Lucene search
K

79 matches found

RedhatCVE
RedhatCVE
added 6 days ago4 views

CVE-2026-53243

A flaw was found in the Linux kernel. An uninitialized stack variable in the rseqexituserupdate function can lead to an information leak. This occurs due to an indeterminate sequencing of expressions during the initialization of the rseqids structure, where ids.nodeid is assigned using an...

5.8AI score0.00162EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:29 p.m.3 views

EUVD-2026-38919

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on When PERST is deasserted twice assert - deassert - assert - deassert, a CBB Control Backbone timeout occurs at DBI register offset 0x8bc PCIEMISCCONTROL1OFF...

5.7AI score0.00175EPSS
Exploits0References4
OSV
OSV
added 2026/06/23 12:59 p.m.4 views

JLSEC-2026-624 HTTP/2 client HPACK desynchronization via header blocks for unknown streams in HTTP.jl

Description The HTTP/2 client's processincomingframe! dropped HEADERS/CONTINUATION frames for stream ids absent from conn.streams without passing the header block through the connection's HPACK decoder. Because HPACK's dynamic table is connection-scoped and mutated as a side effect of decoding ea...

5.9AI score
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ASoC: qcom: qdsp6: Fixed the issue where q6apm removal ordering occurs during ADSP stop and start. During ADSP stop and start, the kernel crashes due to the order in which ASoC components are removed. During ADSP stop, the...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/28 3:55 a.m.9 views

SUSE CVE-2026-45946

In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

5.7AI score0.0016EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/27 12:58 p.m.44 views

CVE-2026-46079 rbd: fix null-ptr-deref when device_add_disk() fails

In the Linux kernel, the following vulnerability has been resolved: rbd: fix null-ptr-deref when deviceadddisk fails dorbdadd publishes the device with deviceadd before calling deviceadddisk. If deviceadddisk fails after deviceadd succeeds, the error path calls rbdfreedisk directly and then later...

0.00138EPSS
Exploits0References6
Snyk
Snyk
added 2026/05/18 3:48 p.m.5 views

Undefined Behavior for Input to API

Overview Affected versions of this package are vulnerable to Undefined Behavior for Input to API in the comparator function responsible for ordering Datagram Transport Layer Security DTLS packets by sequence numbers. An attacker can cause unstable packet ordering or undefined behavior by sending...

8.7CVSS5.8AI score0.01335EPSS
Exploits0References2
OSV
OSV
added 2026/05/18 10:8 a.m.8 views

OPENSUSE-SU-2026:20778-1 Security update for gnutls

This update for gnutls fixes the following issues - CVE-2026-3832: cert-session: fix multi-entry OCSP revocation bypass bsc1263706. - CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. - CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short...

9.8CVSS5.8AI score0.01335EPSS
Exploits2References26
EUVD
EUVD
added 2026/05/08 3:31 p.m.9 views

EUVD-2026-28621

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL pointer dereference in dcn401inithw dcn401inithw assumes that updatebwboundingbox is valid when entering the update path. However, the existing condition: !fams2enable && updatebwboundingbox || freqchang...

5.7AI score0.00112EPSS
Exploits0References4
NVD
NVD
added 2026/05/08 3:16 p.m.18 views

CVE-2026-43412

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: qdsp6: Fix q6apm remove ordering during ADSP stop and start During ADSP stop and start, the kernel crashes due to the order in which ASoC components are removed. On ADSP stop, the q6apm-audio .remove callback unloads...

5.5CVSS0.00123EPSS
Exploits0References6
NVD
NVD
added 2026/05/06 12:16 p.m.6 views

CVE-2026-43220

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait randomly gets timed out because cmdsemval was incremented outside the IOMMU spinlock, allowing...

5.5CVSS0.00127EPSS
Exploits1References5
OSV
OSV
added 2026/05/06 12:16 p.m.5 views

DEBIAN-CVE-2026-43220

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait randomly gets timed out because cmdsemval was incremented outside the IOMMU spinlock, allowing...

5.5CVSS5.7AI score0.00127EPSS
Exploits1References1
Redos
Redos
added 2026/04/08 12:0 a.m.3 views

ROS-20260408-73-0020

A vulnerability in the net component of the Linux operating system kernel is related to incorrect implementation of the sequence of actions to be performed. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.1AI score0.00144EPSS
Exploits0
Fedora
Fedora
added 2026/03/28 1:7 a.m.10 views

[SECURITY] Fedora 42 Update: htslib-1.23.1-1.fc42

HTSlib is an implementation of a unified C library for accessing common file formats, such as SAM, CRAM and VCF, used for high-throughput sequencing data, and is the core library used by samtools and bcftools...

8.8CVSS5.8AI score0.00373EPSS
Exploits0
Fedora
Fedora
added 2026/03/28 12:46 a.m.8 views

[SECURITY] Fedora 43 Update: htslib-1.23.1-1.fc43

HTSlib is an implementation of a unified C library for accessing common file formats, such as SAM, CRAM and VCF, used for high-throughput sequencing data, and is the core library used by samtools and bcftools...

8.8CVSS5.8AI score0.00373EPSS
Exploits0
Fedora
Fedora
added 2026/03/28 12:19 a.m.6 views

[SECURITY] Fedora 44 Update: htslib-1.23.1-1.fc44

HTSlib is an implementation of a unified C library for accessing common file formats, such as SAM, CRAM and VCF, used for high-throughput sequencing data, and is the core library used by samtools and bcftools...

9.8CVSS5.8AI score0.00523EPSS
Exploits0
OSV
OSV
added 2026/03/18 7:55 p.m.5 views

CVE-2026-31971 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYLEN method, the crambytearraylendecode failed to validat...

7.1CVSS6.5AI score0.00336EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/18 6:50 p.m.9 views

EUVD-2026-12934

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. In the cramdecodeslice function called while reading CRAM records, validation of the reference id field occurred too late, allowing two out of bounds read...

6.9CVSS5.7AI score0.00373EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.6 views

HTSlib 安全漏洞

HTSlib is a C-language library file developed by samtools. Versions of HTSlib prior to 1.23.1, 1.22.2, and 1.21.1 have security vulnerabilities. These vulnerabilities stem from the bgzfindexloadhfile function, which involves integer overflows, potentially leading to heap buffer overflows...

8.1CVSS5.9AI score0.00451EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/03/17 12:0 a.m.4 views

Synchronized DNA Sources for Unconditionally Secure Cryptography

Secure communication is the cornerstone of modern infrastructures, yet achieving unconditional security -resistant to any computational attack- remains a fundamental challenge. The One-Time Pad OTP, proven by Shannon to offer perfect secrecy, requires a shared random key as long as the message,...

5.7AI score
Exploits0
Rows per page
Query Builder