6AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.7 views

SUSE CVE-2026-31481

In the Linux kernel, the following vulnerability has been resolved: tracing: Drain deferred trigger frees if kthread creation fails Boot-time trigger registration can fail before the trigger-data cleanup kthread exists. Deferring those frees until late init is fine, but the post-boot fallback mus...

5.6AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.5 views

SUSE CVE-2026-31510

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref on l2capsockreadycb Before using sk pointer, check if it is null. Fix the following: KASAN: null-ptr-deref in range 0x0000000000000260-0x0000000000000267 CPU: 0 UID: 0 PID: 5985 Comm:...

5.6AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:24 a.m.6 views

SUSE CVE-2026-33262

An attacker can send replies that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service. Cookies are disabled by default...

5.9CVSS5.8AI score0.00418EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:24 a.m.8 views

SUSE CVE-2026-33600

An RPZ sent by a malicious authoritative server can result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00523EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:24 a.m.8 views

SUSE CVE-2026-33601

If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service...

4.4CVSS5.8AI score0.00512EPSS
Exploits0References3
Rows per page
Query Builder