Lucene search
+L

479 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/06 7:40 a.m.10 views

CVE-2026-43082

In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on propertyentry Lists of struct propertyentry are supposed to be terminated with an empty property, this driver currently seems to be allocating exactly the amount of entry used. Chan...

5.7AI score0.00122EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/05/06 7:40 a.m.8 views

CVE-2026-43082

In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on propertyentry Lists of struct propertyentry are supposed to be terminated with an empty property, this driver currently seems to be allocating exactly the amount of entry used. Chan...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
OSV
OSV
added 2026/05/06 7:40 a.m.4 views

CVE-2026-43082 net: txgbe: leave space for null terminators on property_entry

In the Linux kernel, the following vulnerability has been resolved: net: txgbe: leave space for null terminators on propertyentry Lists of struct propertyentry are supposed to be terminated with an empty property, this driver currently seems to be allocating exactly the amount of entry used. Chan...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.12 views

PT-2026-37392

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The txgbe driver in the Linux kernel fails to allocate sufficient space for null terminators in lists of struct property entry. These lists are required to be terminated with an empty...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-43085

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nfnetlinklog: initialize nfgenmsg in NLMSGDONE terminator When batching multiple NFLOG messages inst-qlen 1, nfulnlsend appends an NLMSGDONE terminat...

5.5CVSS6AI score0.00123EPSS
Exploits0References3
NVD
NVD
added 2026/05/01 3:16 p.m.7 views

CVE-2026-31778

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: fix stack out-of-bounds read in initcard The loop creates a whitespace-stripped copy of the card shortname where len id is used for the bounds check. Since sizeofcard-id is 16 and the local id buffer is also 16 bytes...

7.1CVSS0.00126EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/01 2:15 p.m.5 views

EUVD-2026-26627

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: ensure names are nul-terminated Reject names that lack a \0 character before feeding them to functions that expect c-strings. Fixes tag is the most recent commit that needs this change...

5.8AI score0.00131EPSS
Exploits0References8
CVE
CVE
added 2026/05/01 2:15 p.m.18 views

CVE-2026-43028

The CVE-2026-43028 vulnerability affects the Linux kernel netfilter x_tables component. The root cause is that certain names were not guaranteed to be nul-terminated before being passed to functions that expect C strings, which could lead to misprocessing, system instability, or hazardous behavio...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.39 views

CVE-2026-43028 netfilter: x_tables: ensure names are nul-terminated

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: ensure names are nul-terminated Reject names that lack a \0 character before feeding them to functions that expect c-strings. Fixes tag is the most recent commit that needs this change...

7.1CVSS0.00131EPSS
Exploits0References8
OSV
OSV
added 2026/05/01 2:15 p.m.2 views

CVE-2026-31778 ALSA: caiaq: fix stack out-of-bounds read in init_card

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: fix stack out-of-bounds read in initcard The loop creates a whitespace-stripped copy of the card shortname where len id is used for the bounds check. Since sizeofcard-id is 16 and the local id buffer is also 16 bytes...

7.1CVSS6.4AI score0.00126EPSS
Exploits0References11
EUVD
EUVD
added 2026/05/01 2:15 p.m.12 views

EUVD-2026-26591

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: fix stack out-of-bounds read in initcard The loop creates a whitespace-stripped copy of the card shortname where len id is used for the bounds check. Since sizeofcard-id is 16 and the local id buffer is also 16 bytes...

5.9AI score0.00126EPSS
Exploits0References8
CVE
CVE
added 2026/05/01 2:15 p.m.20 views

CVE-2026-31778

Summary: CVE-2026-31778 affects the Linux kernel ALSA caiaq driver (init_card) and is caused by an off-by-one in a whitespace-stripping loop that copies a card id. The 16-byte local buffer can be filled without leaving space for the terminating null, causing a non-null-terminated string to be pas...

7.1CVSS5.9AI score0.00126EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to ensure that names end with a null character in netfilter xtables, which could lead to undefined...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References1
OSV
OSV
added 2026/04/30 9:18 a.m.9 views

CLSA-2026-1777540724 cups: Fix of CVE-2023-4504

CVE-2023-4504: fix heap-based buffer overflow in cups raster-interpret PPD PostScript scanner; scanps in filter/interpret.c now returns NULL on a lone trailing backslash escape sequence rather than reading past the buffer terminator...

7CVSS6AI score0.00663EPSS
Exploits2References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/28 9:28 p.m.7 views

Security Bulletin: Langflow OSS affected by vulnerabilies in xmldom versions prior to 0.9.9

Summary Langflow OSS affected by vulnerabilies in xmldom versions prior to 0.9.9 Vulnerability Details CVEID:CVE-2026-34601 DESCRIPTION: xmldom is a pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParser and XMLSerializer module. In xmldom versions 0.6.0 and prior and @xmldom/xmldom...

7.5CVSS5.2AI score0.00472EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/04/28 3:22 p.m.17 views

CLSA-2026-1777389760 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

9.8CVSS7.3AI score0.01462EPSS
Exploits8References1
OSV
OSV
added 2026/04/27 5:30 p.m.9 views

CLSA-2026-1777311048 Fix CVE(s): CVE-2026-32636

SECURITY UPDATE: out-of-bounds write of a single zero byte in NewXMLTree when processing UTF-16 encoded XML - debian/patches/CVE-2026-32636.patch: allocate one extra byte in ConvertUTF16ToUTF8 to accommodate the NUL terminator written after the buffer - CVE-2026-32636 - ELSCVE-88723...

7.5CVSS5.8AI score0.00475EPSS
Exploits0References1
OSV
OSV
added 2026/04/25 5:49 a.m.5 views

OESA-2026-2071 libgphoto2 security update

is the core of gphoto2 software. It is a portable library which gives access to literally hundreds of digital cameras. Security Fixes: libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in the ptpunpackCanonFE function in...

6.1CVSS5.7AI score0.00218EPSS
Exploits0References7
OSV
OSV
added 2026/04/25 5:49 a.m.6 views

OESA-2026-2070 libgphoto2 security update

is the core of gphoto2 software. It is a portable library which gives access to literally hundreds of digital cameras. Security Fixes: libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in the ptpunpackCanonFE function in...

6.1CVSS5.7AI score0.00218EPSS
Exploits0References7
OSV
OSV
added 2026/04/25 5:49 a.m.5 views

OESA-2026-2069 libgphoto2 security update

is the core of gphoto2 software. It is a portable library which gives access to literally hundreds of digital cameras. Security Fixes: libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in the ptpunpackCanonFE function in...

6.1CVSS5.7AI score0.00218EPSS
Exploits0References7
Rows per page
Query Builder