Lucene search
+L

457 matches found

SUSE CVE
SUSE CVE
added 2026/04/26 1:52 a.m.7 views

SUSE CVE-2026-31677

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - limit RX SG extraction by receive buffer budget Make afalggetrsgl limit each RX scatterlist extraction to the remaining receive buffer budget. afalggetrsgl currently uses afalgreadable only as a gate before...

5.5CVSS5.6AI score0.00114EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.7 views

SUSE CVE-2026-31643

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpcpreparsexdryfsrxgk, the memory attached to token-rxgk can be leaked in a few error paths after it's allocated. Fix this by freeing it in the "rejecttoken:" case...

5.5CVSS5.5AI score0.00121EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/24 2:44 p.m.5 views

CVE-2026-31643

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpcpreparsexdryfsrxgk, the memory attached to token-rxgk can be leaked in a few error paths after it's allocated. Fix this by freeing it in the "rejecttoken:" case...

5.5CVSS5.3AI score0.00121EPSS
Exploits0
CVE
CVE
added 2026/04/24 2:44 p.m.21 views

CVE-2026-31643

CVE-2026-31643 covers a Linux kernel rxrpc memleak in the key parsing path. In rxrpc_preparse_xdr_yfs_rxgk(), the memory attached to token->rxgk could leak on several error paths after allocation. The issue is mitigated by freeing the allocated memory in the reject_token: path. Technical cover...

5.5CVSS5.4AI score0.00121EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/04/24 2:44 p.m.5 views

EUVD-2026-25536

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpcpreparsexdryfsrxgk, the memory attached to token-rxgk can be leaked in a few error paths after it's allocated. Fix this by freeing it in the "rejecttoken:" case...

5.4AI score0.00121EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/24 2:44 p.m.32 views

CVE-2026-31643 rxrpc: Fix key parsing memleak

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpcpreparsexdryfsrxgk, the memory attached to token-rxgk can be leaked in a few error paths after it's allocated. Fix this by freeing it in the "rejecttoken:" case...

0.00121EPSS
Exploits0References3
OSV
OSV
added 2026/04/24 2:44 p.m.3 views

CVE-2026-31643 rxrpc: Fix key parsing memleak

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpcpreparsexdryfsrxgk, the memory attached to token-rxgk can be leaked in a few error paths after it's allocated. Fix this by freeing it in the "rejecttoken:" case...

5.5CVSS5.9AI score0.00121EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2026/04/23 8:8 a.m.6 views

ext4: reject mount if bigalloc with s_first_data_block != 0

...

7.8CVSS5.2AI score0.00143EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/22 12:0 a.m.21 views

Text Steganography with Dynamic Codebook and Multimodal Large Language Model

With the popularity of the large language models LLMs, text steganography has achieved remarkable performance. However, existing methods still have some issues: 1 For the white-box paradigm, this steganography behavior is prone to exposure due to sharing the off-the-shelf language model between...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-011413)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011413 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nfreject: don't leak dst refcount for loopback packets recent patches to add a WARN wh...

5.5CVSS5.9AI score0.0016EPSS
Exploits0References4
OSV
OSV
added 2026/04/14 10:22 p.m.9 views

GHSA-W5XJ-99CG-RCCM Decidim amendments can be accepted or rejected by anyone

Impact The vulnerability allows any registered and authenticated user to accept or reject any amendments. The impact is on any users who have created proposals where the amendments feature is enabled. This also elevates the user accepting the amendment as the author of the original proposal as...

7.5CVSS5.8AI score0.00223EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/14 10:22 p.m.13 views

Decidim amendments can be accepted or rejected by anyone

Impact The vulnerability allows any registered and authenticated user to accept or reject any amendments. The impact is on any users who have created proposals where the amendments feature is enabled. This also elevates the user accepting the amendment as the author of the original proposal as...

7.5CVSS5.8AI score0.00223EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-33228

Impact The vulnerability allows any registered and authenticated user to accept or reject any amendments. The impact is on any users who have created proposals where the amendments feature is enabled. This also elevates the user accepting the amendment as the author of the original proposal as...

7.5CVSS5.8AI score0.00223EPSS
Exploits0References5
RubySec
RubySec
added 2026/04/14 12:0 a.m.7 views

Decidim amendments can be accepted or rejected by anyone

Impact The vulnerability allows any registered and authenticated user to accept or reject any amendments. The impact is on any users who have created proposals where the amendments feature is enabled. This also elevates the user accepting the amendment as the author of the original proposal as...

7.5CVSS5.8AI score0.00223EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/04/07 3:17 p.m.13 views

CVE-2026-30079

In OpenAirInterface V2.2.0 AMF, Out of sequence messages causes incorrect state transition during UE registration procedure. This allows authentication to be bypassed completely. If a SecurityModeComplete message is sent after InitialUERegistration, a registration reject is received followed by a...

9.8CVSS0.00526EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.13 views

PT-2026-30280

Summary fast-jwt does not validate the crit Critical Header Parameter defined in RFC 7515 §4.1.11. When a JWS token contains a crit array listing extensions that fast-jwt does not understand, the library accepts the token instead of rejecting it. This violates the MUST requirement in the RFC. ---...

7.5CVSS5.9AI score0.00244EPSS
Exploits2References6
OSV
OSV
added 2026/03/27 12:30 p.m.10 views

CLSA-2026-1774614606 python3: Fix of CVE-2025-15366

CVE-2025-15366: reject control characters in IMAP commands...

5.9CVSS7.1AI score0.0036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.14 views

CVE-2026-30911

Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop HITL endpoints that allows any authenticated task instance to read, approve, or reject HITL workflows belonging to any other task instance. Users are recommended to upgrade to...

8.1CVSS5.8AI score0.00409EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/03/25 4:56 p.m.10 views

SUSE CVE-2026-23300

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop When a standalone IPv6 nexthop object is created with a loopback device e.g., "ip -6 nexthop add id 100 dev lo", fib6nhinit misclassifies it as a reject route...

5.5CVSS5.7AI score0.00129EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2026/03/25 1:38 p.m.6 views

CVE-2026-23300

A flaw was found in the Linux kernel's IPv6 networking stack. When a standalone IPv6 nexthop object is created with a loopback device, it is misclassified as a reject route, leading to an unallocated pointer. If an IPv4 route then attempts to reference this nexthop, it causes a NULL pointer...

5.5CVSS5.7AI score0.00129EPSS
Exploits0References4
Rows per page
Query Builder