2997 matches found
CVE-2024-52282 vulnerabilities
Vulnerabilities for packages: harvester-fips, harvester...
GHSA-7H4P-RFFG-7823 vulnerabilities
Vulnerabilities for packages: vllm-cuda-13.2...
CVE-2026-2032 vulnerabilities
Vulnerabilities for packages: firefox-esr...
GHSA-RCXP-78CQ-8WG3 vulnerabilities
Vulnerabilities for packages: firefox-esr...
GHSA-GXG5-574V-J5F6 vulnerabilities
Vulnerabilities for packages: firefox, firefox-esr...
GHSA-RG37-6QFJ-MCGW vulnerabilities
Vulnerabilities for packages: chromium...
GHSA-6RRC-VWRV-CWXC vulnerabilities
Vulnerabilities for packages: firefox...
GHSA-RVWP-7CCQ-MJ58 vulnerabilities
Vulnerabilities for packages: chromium...
Linux Distros Unpatched Vulnerability : CVE-2026-13026
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Digital Credentials in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a...
CVE-2026-57436
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Documentroot= validated only that the new root was a Nokogiri::XML::Node, allowing a DTD node to be set as the document root. The result is a heap use-after-free during garbage...
CVE-2026-53186
In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRPRSP sense copy by the received length srpprocessrsp copies sense data from rsp-data + respdatalen, where respdatalen is the full 32-bit value supplied by the SRP target and is never checked against the number o...
GHSA-QF38-JQ28-3CCQ vulnerabilities
Vulnerabilities for packages: airflow...
CVE-2026-53037
In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hidpostreset You can build a USB device that includes a HID component and a storage or UAS component. The components can be reset only together. That means that hidprereset and hidpostreset are in the...
CVE-2026-53015
In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...
CVE-2026-53008
In the Linux kernel, the following vulnerability has been resolved: ice: fix race condition in TX timestamp ring cleanup Fix a race condition between icefreetxtstampring and icetxmap that can cause a NULL pointer dereference. icefreetxtstampring currently clears the ICETXFLAGSTXTIME flag after...
CVE-2026-53006
In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6rcv Caching saddr and daddr before pskbpull is problematic since skb-head can change. Remove these temporary variables: - We only access &ipv6hdrskb-saddr and &ipv6hdrskb-daddr when netdbgratelimit...
CVE-2026-52992
In the Linux kernel, the following vulnerability has been resolved: fs/adfs: validate nzones in adfsvalidatebblk Reject ADFS disc records with a zero zone count during boot block validation, before the disc record is used. When nzones is 0, adfsreadmap passes it to kmallocarray0, ... which return...
CVE-2026-52988
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...
Astra Linux – Vulnerability in Wireshark
IEEE 802.11 protocol dissector crashes in Wireshark versions 4.6.0 to 4.6.4...
GHSA-63HW-FMQ6-XXG2 vulnerabilities
Vulnerabilities for packages: mlflow, open-webui...