Lucene search
K

103 matches found

Rockylinux
Rockylinux
added 2025/07/29 1:38 p.m.7 views

perl security update

An update is available for perl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Perl is a high-level programming language that is commonly used for system...

5.9CVSS6.2AI score0.00368EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/07/25 1:15 p.m.2 views

CVE-2025-38359

In the Linux kernel, the following vulnerability has been resolved: s390/mm: Fix inatomic handling in dosecurestorageaccess Kernel user spaces accesses to not exported pages in atomic context incorrectly try to resolve the page fault. With debug options enabled call traces like this can be seen:...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/07/03 9:15 a.m.0 views

CVE-2025-38097

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS6.2AI score0.00157EPSS
Exploits0References30
Debian CVE
Debian CVE
added 2025/06/18 11:2 a.m.4 views

CVE-2022-50059

In the Linux kernel, the following vulnerability has been resolved: ceph: don't leak snaprwsem in handlecapgrant When handlecapgrant is called on an IMPORT op, then the snaprwsem is held and the function is expected to release it before returning. It currently fails to do that in all cases which...

5.5CVSS5.3AI score0.00155EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/06/16 3:15 p.m.5 views

CVE-2025-48976

Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons FileUpload: from 1.0 before 1.6; from 2.0.0-M1 before 2.0.0-M4. Users are recommended to upgrade to versions 1.6 or 2.0.0-M4, which fi...

7.5CVSS6.9AI score0.63258EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2025/05/29 3:15 p.m.3 views

CVE-2024-22654

tcpreplay v4.4.4 was discovered to contain an infinite loop via the tcprewrite function at get.c...

7.5CVSS6.1AI score0.00372EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2025/05/08 7:26 p.m.14 views

CVE-2025-46712

Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged. This...

3.7CVSS5.2AI score0.00442EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/05/01 2:15 p.m.6 views

CVE-2025-37767

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINTMAX/8, division by zero is possible. Found by Linux Verification Center linuxtesting.org with SVACE...

5.5CVSS6.4AI score0.00168EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/05/01 2:15 p.m.2 views

CVE-2025-37784

In the Linux kernel, the following vulnerability has been resolved: net: ti: icss-iep: Fix possible NULL pointer dereference for perout request The ICSS IEP driver tracks perout and pps enable state with flags. Currently when disabling pps and perout signals during icssiepexit, results in NULL...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References25
Debian CVE
Debian CVE
added 2025/05/01 2:10 p.m.8 views

CVE-2022-49888

In the Linux kernel, the following vulnerability has been resolved: arm64: entry: avoid kprobe recursion The cortexa76erratum1463225debughandler function is called when handling debug exceptions and synchronous exceptions from BRK instructions, and so is called when a probed function executes. If...

7.8CVSS5.7AI score0.00211EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/01 12:56 p.m.7 views

CVE-2025-37756

In the Linux kernel, the following vulnerability has been resolved: net: tls: explicitly disallow disconnect syzbot discovered that it can disconnect a TLS socket and then run into all sort of unexpected corner cases. I have a vague recollection of Eric pointing this out to us a long time ago...

5.5CVSS5.7AI score0.00262EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/04/25 3:15 p.m.4 views

CVE-2025-3647

A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access cohort data they are authorized to retrieve...

4.3CVSS5.9AI score0.00268EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/04/16 3:15 p.m.5 views

CVE-2025-22038

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate zero numsubauth before subauth is accessed Access psid-subauthpsid-numsubauth - 1 without checking if numsubauth is non-zero leads to an out-of-bounds read. This patch adds a validation step to ensure numsubauth !...

7.1CVSS6.6AI score0.00224EPSS
Exploits0References25
Chainguard
Chainguard
added 2025/04/12 1:13 p.m.19 views

GHSA-4HFP-H4CW-HJ8P vulnerabilities

Vulnerabilities for packages: zot, flux, cert-manager-fips, harbor, helm-operator-fips, helm-docs, kubescape, helm-push, k8ssandra-client-fips, k9s, consul-k8s, cert-manager-cmctl-fips, pluto, chart-testing, flux-source-controller, rancher-helm, cluster-api-helm-controller, flux-fips, zarf,...

5.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2025/04/01 4:15 p.m.4 views

CVE-2025-21946

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds in parsesecdesc If osidoffset, gsidoffset and dacloffset could be greater than smbntsd struct size. If it is smaller, It could cause slab-out-of-bounds. And when validating sid, It need to check it includ...

7.1CVSS6.3AI score0.00195EPSS
Exploits0References24
UbuntuCve
UbuntuCve
added 2025/03/31 11:15 p.m.7 views

CVE-2025-24209

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, watchOS 11.4. Processing maliciously crafted web content may lead to an unexpected process crash...

7CVSS7.3AI score0.00827EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/03/07 4:6 p.m.8 views

CVE-2024-53099 affecting package kernel for versions less than 5.15.176.3-1

CVE-2024-53099 affecting package kernel for versions less than 5.15.176.3-1. A patched version of the package is available...

7.1CVSS6.8AI score0.0023EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/02/27 2:15 a.m.6 views

CVE-2025-21725

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix oops due to unset link speed It isn't guaranteed that NETWORKINTERFACEINFO::LinkSpeed will always be set by the server, so the client must handle any values and then prevent oopses like below from happening: Oops...

5.5CVSS6.4AI score0.00171EPSS
Exploits0References19
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.47 views

CVE-2022-3114 affecting package kernel 5.15.202.1-1

CVE-2022-3114 affecting package kernel 5.15.202.1-1. This CVE either no longer is or was never applicable...

5.5CVSS6.8AI score0.00219EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.42 views

CVE-2021-3847 affecting package kernel 5.10.189.1-1

CVE-2021-3847 affecting package kernel 5.10.189.1-1. No patch is available currently...

7.8CVSS7.5AI score0.00453EPSS
Exploits0
Rows per page
Query Builder