Lucene search
K

315 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/19 3:0 a.m.7 views

CVE-2026-56132

In libexpat before 2.8.2, there is a heap-based buffer overflow in doProlog in xmlparse.c because scaffold backing array reallocation is mishandled when there is data-structure sharing across parsers...

6.9CVSS5.5AI score0.00107EPSS
Exploits0References2
NVD
NVD
added 2026/06/10 2:16 p.m.15 views

CVE-2026-49496

Ghidra before 12.1 contains a heap-use-after-free vulnerability in SleighBuilder::generatePointerAdd caused by iterator invalidation when PcodeCacher::allocateInstruction reallocates the issued vector. Attackers can trigger memory corruption by decompiling malicious binaries through the public...

6.9CVSS0.00169EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/06/10 12:37 p.m.37 views

CVE-2026-49496 Ghidra < 12.1 - Heap-Use-After-Free in SleighBuilder::generatePointerAdd via Vector Reallocation

Ghidra before 12.1 contains a heap-use-after-free vulnerability in SleighBuilder::generatePointerAdd caused by iterator invalidation when PcodeCacher::allocateInstruction reallocates the issued vector. Attackers can trigger memory corruption by decompiling malicious binaries through the public...

6.9CVSS0.00169EPSS
Exploits1References3
CVE
CVE
added 2026/06/10 12:37 p.m.30 views

CVE-2026-49496

Ghidra

6.9CVSS5.5AI score0.00169EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/10 12:37 p.m.10 views

CVE-2026-49496 Ghidra < 12.1 - Heap-Use-After-Free in SleighBuilder::generatePointerAdd via Vector Reallocation

Ghidra before 12.1 contains a heap-use-after-free vulnerability in SleighBuilder::generatePointerAdd caused by iterator invalidation when PcodeCacher::allocateInstruction reallocates the issued vector. Attackers can trigger memory corruption by decompiling malicious binaries through the public...

6.9CVSS5.5AI score0.00169EPSS
Exploits1References3
CVE
CVE
added 2026/06/09 11:52 a.m.61 views

CVE-2026-46317

CVE-2026-46317 concerns the Linux kernel KVM on arm64. A traversal of the array kvm-&gt;arch.nested_mmus[] occurs under kvm-&gt;mmu_lock, while kvm_vcpu_init_nested() reallocates the array and frees the old buffer with only kvm-&gt;arch.config_lock held. The fix moves the allocation outside the m...

8.8CVSS5.6AI score0.0013EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/08 3:41 p.m.46 views

CVE-2026-46277 mm/zone_device: do not touch device folio after calling ->folio_free()

In the Linux kernel, the following vulnerability has been resolved: mm/zonedevice: do not touch device folio after calling -foliofree The contents of a device folio can immediately change after calling -foliofree, as the folio may be reallocated by a driver with a different order. Instead of...

7.8CVSS0.0012EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.15 views

SUSE CVE-2026-46191

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

5.5CVSS6AI score0.00131EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 10:16 a.m.9 views

CVE-2026-46191

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

7.1CVSS0.00131EPSS
Exploits0References8
OSV
OSV
added 2026/05/28 10:16 a.m.8 views

UBUNTU-CVE-2026-46191

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

7.1CVSS6AI score0.00131EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.32 views

CVE-2026-46191 fbcon: Avoid OOB font access if console rotation fails

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

0.00131EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.8 views

CVE-2026-46191

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

7.1CVSS6AI score0.00131EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/05/28 9:36 a.m.13 views

EUVD-2026-32818

In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbconrotatefont. The putcs implementations for the rotated buffer will return early in this case. S...

6AI score0.00131EPSS
Exploits0References5
CVE
CVE
added 2026/05/28 9:36 a.m.36 views

CVE-2026-46191

CVE-2026-46191 concerns the Linux kernel fbcon component: when console rotation fails during fbcon_rotate_font(), the font buffer may overflow due to an OOB access. The fix clears the font buffer if the reallocation during console rotation fails and ensures the rotated buffer does not overflow. D...

7.1CVSS6AI score0.00131EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.13 views

PT-2026-44314

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description An out-of-bounds font access occurs in the fbcon rotate font function when console rotation fails. The system retains the ol...

9.1CVSS6.2AI score0.00514EPSS
Exploits9References294
RedHat Linux
RedHat Linux
added 2026/05/26 5:5 a.m.15 views

FreeRDP: FreeRDP: Memory corruption vulnerability allows denial of service or arbitrary code execution

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A memory corruption vulnerability exists in the persistent cache handling. If a memory reallocation fails, an internal size variable is incorrectly updated, while the data pointer still refers to the original,...

7.1CVSS6AI score0.001EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/05/22 2:19 a.m.14 views

SUSE CVE-2026-44070

An unbounded memory reallocation in the charset conversion code in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service via crafted character conversion requests...

3.1CVSS5.9AI score0.00318EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/21 3:29 p.m.20 views

CVE-2026-43497

A flaw was found in the Linux kernel's udlfb driver. This use-after-free vulnerability occurs because the dlfbopsmmap function does not properly track active memory mappings. When the framebuffer is reallocated, existing memory page table entries PTEs are not invalidated. This allows a local...

7.3CVSS6.3AI score0.00113EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/21 7:35 a.m.6 views

CVE-2026-44070

An unbounded memory reallocation in the charset conversion code in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service via crafted character conversion requests...

3.1CVSS5.9AI score0.00318EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/21 7:35 a.m.10 views

CVE-2026-44070

An unbounded memory reallocation in the charset conversion code in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service via crafted character conversion requests...

3.1CVSS5.9AI score0.00318EPSS
Exploits0
Rows per page
Query Builder