21 matches found
CVE-2018-2811 vulnerabilities
Vulnerabilities for packages: openjdk-26-openj9, openjdk-25-openj9, openjdk-17-openj9, openjdk-21-openj9, corretto, openjdk-11-openj9, openjdk-8-openj9...
CVE-2025-38488
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cryptmessage when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from cryptmessage, assuming all crypto operations are synchronous. However, when hardware crypto...
GHSA-H828-V5PV-33QX vulnerabilities
Vulnerabilities for packages: juicefs...
GHSA-695J-C63M-MVXC vulnerabilities
Vulnerabilities for packages: sudo...
GHSA-GX7H-6FR6-J29H vulnerabilities
Vulnerabilities for packages: mariadb...
GHSA-H2FW-RFH5-95R3 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2025-37954
In the Linux kernel, the following vulnerability has been resolved: smb: client: Avoid race in opencacheddir with lease breaks A pre-existing valid cfid returned from findorcreatecacheddir might race with a lease break, meaning opencacheddir doesn't consider it valid, and thinks it's...
CVE-2025-37949
In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL pointer fault in the xenbusthread callstack: BUG: kernel NULL pointer dereference, address: 0000000000000000 RIP: e030:wakeupcommon+0x4c/0x180 Call Trace:...
GHSA-5VXX-C285-PCQ4 vulnerabilities
Vulnerabilities for packages: hubble-fips, hubble, hubble-ui-backend-fips...
CVE-2011-2411 vulnerabilities
Vulnerabilities for packages: samba...
GHSA-X6H9-CX79-JJJV vulnerabilities
Vulnerabilities for packages: unixodbc...
GHSA-255R-3PRX-MF99 vulnerabilities
Vulnerabilities for packages: zellij...
GHSA-92M3-M5PW-P2X9 vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-4W4V-5HC9-XRR2 vulnerabilities
Vulnerabilities for packages: solr...
GHSA-F73R-7G7H-494M vulnerabilities
Vulnerabilities for packages: gitlab-pages, gitlab-cng...
GHSA-F666-246M-P7MG vulnerabilities
Vulnerabilities for packages: firefox...
GHSA-2VPQ-FH52-J3WV vulnerabilities
Vulnerabilities for packages: airflow, datadog-agent...
CVE-2024-12425
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that supports embedded font...
CVE-2023-39176
A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose...
CVE-2024-8508
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can cause Unbound to spend a considerable time applying name compression ...