Lucene search
K

105 matches found

SUSE CVE
SUSE CVE
added 2026/05/29 1:14 a.m.7 views

SUSE CVE-2026-46217

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Avoid overflow on msg bound check As pointed out by SDL, the previous condition may be vulnerable to overflow. cherry picked from commit 3c5367d950140d4ec7af830b2268a5a6fdaa3885...

5.5CVSS5.8AI score0.00032EPSS
Exploits0References3
OSV
OSV
added 2026/05/18 3:38 p.m.1 views

GHSA-5R97-79VW-QVM4 Microsoft DirectX12: .spritefont multiply overflow only in 32-bit builds

Impact The spritefont reader can be induced to perform a 32-bit overflow multiply that could in theory result in a RCE. This impacts the use of the DirectX Tool Kit SpriteFont class file loading ctor if given untrusted data files. Note this only applies to x86/ARM builds of the library. ARM64 and...

6.9CVSS5.8AI score
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.7 views

EUVD-2026-28674

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...

5.7AI score0.00015EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:21 p.m.4 views

CVE-2026-43368

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...

5.7AI score0.00015EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/06 7:40 a.m.23 views

CVE-2026-43079 perf/x86/intel/uncore: Skip discovery table for offline dies

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Skip discovery table for offline dies This warning can be triggered if NUMA is disabled and the system boots with fewer CPUs than the number of CPUs in die 0. WARNING: CPU: 9 PID: 7257 at uncore.c:1157...

0.00015EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.5 views

PT-2026-37846

A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is already very large, combining it with more input can cause a hidden overflow in the size calculation. This makes the system think it has enough memory when it doesn’t. As a result, data may be writte...

7.5CVSS6.4AI score0.00418EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7124 – Fixed a potential overflow issue due to non-sequential channel numbers. The channel numbering must start at 0, and there should be no gaps between channels. Otherwise, it is possible to overflow the available...

5.5CVSS6.5AI score0.00018EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: comedi: vmk80xx: fixed the bulk-buffer overflow issue. The driver uses buffers sized equal to the endpoint size, but it should not assume that the tx and rx buffers have the same size. A malicious device could cause the...

7.8CVSS6AI score0.00017EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux - уязвимость в imagemagick

In the IntensityCompare function in /magick/quantize.c, there are calls to PixelPacketIntensity, which may return overflowing values to the caller when ImageMagick processes a crafted input file. To address this issue, the patch introduces and utilizes the ConstrainPixelIntensity function. This...

4.3CVSS6.8AI score0.00619EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-43020

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: MGMT: validate LTK encsize on load Load Long Term Keys stores the user-provided encsize and later uses it to size fixed-size stack operations when...

7.8CVSS6AI score0.00015EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/01 1:56 p.m.3 views

EUVD-2026-26515

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate numaces and harden ACE walk in smbinheritdacl smbinheritdacl trusts the on-disk numaces value from the parent directory's DACL xattr and uses it to size a heap allocation: acesbase = kmallocsizeofstruct smbace...

6AI score0.00056EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/25 8:47 a.m.3 views

CVE-2026-31683

In the Linux kernel, the following vulnerability has been resolved: batman-adv: avoid OGM aggregation when skb tailroom is insufficient When OGM aggregation state is toggled at runtime, an existing forwarded packet may have been allocated with only packetlen bytes, while a later packet can still ...

5.5AI score0.00015EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.2 views

PT-2026-35143

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the batman-adv module where OGM aggregation can lead to a buffer overflow. When the OGM aggregation state is toggled during runtime, a forwarded packet might be...

7.8CVSS5.9AI score0.00015EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013033)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013033 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate command header size against SVGACMDMAXDATASIZE This data originates from...

6.1AI score0.00082EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.1 views

Fedora 42 : libcgif (2026-7716e480cb)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-7716e480cb advisory. Version 0.5.3 - Fix potential undefined behavior in cgifaddframe which could have led to an integer overflow CVE-2026-4985 Tenable has extracted the precedin...

5.3CVSS5.8AI score0.00017EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006574)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006574 advisory. In the Linux kernel, the following vulnerability has been resolved: ext2: Check block size validity during mount Check that log of block size stored in the superbloc...

7.8CVSS5.8AI score0.00014EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/25 10:33 a.m.21 views

CVE-2026-23395 Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pending FLAGDEFERSETUP which can cau...

8.8CVSS0.00047EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:33 a.m.4 views

CVE-2026-23395

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pending FLAGDEFERSETUP which can cau...

8.8CVSS5.7AI score0.00047EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.3 views

PT-2026-6526

EVE Freely Allocates Buffer on The Stack With Data From Socket in github.com/lf-edge/eve...

9.9CVSS5.4AI score0.00072EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.3 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to clean up the payload size, potentially leading to member overflow...

5.9AI score0.00034EPSS
Exploits0References4
Rows per page
Query Builder