Lucene search
K

533 matches found

OSV
OSV
added 2026/07/03 8:55 a.m.4 views

OPENSUSE-SU-2026:21222-1 Security update for systemd

This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure bsc1254924. - Disable mounting debugfs by default jscPED-8812. - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 bsc1267647 bsc1267644 bsc1262305 bsc1263117. - Move systemd-pcrloc...

6AI score
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2026/06/29 8:6 a.m.7 views

CVE-2026-13595

A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent partition additions cause the array to be...

6.8CVSS5.7AI score0.00112EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/29 8:6 a.m.8 views

EUVD-2026-40053

A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent partition additions cause the array to be...

6.8CVSS5.7AI score0.00112EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability in freerdp3

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.22.0, urbselectinterface could free the device’s MS config upon an error, but subsequent code still dereferenced it, resulting in a use after free in libusbudevselectinterface. This vulnerability has been fixed in...

8.7CVSS5.9AI score0.00467EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.12 views

Astra Linux – Vulnerability in freerdp3

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.22.0, the URBDRC client used server-supplied interface numbers as array indices without bounds checks, resulting in a out-of-bounds read in libusbudevselectinterface. This vulnerability has been fixed in version...

9.1CVSS5.3AI score0.00489EPSS
Exploits0References2
OSV
OSV
added 2026/06/15 3:56 p.m.13 views

MGASA-2026-0208 Updated libinput packages fix security vulnerability

In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution...

9.8CVSS5.5AI score0.00498EPSS
Exploits0References4
OSV
OSV
added 2026/06/12 12:25 p.m.8 views

OESA-2026-2628 libinput security update

libinput is a library to handle input devices in Wayland compositors and to provide a generic X.Org input driver.It provides device detection, device handling, input device event processing and abstraction so minimize the amount of custom input code compositors need to provide the common set of...

9.8CVSS5.6AI score0.00498EPSS
Exploits0References2
Debian
Debian
added 2026/06/11 5:46 a.m.8 views

[SECURITY] [DSA 6339-1] libinput security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6339-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 11, 2026 https://www.debian.org/security/faq -...

9.8CVSS5.3AI score0.00498EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/09 2:20 a.m.11 views

SUSE CVE-2026-50292

In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution...

9.8CVSS6.1AI score0.00498EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.14 views

Fedora 44 : libinput (2026-5e2446b30f)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-5e2446b30f advisory. libinput 1.31.3, fixes a udev property inject via uinput devices that can lead to local privilege escalation Tenable has extracted the preceding description...

5.6AI score
Exploits0References1
NVD
NVD
added 2026/06/05 11:16 a.m.16 views

CVE-2026-50265

Rejected reason: This CVE ID was assigned as a duplicate of CVE-2026-50292...

0.00019EPSS
Exploits0
OSV
OSV
added 2026/06/05 11:16 a.m.9 views

UBUNTU-CVE-2026-50265

Rejected reason: This CVE ID was assigned as a duplicate of CVE-2026-50292...

7CVSS5.2AI score0.00019EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/05 9:49 a.m.10 views

EUVD-2026-34795

A flaw was found in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties through the libinput-device-group helper. This injection can lead to root code execution, for example, by exploiting REMOVECMD properties that are executed when a device is removed. This...

7CVSS5.7AI score0.00019EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/05 9:49 a.m.43 views

CVE-2026-50265

...

0.00019EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/06/05 9:49 a.m.12 views

CVE-2026-50265

...

5.4AI score0.00019EPSS
Exploits0
CVE
CVE
added 2026/06/05 9:49 a.m.37 views

CVE-2026-50265

CVE-2026-50265 describes a local privilege escalation in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties via the libinput-device-group helper, which can lead to root code execution (e.g., through REMOVE_CMD properties executed when a device is removed). ...

5.7AI score0.00019EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/05 9:49 a.m.7 views

CVE-2026-50265

This CVE ID was assigned as a duplicate of CVE-2026-50292...

9.8CVSS5.4AI score0.00498EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 9:49 a.m.12 views

CVE-2026-50265

A flaw was found in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties through the libinput-device-group helper. This injection can lead to root code execution, for example, by exploiting REMOVECMD properties that are executed when a device is removed. This...

5.7AI score0.00019EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-50265

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties through the libinput-device-group helper. This...

5.8AI score0.00019EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/05 12:0 a.m.15 views

libinput 安全漏洞

libinput is an open-source library from freedesktop. It provides a complete input stack for applications that need to handle input devices provided by the kernel. There is a security vulnerability in libinput, which stems from the ability to inject arbitrary udev properties through the...

5.7AI score0.00019EPSS
Exploits0References4
Rows per page
Query Builder