Lucene search
K

3906 matches found

OSV
OSV
added 2026/07/03 8:55 a.m.4 views

OPENSUSE-SU-2026:21222-1 Security update for systemd

This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure bsc1254924. - Disable mounting debugfs by default jscPED-8812. - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 bsc1267647 bsc1267644 bsc1262305 bsc1263117. - Move systemd-pcrloc...

6AI score
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/07/01 7:51 p.m.6 views

CVE-2026-53328

A flaw was found in the Linux kernel's schedext component. When systemd's user manager interacts with subtreecontrol while schedext is loaded, a warning can be triggered. This occurs due to a mismatch in how cgroup and css identities are handled during task migration, potentially leading to syste...

5.7AI score0.00168EPSS
Exploits0References4
Chainguard
Chainguard
added 2026/06/30 2:17 a.m.10 views

CVE-2026-40226 vulnerabilities

Vulnerabilities for packages: py3-systemd...

6.4CVSS5.8AI score0.00072EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/30 2:17 a.m.7 views

CVE-2026-40225 vulnerabilities

Vulnerabilities for packages: py3-systemd...

6.4CVSS5.8AI score0.00144EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/30 2:17 a.m.8 views

GHSA-HC7R-6254-88W5 vulnerabilities

Vulnerabilities for packages: py3-systemd...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/06/30 2:17 a.m.8 views

GHSA-396H-M3PM-FPM5 vulnerabilities

Vulnerabilities for packages: py3-systemd...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/24 3:36 p.m.7 views

CVE-2026-56371

A memory leak flaw was found in ImageMagick. Processing specially crafted TXT files with malicious texture attributes can exhaust system memory, allowing an attacker to cause a Denial of Service DoS. Mitigation If your application does not explicitly require rendering TXT files via ImageMagick, y...

6.9CVSS5.8AI score0.00257EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability in Systemd

Systemd, a system and service manager, as PID 1 encounters an assertion error and freezes execution when an unprivileged IPC API call is made with spurious data. In versions v249 and earlier, the effect is not an assertion error, but stack overwriting, with the content being controlled by the...

5.5CVSS5.9AI score0.00121EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability in Systemd

In nspawn in systemd 233 through 259, before 260, an escape-to-host action can occur through a crafted optional config file...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability in cups

OpenPrinting CUPS is an open-source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and earlier, there was an integer underflow vulnerability in the ppdCreateFromIPP function cups/ppd-cache.c. This vulnerability allowed any unprivileged local user to crash the...

6.2CVSS5.8AI score0.00154EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.11 views

SUSE SLED15 / SLES15 Security Update : alloy (SUSE-SU-2026:2438-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2438-1 advisory. This update for alloy fixes the following issues Security issues: - CVE-2026-4427: github.com/jackc/pgproto3/v...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References17
OSV
OSV
added 2026/06/17 2:45 p.m.5 views

SUSE-SU-2026:2438-1 Security update for alloy

This update for alloy fixes the following issues Security issues: - CVE-2026-4427: github.com/jackc/pgproto3/v2: improper validation of field length allows a malicious PostgreSQL server to crash a client application via a DataRow message bsc1259919. - CVE-2026-25934: github.com/go-git/go-git/v5:...

9.1CVSS6.5AI score0.01557EPSS
Exploits1References13
OSV
OSV
added 2026/06/15 10:5 a.m.6 views

RHSA-2026:25900 Red Hat Security Advisory: systemd security update

Bulletin has no description...

7.8CVSS4.9AI score0.00121EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2026/06/15 1:56 a.m.12 views

Moderate: Red Hat Security Advisory: systemd security update

An update for systemd is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.5CVSS6AI score0.00121EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/15 1:56 a.m.15 views

systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

A flaw was found in systemd, a system and service manager. An unprivileged user can exploit this vulnerability by making an Inter-Process Communication IPC API call with spurious data. In older versions v249 and earlier, this can lead to stack overwriting with attacker-controlled content,...

5.5CVSS6.2AI score0.00121EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.14 views

RHEL 10 : systemd (RHSA-2026:25900)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:25900 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive...

5.5CVSS6AI score0.00121EPSS
Exploits0References5
NVD
NVD
added 2026/06/13 3:16 a.m.19 views

CVE-2026-54231

A content injection vulnerability was found in the ABRT post-create event handler scripts in libreport. The event script queries the systemd journal for log entries matching the crashed process and writes the results to files in the dump directory without sanitizing embedded control characters. A...

5.5CVSS0.00116EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/13 2:34 a.m.7 views

CVE-2026-54231 Abrt: unsanitized systemd journal content written to dump directory files enables content injection

A content injection vulnerability was found in the ABRT post-create event handler scripts in libreport. The event script queries the systemd journal for log entries matching the crashed process and writes the results to files in the dump directory without sanitizing embedded control characters. A...

5.5CVSS5.3AI score0.00116EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/13 2:34 a.m.47 views

CVE-2026-54231 Abrt: unsanitized systemd journal content written to dump directory files enables content injection

A content injection vulnerability was found in the ABRT post-create event handler scripts in libreport. The event script queries the systemd journal for log entries matching the crashed process and writes the results to files in the dump directory without sanitizing embedded control characters. A...

5.5CVSS0.00116EPSS
Exploits0References2
CVE
CVE
added 2026/06/13 2:34 a.m.40 views

CVE-2026-54231

CVE-2026-54231 affects ABRT’s post-create event handler scripts in libreport. The event script reads journal entries for the crashed process and writes results to files in the dump directory without sanitizing embedded control characters. A local user can inject arbitrary content into the journal...

5.5CVSS5.4AI score0.00116EPSS
Exploits0References2Affected Software3
Rows per page
Query Builder