Lucene search
K

119 matches found

SUSE CVE
SUSE CVE
added 2026/06/17 2:16 a.m.22 views

SUSE CVE-2026-46331

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading to page cache corruption tcfpeditact computes the COW range for skbensurewritable once before the key loop using tcfpoffmaxhint, but the hint does not account for the runtime header offset...

7.8CVSS5.5AI score0.00321EPSS
Exploits11References16
NVD
NVD
added 2026/06/16 8:16 a.m.20 views

CVE-2026-46331

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading to page cache corruption tcfpeditact computes the COW range for skbensurewritable once before the key loop using tcfpoffmaxhint, but the hint does not account for the runtime header offset...

7.8CVSS0.00321EPSS
Exploits11References43
CVE
CVE
added 2026/06/16 6:26 a.m.532 views

CVE-2026-46331

CVE-2026-46331 affects the Linux kernel’s net/sched packet editing path, specifically the per-key handling in act_pedit where the writable Copy-on-Write (COW) region was calculated before the actual write offset was known. The runtime header offset from typed keys could leave portions of memory u...

7.8CVSS5.4AI score0.00321EPSS
Exploits11References43Affected Software1
OSV
OSV
added 2026/05/22 4:0 p.m.14 views

CLSA-2026-1779465604 postgresql: Fix of CVE-2026-6473

CVE-2026-6473: tsearch: bound StartSel/StopSel/FragmentDelimiter length to PGINT16MAX in tsheadline - CVE-2026-6473: contrib/ltree: guard lquery parsing against numvar and totallen wraparound - CVE-2026-6473: regex: add overflow-checked MALLOCARRAY/REALLOCARRAY and bound NFA state/color products...

8.8CVSS5.8AI score0.00668EPSS
Exploits0References1
OSV
OSV
added 2026/05/22 1:6 p.m.8 views

CLSA-2026-1779455173 Fix CVE(s): CVE-2026-43618

SECURITY UPDATE: integer overflow in compressed-token decoder allows memory disclosure to a malicious sender - debian/patches/CVE-2026-43618.patch: cap rxtoken at MAXTOKENINDEX and add overflow checks in recvcompressedtokennum/run; add CHUNKSIZE bound check in simplerecvtoken; initialize data=NUL...

8.1CVSS5.9AI score0.0078EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/21 8:14 a.m.39 views

CVE-2026-44071 FORTIFY_SOURCE disabled

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFYSOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

3.7CVSS0.00335EPSS
Exploits0References1
CVE
CVE
added 2026/05/21 8:14 a.m.21 views

CVE-2026-44071

Netatalk versions 3.1.2 through 4.4.2 are compiled without FORTIFY_SOURCE, disabling built-in runtime buffer overflow detection. This may allow a remote attacker to cause a minor denial of service via memory errors that would otherwise be detected and terminated. No exploit details or patched ver...

3.7CVSS6AI score0.00335EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.10 views

PT-2026-42436

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY SOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

3.7CVSS6AI score0.00335EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.19 views

PT-2026-49625

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds write flaw exists in the traffic control packet editing pedit subsystem of the Linux kernel. In the tcf pedit act function, the copy-on-write COW range for skb ensure...

7.8CVSS6.5AI score0.00321EPSS
Exploits11
Amazon
Amazon
added 2026/05/14 12:0 a.m.21 views

Important: docker

Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...

9.8CVSS7.3AI score0.08123EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/05/11 4:23 p.m.7 views

golang: cmd/compile: possible memory corruption after bound check elimination

A flaw was found in the cmd/compile package in the Go standard library. The compiler fails to correctly check for integer overflow or underflow in arithmetic operations involving loop induction variables. As a result, the compiler allows invalid memory indexing to occur at runtime, potentially...

9.8CVSS5.8AI score0.00536EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.6 views

CVE-2026-31707

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate response sizes in ipcvalidatemsg ipcvalidatemsg computes the expected message size for each response type by adding or multiplying attacker-controlled fields from the daemon response to a fixed struct size in...

7.1CVSS5.8AI score0.00125EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006922)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006922 advisory. In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcondosetfont Fix integer overflow vulnerabilities in...

7.8CVSS6.8AI score0.00159EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.14 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007221)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007221 advisory. In the Linux kernel, the following vulnerability has been resolved: iouring: fix overflows checks in provide buffers Colin reported before possible overflow and sign...

7.8CVSS6.5AI score0.0026EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/25 10:26 a.m.22 views

CVE-2026-23280 accel/amdxdna: Prevent ubuf size overflow

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Prevent ubuf size overflow The ubuf size calculation may overflow, resulting in an undersized allocation and possible memory corruption. Use checkaddoverflow helpers to validate the size calculation before allocati...

7.8CVSS0.00127EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: fbcon: fixed integer overflow in fbcondosetfont Integer overflow vulnerabilities have been addressed in fbcondosetfont, where font size calculations might cause overflow when handling user-controlled font parameters. These...

7.8CVSS6.7AI score0.00159EPSS
Exploits0References2
OSV
OSV
added 2026/02/12 3:31 p.m.7 views

CLSA-2026-1770910304 Fix CVE(s): CVE-2026-23876

SECURITY UPDATE: out of bounds write vulnerability in XBM decoder - debian/patches/CVE-2026-23876.patch: add overflow checks to prevent out of bounds write in coders/xbm.c - CVE-2026-23876...

9.8CVSS7.3AI score0.00609EPSS
Exploits1References1
OSV
OSV
added 2026/02/12 3:26 p.m.9 views

CLSA-2026-1770909956 Fix CVE(s): CVE-2026-23876

SECURITY UPDATE: out of bounds write vulnerability in XBM decoder - debian/patches/CVE-2026-23876.patch: add overflow checks to prevent out of bounds write in coders/xbm.c - CVE-2026-23876...

9.8CVSS7.3AI score0.00609EPSS
Exploits1References1
OSV
OSV
added 2026/02/12 1:32 p.m.8 views

CLSA-2026-1770903151 Fix CVE(s): CVE-2026-23876

SECURITY UPDATE: out of bounds write vulnerability in XBM decoder - debian/patches/CVE-2026-23876.patch: add overflow checks to prevent out of bounds write in coders/xbm.c - CVE-2026-23876...

9.8CVSS7.3AI score0.00609EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.2 views

PT-2026-6538

In the unique reclaim path of BytesMut::reserve, the condition rs if v capacity = new cap + offset uses an unchecked addition. When new cap + offset overflows usize in release builds, this condition may incorrectly pass, causing self.cap to be set to a value that exceeds the actual allocated...

5.5AI score
Exploits0References4
Rows per page
Query Builder