Lucene search
K

12 matches found

OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53087

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix leaking freebds While reclaiming the tx queue we fast forward the write pointer to drop any data in flight. These dropped frames are not added back to the pool of free bds. We also need to tell the netdev that ...

7.5CVSS5.7AI score0.00376EPSS
Exploits0References3
OSV
OSV
added 2026/06/22 4:16 p.m.4 views

UBUNTU-CVE-2026-12479

A path traversal vulnerability exists in keras-team/keras version 3.14.0, specifically in the DiskIOStore.make method within the Keras 3 model saving and loading library. This vulnerability arises from the improper handling of user-provided layer names, which are used to construct directory paths...

6.1CVSS6.5AI score0.00263EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 7:16 p.m.11 views

UBUNTU-CVE-2026-36499

A missing upper-bound check in the udpifsetthreads function of Open vSwitch v3.6.90 allows an attacker with OVSDB write access to request an excessive number of handler or revalidation threads. This can cause a denial of service DoS via resource exhaustion...

6.5CVSS5.3AI score0.00328EPSS
Exploits0References2
OSV
OSV
added 2026/06/03 6:16 p.m.9 views

UBUNTU-CVE-2026-46254

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.5CVSS5.2AI score0.00114EPSS
Exploits0References9
OSV
OSV
added 2026/06/03 1:0 p.m.11 views

UBUNTU-CVE-2026-6873

An issue was discovered in Django 6.0 before 6.0.6 and 5.2 before 5.2.15. django.http.HttpRequest.getsignedcookie in Django uses a non-injective salt derivation concatenating the cookie name and salt argument, which allows a remote attacker to use a cookie in a context different from the one wher...

4.3CVSS5.3AI score0.00245EPSS
Exploits0References2
OSV
OSV
added 2026/05/06 12:16 p.m.6 views

UBUNTU-CVE-2026-43177

In the Linux kernel, the following vulnerability has been resolved: media: ipu6: Fix RPM reference leak in probe error paths Several error paths in ipu6pciprobe were jumping directly to outipu6busdeldevices without releasing the runtime PM reference. Add pmruntimeputsync before cleaning up other...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References3
OSV
OSV
added 2026/05/06 12:16 p.m.5 views

UBUNTU-CVE-2026-43240

In the Linux kernel, the following vulnerability has been resolved: x86/kexec: add a sanity check on previous kernel's ima kexec buffer When the second-stage kernel is booted via kexec with a limiting command line such as "mem=", the physical range that contains the carried over IMA measurement...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References3
OSV
OSV
added 2026/05/05 12:0 a.m.9 views

UBUNTU-CVE-2026-33007

A NULL pointer dereference in the modauthnsocache in Apache HTTP Server 2.4.66 and earlier allows an unauthenticated remote user to crash a child process in a caching forward proxy configuration. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

5.3CVSS5.8AI score0.00514EPSS
Exploits0References3
OSV
OSV
added 2026/05/01 3:16 p.m.8 views

UBUNTU-CVE-2026-31784

In the Linux kernel, the following vulnerability has been resolved: drm/xe/pxp: Clear restart flag in pxpstart after jumping back If we don't clear the flag we'll keep jumping back at the beginning of the function once we reach the end. cherry picked from commit...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References3
OSV
OSV
added 2026/03/16 5:16 p.m.6 views

UBUNTU-CVE-2026-30405

An issue in GoBGP gobgpd v.4.2.0 allows a remote attacker to cause a denial of service via the NEXTHOP path attribute...

7.5CVSS5.8AI score0.00333EPSS
Exploits1References4
OSV
OSV
added 2026/03/02 8:16 p.m.4 views

UBUNTU-CVE-2026-25884

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found. The vulnerability is in the CRW image parser. This issue has been patched in version 0.28.8...

8.1CVSS5.7AI score0.00307EPSS
Exploits1References6
OSV
OSV
added 2026/02/22 1:16 a.m.5 views

UBUNTU-CVE-2026-2903

A flaw has been found in skvadrik re2c up to 4.4. Impacted is the function checkandmergespecialrules of the file src/parse/ast.cc. This manipulation causes null pointer dereference. The attack can only be executed locally. The exploit has been published and may be used. Patch name:...

4.8CVSS5.3AI score0.00113EPSS
Exploits0References8
Rows per page
Query Builder