Lucene search
K

4741 matches found

CNNVD
CNNVD
added 2026/05/08 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from insufficiently releasing syncobj and timeline fence references when the output array size is smal...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-39075

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double free issue exists in the scsi qla2xxx driver. In the qla24xx els dcmd iocb function, sp-free is assigned to qla2x00 els dcmd sp free. When an error occurs, this function is...

9.8CVSS7.7AI score0.0038EPSS
Exploits0
NVD
NVD
added 2026/05/06 12:16 p.m.6 views

CVE-2026-43178

In the Linux kernel, the following vulnerability has been resolved: procfs: fix possible double mmput in doprocmapquery When user provides incorrectly sized buffer for build ID for PROCMAPQUERY we return with -ENAMETOOLONG error. After recent changes this condition happens later, after we unlocke...

7.8CVSS0.00132EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/05/05 10:32 a.m.11 views

cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

A validation flaw has been discovered in the python cryptography package. This missing validation allows an attacker to provide a public key point P from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification ECDSA and...

8.2CVSS7.2AI score0.00341EPSS
Exploits0References6
Malwarebytes
Malwarebytes
added 2026/05/04 2:59 p.m.10 views

Cyberattacks are raising your prices (Lock and Code S07E09)

This week on the Lock and Code podcast… Your prices could be going up because of a little something that one group has started calling the “cyber tax.” Not a “tax” in any regulatory sense of the word, this newly named “cyber tax” is instead a consequence of the growing number of cyberattacks on...

5.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/04 2:31 p.m.10 views

cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

A validation flaw has been discovered in the python cryptography package. This missing validation allows an attacker to provide a public key point P from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification ECDSA and...

8.2CVSS6.8AI score0.00341EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 12:20 p.m.8 views

Security Bulletin: cryptography Missing Subgroup Validation in EC Public Keys Enables ECDH Key Leakage and ECDSA Forgery

Summary cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify th...

8.2CVSS6.9AI score0.00341EPSS
Exploits0Affected Software1
RustSec
RustSec
added 2026/05/02 12:0 p.m.11 views

Out-of-bounds read/write in `Index` and `IndexMut` implementations

The Index and IndexMut implementations for Caja use unchecked pointer arithmetic without bounds validation. Creating a Caja with a small key and then accessing an out-of-range index causes out-of-bounds reads or writes beyond the allocated memory. This can be triggered through safe public APIs —...

5.8AI score
Exploits0Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 2:15 p.m.6 views

CVE-2026-43054

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...

5.5CVSS5.8AI score0.00114EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/04/30 10:22 a.m.13 views

cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

A validation flaw has been discovered in the python cryptography package. This missing validation allows an attacker to provide a public key point P from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification ECDSA and...

8.2CVSS8.5AI score0.00341EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/29 1:26 p.m.8 views

urllib3: urllib3 Streaming API improperly handles highly compressed data

A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header e.g., gzip, deflate, br, or zstd. The library must read compressed data from the network and decompress it...

8.9CVSS6.7AI score0.00633EPSS
Exploits0References6
OSV
OSV
added 2026/04/28 3:27 p.m.5 views

OPENSUSE-SU-2026:20642-1 Security update for libsodium

This update for libsodium fixes the following issues: Security fixes: - CVE-2025-15444: Cryptographic bypass via improper elliptic curve point validation bsc1256070. - CVE-2025-69277: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to...

9.8CVSS5.9AI score0.00228EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/27 3:6 p.m.9 views

firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

A memory amplification vulnerability in libexpat allows attackers to trigger excessive dynamic memory allocations by submitting specially crafted XML input. A small input 250 KiB can cause the parser to allocate hundreds of megabytes, leading to denial-of-service DoS through memory exhaustion...

7.5CVSS7.5AI score0.01279EPSS
Exploits1References6
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:8 a.m.7 views

KVM: x86: Use scratch field in MMIO fragment to hold small write values

...

8.8CVSS5.8AI score0.00128EPSS
Exploits0
Fedora
Fedora
added 2026/04/25 1:58 a.m.7 views

[SECURITY] Fedora 44 Update: libmicrohttpd-1.0.5-1.fc44

GNU libmicrohttpd is a small C library that is supposed to make it easy to run an HTTP server as part of another application. Key features that distinguish libmicrohttpd from other projects are: C library: fast and small API is simple, expressive and fully reentrant Implementation is http 1.1...

8.7CVSS7.3AI score0.00382EPSS
Exploits0
Fedora
Fedora
added 2026/04/25 1:56 a.m.6 views

[SECURITY] Fedora 44 Update: tinyproxy-1.11.2-7.fc44

tinyproxy is a small, efficient HTTP/SSL proxy daemon that is very useful in a small network setting, where a larger proxy like Squid would either be too resource intensive, or a security risk...

8.7CVSS5.2AI score0.00899EPSS
Exploits1
Fedora
Fedora
added 2026/04/25 1:53 a.m.10 views

[SECURITY] Fedora 44 Update: mupdf-1.27.1-10.fc44

MuPDF is a lightweight PDF viewer and toolkit written in portable C. The renderer in MuPDF is tailored for high quality anti-aliased graphics. MuPDF renders text with metrics and spacing accurate to within fractions of a pixel for the highest fidelity in reproducing the look of a printed page on...

7.8CVSS5.7AI score0.00213EPSS
Exploits0
NVD
NVD
added 2026/04/24 7:17 p.m.10 views

CVE-2026-33662

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. From 3.8.0 to 4.10, in the function emsapkcs1v15encode in core/drivers/crypto/cryptoapi/acipher/rsassa.c, the amount of padding needed, "...

7.5CVSS0.00403EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/24 6:13 p.m.5 views

CVE-2026-33662

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. From 3.8.0 to 4.10, in the function emsapkcs1v15encode in core/drivers/crypto/cryptoapi/acipher/rsassa.c, the amount of padding needed, "...

7.5CVSS5.5AI score0.00403EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/04/24 6:13 p.m.10 views

EUVD-2026-25592

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. From 3.8.0 to 4.10, in the function emsapkcs1v15encode in core/drivers/crypto/cryptoapi/acipher/rsassa.c, the amount of padding needed, "...

7.5CVSS5.5AI score0.00403EPSS
Exploits0References1
Rows per page
Query Builder