Lucene search
K

68 matches found

Debian CVE
Debian CVE
added 2025/04/18 7:1 a.m.7 views

CVE-2025-39688

In the Linux kernel, the following vulnerability has been resolved: nfsd: allow SCSTATUSFREEABLE when searching via nfs4lookupstateid The pynfs DELEG8 test fails when run against nfsd. It acquires a delegation and then lets the lease time out. It then tries to use the deleg stateid and expects to...

5.5CVSS5.6AI score0.00223EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/04/18 7:1 a.m.7 views

CVE-2025-38104

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Replace Mutex with Spinlock for RLCG register access to avoid Priority Inversion in SRIOV RLCG Register Access is a way for virtual functions to safely access GPU registers in a virtualized environment., including TLB...

4.7CVSS5.3AI score0.00161EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2025/04/09 1:9 p.m.13 views

wallabag/wallabag Has Multiple Cross-Site Request Forgery (CSRF) Vulnerabilities

Impact wallabag versions prior to 2.6.11 were discovered to contain multiple Cross-Site Request Forgery CSRF vulnerabilities across several endpoints. An attacker could craft a malicious link or page that, if visited by a logged-in wallabag user, could trick the user's browser into performing...

7.9AI score
Exploits0References20Affected Software1
CBLMariner
CBLMariner
added 2025/03/13 9:13 p.m.12 views

CVE-2025-21694 affecting package kernel for versions less than 6.6.76.1-1

CVE-2025-21694 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.5AI score0.00225EPSS
Exploits0
CVE
CVE
added 2025/03/12 9:42 a.m.143 views

CVE-2025-21863

CVE-2025-21863 — Linux kernel io_uring opcode speculation : The vulnerability arises from the io_uring path where sqe->opcode is used for different tables, allowing speculative execution issues. The fix sanitises sqe->opcode to prevent speculation. Affected product: Linux kernel with io_uri...

7.8CVSS6.7AI score0.00218EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2025/03/12 9:42 a.m.21 views

CVE-2025-21863 io_uring: prevent opcode speculation

In the Linux kernel, the following vulnerability has been resolved: iouring: prevent opcode speculation sqe-opcode is used for different tables, make sure we santitise it against speculations...

0.00218EPSS
Exploits0References7
OSV
OSV
added 2025/03/07 9:9 a.m.15 views

CVE-2025-21836 io_uring/kbuf: reallocate buf lists on upgrade

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: reallocate buf lists on upgrade IORINGREGISTERPBUFRING can reuse an old struct iobufferlist if it was created for legacy selected buffer and has been emptied. It violates the requirement that most of the field shoul...

5.5CVSS6.6AI score0.0022EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/03/07 9:9 a.m.6 views

CVE-2025-21837

Removed by vendor...

7.3AI score
Exploits0
OSV
OSV
added 2025/02/26 2:12 a.m.10 views

CVE-2022-49443 list: fix a data-race around ep->rdllist

In the Linux kernel, the following vulnerability has been resolved: list: fix a data-race around ep-rdllist eppoll first calls epeventsavailable with no lock held and checks if ep-rdllist is empty by listemptycareful, which reads rdllist-prev. Thus all accesses to it need some protection to avoid...

4.7CVSS5AI score0.00169EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/01/23 12:0 a.m.13 views

GLSA-202501-07 : libgsf: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202501-07 libgsf: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in libgsf. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly fro...

8.4CVSS6.4AI score0.00458EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/01/15 1:5 p.m.15 views

CVE-2024-57902

In the Linux kernel, the following vulnerability has been resolved: afpacket: fix vlangettci vs MSGPEEK Blamed commit forgot MSGPEEK case, allowing a crash 1 as found by syzbot. Rework vlangettci to not touch skb at all, so that it can be used from many cpus on the same skb. Add a const qualifier...

5.5CVSS5.6AI score0.00257EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/15 1:5 p.m.4 views

CVE-2024-57886

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: fix new damontarget objects leaks on damoncommittargets Patch series "mm/damon/core: fix memory leaks and ignored inputs from damoncommitctx". Due to two bugs in damoncommittargets and damoncommitschemes, which are...

5.5CVSS5.6AI score0.00172EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/15 1:5 p.m.9 views

CVE-2024-57887

In the Linux kernel, the following vulnerability has been resolved: drm: adv7511: Fix use-after-free in adv7533attachdsi The hostnode pointer was assigned and freed in adv7533parsedt, and later, adv7533attachdsi uses the same. Fix this use-after-free issue by dropping ofnodeput in adv7533parsedt...

7.8CVSS6.2AI score0.00205EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/08 5:52 p.m.9 views

CVE-2024-56784

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption Why & How Array indices out of bound caused memory corruption. Adding checks to ensure that array index stays in bound...

7.8CVSS6.3AI score0.00198EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/08 4:36 p.m.4 views

CVE-2024-56770

In the Linux kernel, the following vulnerability has been resolved: net/sched: netem: account for backlog updates from child qdisc In general, 'qlen' of any classful qdisc should keep track of the number of packets that the qdisc itself and all of its children holds. In case of netem, 'qlen' only...

5.5CVSS5.5AI score0.00258EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/06 4:20 p.m.11 views

CVE-2024-56763

In the Linux kernel, the following vulnerability has been resolved: tracing: Prevent bad count for tracingcpumaskwrite If a large count is provided, it will trigger a warning in bitmapparseuser. Also check zero for it...

5.5CVSS5.6AI score0.00203EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/06 4:20 p.m.12 views

CVE-2024-56761

In the Linux kernel, the following vulnerability has been resolved: x86/fred: Clear WFE in missing-ENDBRANCH CPs An indirect branch instruction sets the CPU indirect branch tracker IBT into WAITFORENDBRANCH WFE state and WFE stays asserted across the instruction boundary. When the decoder finds a...

5.5CVSS5.9AI score0.00219EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/06 4:20 p.m.38 views

CVE-2024-56759

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free when COWing tree bock and tracing is enabled When a COWing a tree block, at btrfscowblock, and we have the tracepoint tracebtrfscowblock enabled and preemption is also enabled CONFIGPREEMPT=y, we can...

7.8CVSS6AI score0.00216EPSS
Exploits0
Debian CVE
Debian CVE
added 2024/12/24 11:28 a.m.27 views

CVE-2024-53157

In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Check the DVFS OPP count returned by the firmware Fix a kernel crash with the below call trace when the SCPI firmware returns OPP count of zero. dvfsinfo.oppcount may be zero on some platforms during the reboot...

5.5CVSS5.7AI score0.00225EPSS
Exploits0
OSV
OSV
added 2024/06/15 12:0 a.m.7 views

OPENSUSE-SU-2024:11787-1 libsphinxclient-0_0_1-2.2.11-6.1 on GA media

These are all security issues fixed in the libsphinxclient-001-2.2.11-6.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS7.6AI score0.02166EPSS
Exploits2References1
Rows per page
Query Builder