Lucene search
+L

35 matches found

osv
osv
added 2026/06/26 12:32 p.m.2 views

SUSE-SU-2026:0906-2 Security update for clamav

This update for clamav fixes the following issues: Update to clamav 1.5.2: Security issue: - CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service conditions via a crafted HTML file bsc1259207. Non security issue: - Support...

5.3CVSS5.8AI score0.00414EPSS
Exploits0References5
susecve
susecve
added 2026/06/09 2:20 a.m.16 views

SUSE CVE-2026-46294

In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl processing Tony Asleson using Claude found a buffer overflow in dm-ioctl in the function retrievestatus: 1. The code in retrievestatus checks that the output string fits into the output buffer a...

4.1CVSS5.8AI score0.00143EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/08 7:19 p.m.9 views

CVE-2026-46294

A flaw was found in the Linux kernel, specifically within the dm-ioctl module. An improper pointer alignment in the retrievestatus function could lead to a buffer overflow, where data is written beyond the allocated buffer. Despite this, the vulnerability has no practical security implications as...

7.8CVSS5.7AI score0.00143EPSS
Exploits0References4
suse
suse
added 2026/03/17 4:32 p.m.5 views

Security update for clamav

This update for clamav fixes the following issues: Update to clamav 1.5.2: Security issue: CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service conditions via a crafted HTML file bsc1259207. Non security issue: Support...

6.9CVSS5.8AI score0.00414EPSS
Exploits0References10
euvd
euvd
added 2025/12/04 3:30 p.m.5 views

EUVD-2025-201161

In the Linux kernel, the following vulnerability has been resolved: iouring/rsrc: don't rely on user vaddr alignment There is no guaranteed alignment for user pointers, however the calculation of an offset of the first page into a folio after coalescing uses some weird bit mask logic, get rid of ...

6AI score0.00161EPSS
Exploits0References4
osv
osv
added 2025/12/04 3:15 p.m.4 views

DEBIAN-CVE-2025-40216

In the Linux kernel, the following vulnerability has been resolved: iouring/rsrc: don't rely on user vaddr alignment There is no guaranteed alignment for user pointers, however the calculation of an offset of the first page into a folio after coalescing uses some weird bit mask logic, get rid of ...

5.2AI score0.00161EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/04 12:0 a.m.4 views

PT-2025-49027

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the io uring/rsrc subsystem. The problem arises because the system does not guarantee alignment for user pointers. Specifically, the calculation...

8.8CVSS6.8AI score0.0053EPSS
Exploits6References376
astralinux
astralinux
added 2025/11/01 10:54 a.m.6 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: iouring/rsrc: Do not rely on user vaddr alignment. There is no guaranteed alignment for user pointers. However, the calculation of the offset from the first page to a folio after coalescing uses some strange bit mask logic;...

5.7AI score0.00161EPSS
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-9003

Malware in sbrugna...

7.8CVSS7AI score0.00393EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2025/05/08 12:0 a.m.11 views

PT-2025-20336

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak issue has been identified in the Linux kernel, specifically in the bpf Berkeley Packet Filter module. The issue arises due to the non-8-byte aligned storage of percpu...

7.8CVSS7.1AI score0.00254EPSS
Exploits0References378
osv
osv
added 2024/03/11 6:15 p.m.3 views

DEBIAN-CVE-2023-52494

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Add alignment check for event ring read pointer Though we do check the event ring read pointer by "isvalidringptr" to make sure it is in the buffer range, but there is another risk the pointer may be not aligned...

7.8CVSS5.5AI score0.00279EPSS
Exploits0References1
susecve
susecve
added 2024/03/01 4:8 a.m.4 views

SUSE CVE-2021-46976

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix crash in autoretire The retire logic uses the 2 lower bits of the pointer to the retire function to store flags. However, the autoretire function is not guaranteed to be aligned to a multiple of 4, which causes...

4.4CVSS7.8AI score0.00232EPSS
Exploits0References5
osv
osv
added 2024/02/28 9:15 a.m.4 views

UBUNTU-CVE-2021-46976

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix crash in autoretire The retire logic uses the 2 lower bits of the pointer to the retire function to store flags. However, the autoretire function is not guaranteed to be aligned to a multiple of 4, which causes...

5.5CVSS6.6AI score0.00232EPSS
Exploits0References7
nvd
nvd
added 2023/12/30 3:15 a.m.129 views

CVE-2023-38021

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclaveecall function and system call...

5.5CVSS0.00206EPSS
Exploits0References5
attackerkb
attackerkb
added 2023/12/30 3:15 a.m.4 views

CVE-2023-38021

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclaveecall function and system call...

5.5CVSS6.1AI score0.00206EPSS
Exploits0References6
osv
osv
added 2023/12/30 3:15 a.m.6 views

CVE-2023-38021

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclaveecall function and system call...

5.5CVSS5.8AI score0.00206EPSS
Exploits0References5
attackerkb
attackerkb
added 2023/12/30 3:15 a.m.4 views

CVE-2023-38023

An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...

5.5CVSS6.1AI score0.00223EPSS
Exploits0References8
osv
osv
added 2023/12/30 3:15 a.m.6 views

CVE-2023-38023

An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...

5.5CVSS5.8AI score0.00223EPSS
Exploits0References7
prion
prion
added 2023/12/30 3:15 a.m.23 views

Design/Logic Flaw

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclaveecall function and system call...

1.7CVSS6.9AI score0.00206EPSS
Exploits0References5Affected Software1
vulnrichment
vulnrichment
added 2023/12/30 12:0 a.m.12 views

CVE-2023-38023

An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...

6.7AI score0.00223EPSS
Exploits0References7
Rows per page
Query Builder