Lucene search
K

80300 matches found

SUSE Linux
SUSE Linux
added 2026/03/09 3:34 p.m.3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-24485: denial of service via malforme...

9.2CVSS5.8AI score0.00671EPSS
Exploits0References108
OSV
OSV
added 2026/03/09 3:34 p.m.5 views

SUSE-SU-2026:0853-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. - CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. - CVE-2026-24485: denial of service via...

9.8CVSS5.8AI score0.00671EPSS
Exploits0References55
SUSE Linux
SUSE Linux
added 2026/03/09 3:33 p.m.2 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-24485: denial of service via malforme...

9.2CVSS6AI score0.00671EPSS
Exploits0References124
OSV
OSV
added 2026/03/09 3:32 p.m.3 views

SUSE-SU-2026:0852-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. - CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. - CVE-2026-24485: denial of service via...

9.8CVSS6AI score0.00671EPSS
Exploits0References63
SUSE Linux
SUSE Linux
added 2026/03/09 3:32 p.m.1 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-24485: denial of service via malforme...

9.2CVSS6AI score0.00671EPSS
Exploits0References132
RedHat Linux
RedHat Linux
added 2026/03/09 1:21 p.m.5 views

firefox: thunderbird: Invalid pointer in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Invalid pointer in the JavaScript Engine component...

9.8CVSS5.7AI score0.00366EPSS
Exploits0References6
NVD
NVD
added 2026/03/09 1:15 p.m.11 views

CVE-2026-2261

Due to a programming error, blocklistd leaks a socket descriptor for each adverse event report it receives. Once a certain number of leaked sockets is reached, blocklistd becomes unable to run the helper script: a child process is forked, but this child dereferences a null pointer and crashes...

7.5CVSS0.00359EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/09 12:31 p.m.3 views

EUVD-2025-208405

In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...

7.5CVSS5.8AI score0.01097EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/09 12:31 p.m.4 views

EUVD-2025-208406

In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...

7.5CVSS5.8AI score0.01097EPSS
Exploits0References2
NVD
NVD
added 2026/03/09 12:16 p.m.6 views

CVE-2025-14769

In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...

7.5CVSS0.01097EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/09 11:34 a.m.2 views

CVE-2025-14769 ipfw denial of service

In some cases, the tcp-setmss handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference. Maliciously crafted packets sent from a remote host ma...

5.8AI score0.01097EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/03/09 11:24 a.m.4 views

firefox: thunderbird: Invalid pointer in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Invalid pointer in the JavaScript Engine component...

9.8CVSS5.7AI score0.00366EPSS
Exploits0References6
OSV
OSV
added 2026/03/09 10:14 a.m.4 views

CLSA-2026-1773051259 libtiff: Fix of CVE-2025-61143

CVE-2025-61143: fix OOB in tiffdither and fix null pointer dereference in tiffcrop...

5.5CVSS5.8AI score0.00113EPSS
Exploits0References1
OSV
OSV
added 2026/03/09 10:4 a.m.2 views

OPENSUSE-SU-2026:20337-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2026-22770: improper pointer initialization can cause denial of service bsc1256969. - CVE-2026-23874: manipulation of digital images can lead to stack overflow bsc1256976. - CVE-2026-23876: ImageMagick: maliciously crafted image can le...

9.8CVSS6AI score0.00671EPSS
Exploits3References76
RedHat Linux
RedHat Linux
added 2026/03/09 9:38 a.m.13 views

kernel: net: af_can: do not leave a dangling sk pointer in can_create()

In the Linux kernel, the following vulnerability has been resolved: net: afcan: do not leave a dangling sk pointer in cancreate On error cancreate frees the allocated sk object, but sockinitdata has already attached it to the provided sock object. This will leave a dangling sk pointer in the sock...

7.8CVSS6.8AI score0.00226EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/09 8:2 a.m.6 views

CVE-2026-3665

A vulnerability was identified in xlnt-community xlnt up to 1.6.1. The affected element is the function xlnt::detail::xlsxconsumer::readofficedocument of the file source/detail/serialization/xlsxconsumer.cpp of the component XLSX File Parser. The manipulation leads to null pointer dereference. Th...

5.5CVSS5.3AI score0.00205EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/09 8:2 a.m.4 views

CVE-2026-29781

Sliver is a command and control framework that uses a custom Wireguard netstack. In versions from 1.7.3 and prior, a vulnerability exists in the Sliver C2 server's Protobuf unmarshalling logic due to a systemic lack of nil-pointer validation. By extracting valid implant credentials and omitting...

6.5CVSS5.8AI score0.00504EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2026/03/09 2:6 a.m.3 views

firefox: thunderbird: Invalid pointer in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Invalid pointer in the JavaScript Engine component...

9.8CVSS5.7AI score0.00366EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/09 2:2 a.m.4 views

firefox: thunderbird: Invalid pointer in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Invalid pointer in the JavaScript Engine component...

9.8CVSS5.7AI score0.00366EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/09 2:0 a.m.5 views

firefox: thunderbird: Invalid pointer in the JavaScript Engine component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Invalid pointer in the JavaScript Engine component...

9.8CVSS5.7AI score0.00366EPSS
Exploits0References6
Rows per page
Query Builder