Lucene search
K

52 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12889

Malicious code in bioql PyPI...

6.7AI score0.00157EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/07/25 12:53 p.m.6 views

CVE-2025-38377

In the Linux kernel, the following vulnerability has been resolved: rose: fix dangling neighbour pointers in rosertdevicedown There are two bugs in rosertdevicedown that can cause use-after-free: 1. The loop bound t-count is modified within the loop, which can cause the loop to terminate early an...

7.8CVSS5.8AI score0.00164EPSS
Exploits0
OSV
OSV
added 2025/06/30 7:13 a.m.2 views

SUSE-SU-2025:02164-1 Security update for gimp

This update for gimp fixes the following issues: - CVE-2025-48797: Fixed two buffer over-reads and one heap-based buffer overflow in its TGA parser bsc1243711. - CVE-2025-48798: Fixed two use-after-free bugs and one double free bug in its XCF parser bsc1243712...

7.3CVSS8AI score0.00193EPSS
Exploits0References5
OSV
OSV
added 2025/06/18 11:1 a.m.17 views

CVE-2022-50005 nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Fix use-after-free bugs caused by pn532cmdtimeout When the pn532 uart device is detaching, the pn532uartremove is called. But there are no functions in pn532uartremove that could delete the cmdtimeout timer, which wil...

7.8CVSS5.9AI score0.00207EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2025/06/18 11:1 a.m.14 views

CVE-2022-50005

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Fix use-after-free bugs caused by pn532cmdtimeout When the pn532 uart device is detaching, the pn532uartremove is called. But there are no functions in pn532uartremove that could delete the cmdtimeout timer, which wil...

7.8CVSS5.4AI score0.00207EPSS
Exploits0
NVD
NVD
added 2025/05/01 3:16 p.m.9 views

CVE-2022-49882

In the Linux kernel, the following vulnerability has been resolved: KVM: Reject attempts to consume or refresh inactive gfntopfncache Reject kvmgpccheck and kvmgpcrefresh if the cache is inactive. Not checking the active flag during refresh is particularly egregious, as KVM can end up with a vali...

7.8CVSS0.00157EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.4 views

PT-2025-18599 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the KVM Kernel-based Virtual Machine component. The issue arises when the gfn to pfn cache is inactive, and KVM fails ...

5.1AI score0.00157EPSS
Exploits0References11
OSV
OSV
added 2025/02/26 1:54 a.m.11 views

CVE-2022-49085 drbd: Fix five use after free bugs in get_initial_state

In the Linux kernel, the following vulnerability has been resolved: drbd: Fix five use after free bugs in getinitialstate In getinitialstate, it calls notifyinitialstatedoneskb,.. if cb-args5==1. If genlmsgput failed in notifyinitialstatedone, the skb will be freed by nlmsgfreeskb. Then...

7.8CVSS5.3AI score0.00269EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2025/02/26 1:54 a.m.11 views

CVE-2022-49085 drbd: Fix five use after free bugs in get_initial_state

In the Linux kernel, the following vulnerability has been resolved: drbd: Fix five use after free bugs in getinitialstate In getinitialstate, it calls notifyinitialstatedoneskb,.. if cb-args5==1. If genlmsgput failed in notifyinitialstatedone, the skb will be freed by nlmsgfreeskb. Then...

7.6AI score0.00269EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.12 views

AlmaLinux 9 : firefox (ALSA-2025:1066)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:1066 advisory. firefox: thunderbird: Memory safety bugs fixed in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7 CVE-2025-1017 firefox: thunderbir...

9.8CVSS7.4AI score0.01196EPSS
Exploits0References10
OSV
OSV
added 2025/01/14 5:33 p.m.13 views

SUSE-SU-2025:0103-1 Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122201 fixes several issues. The following security issues were fixed: - CVE-2022-48686: Fixed UAF when detecting digest errors bsc1226337. - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. -...

9.8CVSS8AI score0.01166EPSS
Exploits3References51
OSV
OSV
added 2024/12/06 1:4 p.m.11 views

SUSE-SU-2024:4243-1 Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005562 fixes several issues. The following security issues were fixed: - CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool bsc1225429. - CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. - CVE-2024-43861: Fix...

7.8CVSS8.3AI score0.00757EPSS
Exploits1References41
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.12 views

Fedora 37 : libtar (2022-88772d0a2d)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-88772d0a2d advisory. - fix use-after-free bugs introduced by incorrect memleak fixes CVE-2021-33640 Tenable has extracted the preceding description block directly from t...

9.8CVSS7.1AI score0.01431EPSS
Exploits0References6
NVD
NVD
added 2024/10/21 6:15 p.m.28 views

CVE-2024-49945

In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...

5.5CVSS0.00228EPSS
Exploits0References3
OSV
OSV
added 2024/10/21 6:2 p.m.17 views

CVE-2024-49945 net/ncsi: Disable the ncsi work before freeing the associated structure

In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...

5.5CVSS6.1AI score0.00228EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/10/21 6:2 p.m.20 views

CVE-2024-49945 net/ncsi: Disable the ncsi work before freeing the associated structure

In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...

7.1AI score0.00228EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/21 6:2 p.m.47 views

CVE-2024-49945 net/ncsi: Disable the ncsi work before freeing the associated structure

In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...

0.00228EPSS
Exploits0References3
OSV
OSV
added 2024/10/16 7:4 p.m.28 views

SUSE-SU-2024:3697-1 Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005552 fixes several issues. The following security issues were fixed: - CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. - CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfochangednotify bsc1225739. -...

7.8CVSS8.3AI score0.00767EPSS
Exploits1References39
NVD
NVD
added 2024/05/19 9:15 a.m.17 views

CVE-2024-35887

In the Linux kernel, the following vulnerability has been resolved: ax25: fix use-after-free bugs caused by ax25dsdeltimer When the ax25 device is detaching, the ax25devdevicedown calls ax25dsdeltimer to cleanup the slavetimer. When the timer handler is running, the ax25dsdeltimer that calls...

7.8CVSS6.6AI score0.00232EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/19 8:34 a.m.29 views

CVE-2024-35869 smb: client: guarantee refcounted children from parent session

In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon-ses are also...

7.1AI score0.00253EPSS
Exploits0References3
Rows per page
Query Builder