Lucene search
K

26 matches found

OSV
OSV
added yesterday4 views

ROOT-OS-DEBIAN-11-CVE-2023-53105 CVE-2023-53105 in rootio-linux - Patched by Root

Root has patched CVE-2023-53105 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS7.6AI score0.00157EPSS
Exploits0
OSV
OSV
added 2026/06/15 3:21 p.m.4 views

ROOT-OS-DEBIAN-12-CVE-2026-4224 CVE-2026-4224 in rootio-python3.11 - Patched by Root

Root has patched CVE-2026-4224 in the rootio-python3.11 package for Root:Debian:12. Multiple fixed versions available...

5.9CVSS5.9AI score0.00621EPSS
Exploits0
OSV
OSV
added 2026/05/16 1:33 a.m.9 views

CLSA-2026-1778895199 Fix CVE(s): CVE-2024-50602

SECURITY UPDATE: Crash in XMLResumeParser because XMLStopParser can stop/suspend an unstarted parser - debian/patches/CVE-2024-50602.patch: make XMLStopParser refuse to stop/suspend an unstarted parser - CVE-2024-50602...

5.9CVSS5.8AI score0.0104EPSS
Exploits0References1
OSV
OSV
added 2026/05/12 3:25 p.m.6 views

CLSA-2026-1778599539 Fix CVE(s): CVE-2026-4878

SECURITY UPDATE: TOCTOU race condition in capsetfile - debian/patches/CVE-2026-4878.patch: open the target file and operate on /proc/self/fd/N so the inode is locked between the regular-file check and the xattr update - CVE-2026-4878...

7CVSS5.8AI score0.00188EPSS
Exploits1References1
OSV
OSV
added 2026/05/11 8:25 a.m.5 views

CLSA-2026-1778487942 Fix CVE(s): CVE-2026-25576

SECURITY UPDATE: fix heap buffer over-read in raw pixel coders when -extract dimensions exceed -size dimensions - debian/patches/CVE-2026-25576.patch: fix heap buffer over-read in raw pixel coders when -extract dimensions exceed -size dimensions - CVE-2026-25576...

5.5CVSS7.3AI score0.00181EPSS
Exploits0References1
OSV
OSV
added 2026/04/28 4:27 p.m.4 views

CLSA-2026-1777393624 Fix CVE(s): CVE-2026-28390

SECURITY UPDATE: NULL dereference in CMS RSA-OAEP decryption when the optional pSourceFunc parameters field is omitted from a KeyTransportRecipientInfo, leading to a denial of service. - debian/patches/CVE-2026-28390.patch: check plab-parameter for NULL before accessing its type field in...

7.5CVSS7.3AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2026/04/21 5:11 p.m.4 views

CLSA-2026-1776693427 Fix CVE(s): CVE-2019-1010180

SECURITY UPDATE: buffer overflow when ELF section size is invalid - debian/patches/CVE-2019-1010180.patch: reject ELF sections whose recorded size exceeds the file size - CVE-2019-1010180...

7.8CVSS7.5AI score0.02628EPSS
Exploits1References1
OSV
OSV
added 2026/04/09 8:50 a.m.4 views

CLSA-2026-1775724625 Fix CVE(s): CVE-2026-32748, CVE-2026-33526

SECURITY UPDATE: denial of service via use-after-free in ICP - debian/patches/CVE-2026-33526.patch: remove duplicate rfc1738escape call in icpGetRequest that invalidated the previously escaped URL pointer - CVE-2026-33526 SECURITY UPDATE: denial of service via use-after-free in ICP request handli...

9.2CVSS5.8AI score0.08942EPSS
Exploits0References1
OSV
OSV
added 2025/12/15 12:33 p.m.5 views

CLSA-2025-1765802003 Fix CVE(s): CVE-2025-8225

SECURITY UPDATE: debuginformation memory leak in processdebuginfo - debian/patches/CVE-2025-8225.patch: prevent memory leak by checking allocnumdebuginfoentries instead of numdebuginfoentries to determine whether debuginformation has been allocated - CVE-2025-8225...

4.8CVSS6AI score0.00223EPSS
Exploits1References1
OSV
OSV
added 2025/10/24 1:25 p.m.6 views

CLSA-2025-1761312327 Fix CVE(s): CVE-2025-9714

SECURITY UPDATE: uncontrolled recursion leading to stack overflow via crafted XPath expressions - debian/patches/CVE-2025-9714.patch: Make XPath depth check work with recursive invocations to prevent stack overflows - CVE-2025-9714...

6.2CVSS6.2AI score0.00144EPSS
Exploits0References1
OSV
OSV
added 2025/10/09 2:10 p.m.9 views

CLSA-2025-1760019012 Fix CVE(s): CVE-2025-57803

SECURITY UPDATE: 32-bit Integer Overflow in BMP Encoder - debian/patches/CVE-2025-57803.patch: Fix buffer overflow issue in BMP decoder caused by insufficient memory allocation - CVE-2025-57803...

8.8CVSS7.3AI score0.00794EPSS
Exploits1References1
OSV
OSV
added 2025/09/12 7:36 a.m.7 views

CLSA-2025-1757662564 Fix CVE(s): CVE-2025-5318

SECURITY UPDATE: out-of-bounds read in sftphandle function - debian/patches/CVE-2025-5318.patch: fix possible buffer overrun by changing ' SFTPHANDLES' to '= SFTPHANDLES' - CVE-2025-5318...

8.1CVSS6.7AI score0.02394EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 9:49 a.m.4 views

CLSA-2025-1757411388 Fix CVE(s): CVE-2025-53014

SECURITY UPDATE: heap buffer overflow in InterpretImageFilename function - debian/patches/CVE-2025-53014.patch: fix out of bounds read of a single byte in image file interpretation - CVE-2025-53014...

9.8CVSS6AI score0.00617EPSS
Exploits1References1
OSV
OSV
added 2025/08/05 4:23 p.m.5 views

CLSA-2025-1754410992 Fix CVE(s): CVE-2025-6965

SECURITY UPDATE: excessive aggregate terms potentially leading to memory corruption - debian/patches/CVE-2025-6965.patch: fix a potential memory corruption if the number of aggregate terms in a query exceeds the maximum number of columns - CVE-2025-6965...

7.7CVSS6.7AI score0.73495EPSS
Exploits3References1
OSV
OSV
added 2025/03/21 5:18 p.m.4 views

CLSA-2025-1742577500 Fix CVE(s): CVE-2017-12166

SECURITY UPDATE: Possible inject of arbitrary data into third-party executables or plug-ins - debian/patches/CVE-2017-12166.patch: Fix an out-of-bounds issue preventing potential stack overflow - CVE-2017-12166 UPDATE CERTIFICATES: Renew sample keys - debian/patches/sample-keys-renew.patch: Renew...

9.8CVSS7.3AI score0.03629EPSS
Exploits0References1
OSV
OSV
added 2025/03/19 10:16 a.m.4 views

CLSA-2025-1742379365 Fix CVE(s): CVE-2025-0840

SECURITY UPDATE: stack-based buffer overflow via manipulation of argument - debian/patches/CVE-2025-0840.patch: Fix stack-buffer-overflow at objdump disassemblebytes by restricting insnwidth to range 1-49 - CVE-2025-0840...

7.5CVSS6.5AI score0.00732EPSS
Exploits1References1
OSV
OSV
added 2025/01/14 9:16 p.m.5 views

CLSA-2025-1736889411 Fix CVE(s): CVE-2023-41080

SECURITY UPDATE: Security vulnerability in URL redirection - debian/patches/CVE-2023-41080.patch: Avoid protocol relative redirects in FORM authentication - CVE-2023-41080...

6.1CVSS6.8AI score0.05972EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 1:49 p.m.5 views

CLSA-2024-1732196985 Fix CVE(s): CVE-2020-27765

SECURITY UPDATE: Division by zero vulnerability in segment.c - debian/patches/CVE-2020-27765.patch: Fix averagetau calculation by multiplying instead of dividing by numbernodes in OptimalTau function to prevent incorrect segmentation output - CVE-2020-27765...

4.3CVSS6.8AI score0.01001EPSS
Exploits1References1
OSV
OSV
added 2024/11/11 5:22 p.m.5 views

CLSA-2024-1731345748 Fix CVE(s): CVE-2023-4408

SECURITY UPDATE: The DNS message parsing code in named includes a section whose computational complexity is overly high - debian/patches/CVE-2023-4408.patch: refactoring parsing code - debian/libdns1100.symbols: some function declarations were removed according to the CVE-2023-4408.patch -...

7.5CVSS6.8AI score0.01327EPSS
Exploits0References1
OSV
OSV
added 2024/02/08 7:26 p.m.6 views

CLSA-2024-1707420378 Fix CVE(s): CVE-2023-48795

SECURITY UPDATE: it's possible to remove the initial messages on the secure channel without causing a MAC failure - debian/patches/CVE-2023-48795.patch: implement "strict key exchange" in ssh and sshd - CVE-2023-48795...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
Rows per page
Query Builder