Lucene search
K

1784 matches found

OSV
OSV
added 2026/05/30 6:3 p.m.40 views

RLSA-2026:21556 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: proc: use the same treatment to check proclseek as ones for procreaditer et.al CVE-2025-38653 kernel: ima: don't clear IMADIGSIG flag when setting or removing non-IMA xattr CVE-2025-68183...

7.8CVSS6.4AI score0.00514EPSS
Exploits0References20
OSV
OSV
added 2026/05/29 1:33 p.m.12 views

OESA-2026-2477 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. If...

7.5CVSS5.8AI score0.00639EPSS
Exploits7References8
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:6 a.m.6 views

smb/client: fix out-of-bounds read in smb2_compound_op()

...

9.1CVSS5.4AI score0.00478EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:4 a.m.7 views

smb/client: fix out-of-bounds read in symlink_data()

...

9.1CVSS5.4AI score0.00513EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:3 a.m.7 views

smb: client: validate dacloffset before building DACL pointers

...

9.8CVSS5.4AI score0.00539EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.18 views

SUSE CVE-2026-46195

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returne...

5.5CVSS5.8AI score0.00539EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-46195

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied...

9.8CVSS5.9AI score0.00539EPSS
Exploits0References4
CloudLinux
CloudLinux
added 2026/05/28 2:29 p.m.9 views

samba: Fix of 2 CVEs

CVE-2019-3880: Refuse winreg SaveKey/RestoreKey RPCs to prevent writing registry hive files outside intended share boundaries via symlink races - CVE-2019-10218: Reject server-supplied filenames containing path separators in SMB1 directory listings to protect libsmbclient consumers from path...

6.5CVSS5.8AI score0.03515EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/28 2:3 p.m.13 views

CVE-2026-46195

A flaw was found in the Linux kernel's Server Message Block SMB client. A malicious server can exploit this vulnerability on 32-bit systems by providing a crafted dacloffset value. This can cause a pointer wrap, leading to the dereferencing of invalid Discretionary Access Control List DACL fields...

9.8CVSS5.5AI score0.00539EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/28 1:35 p.m.15 views

kernel: smb: client: validate the whole DACL before rewriting it in cifsacl

A flaw was found in the Linux kernel's Server Message Block SMB client, specifically within the cifsacl functionality. A malicious SMB server could provide a malformed Discretionary Access Control List DACL that claims to contain more Access Control Entries ACEs than are actually present. This...

8.8CVSS5.8AI score0.00308EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/28 1:35 p.m.22 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.6AI score0.00539EPSS
Exploits0References19
NVD
NVD
added 2026/05/28 10:16 a.m.38 views

CVE-2026-46195

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returne...

9.8CVSS0.00539EPSS
Exploits0References13
NVD
NVD
added 2026/05/28 10:16 a.m.13 views

CVE-2026-46185

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS0.00513EPSS
Exploits0References6
NVD
NVD
added 2026/05/28 10:16 a.m.15 views

CVE-2026-46139

In the Linux kernel, the following vulnerability has been resolved: smb: client: use kzalloc to zero-initialize security descriptor buffer Commit 62e7dd0a39c2d "smb: common: change the data type of numaces to le16" split struct smbacl's le32 numaces field into le16 numaces and le16 reserved. The...

5.5CVSS0.00122EPSS
Exploits0References5
OSV
OSV
added 2026/05/28 10:16 a.m.5 views

UBUNTU-CVE-2026-46139

In the Linux kernel, the following vulnerability has been resolved: smb: client: use kzalloc to zero-initialize security descriptor buffer Commit 62e7dd0a39c2d "smb: common: change the data type of numaces to le16" split struct smbacl's le32 numaces field into le16 numaces and le16 reserved. The...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.15 views

CVE-2026-46195

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returne...

9.8CVSS5.8AI score0.00539EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.13 views

CVE-2026-46195

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returne...

9.8CVSS5.7AI score0.00539EPSS
Exploits0
CVE
CVE
added 2026/05/28 9:36 a.m.100 views

CVE-2026-46195

The CVE-2026-46195 entry concerns a Linux kernel SMB client vulnerability. 32-bit servers can supply a crafted dacloffset that wraps a DACL pointer, allowing dereferencing of DACL fields during chmod/chown if validated only after pointer arithmetic. The flaw occurs in parse_sec_desc(), build_sec_...

9.8CVSS5.8AI score0.00539EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.31 views

CVE-2026-46185 smb/client: fix out-of-bounds read in symlink_data()

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS0.00513EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/28 9:36 a.m.17 views

EUVD-2026-32782

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2compoundop If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, checkwsleas returns success without validating that the entire...

5.8AI score0.00478EPSS
Exploits0References5
Rows per page
Query Builder