Lucene search
+L

261 matches found

OSV
OSV
added 2025/10/03 7:56 p.m.6 views

RLSA-2025:12188 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035 firefox: thunderbird: Incorrect URL stripping in CSP reports CVE-2025-80...

7.5CVSS7.5AI score0.00472EPSS
Exploits0References10
Rockylinux
Rockylinux
added 2025/10/03 7:56 p.m.4 views

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. Security...

9.8CVSS7.7AI score0.00472EPSS
Exploits0
OSV
OSV
added 2025/09/08 2:19 p.m.5 views

RLSA-2025:13676 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035 firefox: thunderbird: Incorrect URL stripping in CSP reports CVE-2025-80...

7.5CVSS7.8AI score0.00472EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.15 views

CVE-2025-38699 scsi: bfa: Double-free fix

In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Double-free fix When the bfadimprobe function fails during initialization, the memory pointed to by bfad-im is freed without setting bfad-im to NULL. Subsequently, during driver uninstallation, when the state machine...

0.00167EPSS
Exploits0References9
OSV
OSV
added 2025/08/20 12:12 a.m.8 views

OSV-2025-657 Heap-use-after-free in ftp_pp_statemachine

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=439473053 Crash type: Heap-use-after-free READ 8 Crash state: ftpppstatemachine ftpdoing multirunsingle...

7.2AI score
Exploits0References1
AlmaLinux
AlmaLinux
added 2025/08/12 12:0 a.m.7 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035 firefox: thunderbird: Incorrect URL stripping in CSP reports CVE-2025-80...

9.8CVSS8.3AI score0.00472EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2025/08/11 5:33 p.m.4 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/08/11 5:30 p.m.5 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
Amazon
Amazon
added 2025/08/08 12:0 a.m.12 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Leak pages if setmemoryencrypted fails CVE-2024-36913 In the Linux kernel, the following vulnerability has been resolved: xfs: don't walk off the end of a directory data block CVE-2024-41013 In...

8.1CVSS7.5AI score0.01345EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-52456

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: serial: imx: fix tx statemachine deadlock When using the serial port as RS485 port, the tx...

5.5CVSS6.3AI score0.00175EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/07/30 9:42 a.m.6 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/29 3:37 p.m.5 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/29 3:32 p.m.5 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/29 8:12 a.m.7 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/29 8:9 a.m.6 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/28 1:21 a.m.6 views

firefox: thunderbird: Incorrect JavaScript state machine for generators

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: The JavaScript engine did not handle closed generators correctly, and it was possible to resume them, resulting in a nullptr dereference...

6.5CVSS7.3AI score0.00351EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/06/29 12:6 a.m.12 views

CVE-2025-44557

A state machine transition flaw in the Bluetooth Low Energy BLE stack of Cypress PSoC4 v3.66 allows attackers to bypass the pairing process and authentication via a crafted pairingfailed packet...

8.1CVSS6.6AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/06/27 5:15 p.m.7 views

CVE-2025-44557

A state machine transition flaw in the Bluetooth Low Energy BLE stack of Cypress PSoC4 v3.66 allows attackers to bypass the pairing process and authentication via a crafted pairingfailed packet...

8.1CVSS0.00256EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/27 12:0 a.m.4 views

Infineon PSoC4 安全漏洞

Infineon PSoC4 is a programmable system-on-chip PSoC product family from Infineon Germany. A security vulnerability exists in Infineon PSoC4 version v3.66, which stems from a BLE stack state machine transition flaw that could lead to authentication bypass...

8.1CVSS6.8AI score0.00256EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.7 views

PT-2025-27241 · Cypress · Cypress Psoc4

Name of the Vulnerable Software and Affected Versions: Cypress PSoC4 version 3.66 Description: A state machine transition flaw in the Bluetooth Low Energy BLE stack allows attackers to bypass the pairing process and authentication via a crafted pairing failed packet. This flaw enables attackers t...

8.1CVSS6.9AI score0.00256EPSS
Exploits0References6
Rows per page
Query Builder