Lucene search
K

28 matches found

UbuntuCve
UbuntuCve
added 2025/10/30 12:0 a.m.3 views

CVE-2025-40092

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Refactor bind path to use free After an bind/unbind cycle, the ncm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.7AI score0.00188EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/07/31 9:15 p.m.3 views

CVE-2025-48073

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a...

6.2CVSS5.9AI score0.00198EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38347

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on ino and xnid syzbot reported a f2fs bug as below: INFO: task syz-executor140:5308 blocked for more than 143 seconds. Not tainted 6.14.0-rc7-syzkaller-00069-g81e4f8d68c66 0 "echo 0...

5.5CVSS5.9AI score0.00159EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.1 views

CVE-2025-38277

In the Linux kernel, the following vulnerability has been resolved: mtd: nand: ecc-mxic: Fix use of uninitialized variable ret If ctx-steps is zero, the loop processing ECC steps is skipped, and the variable ret remains uninitialized. It is later checked and returned, which leads to undefined...

5.5CVSS6.1AI score0.00156EPSS
Exploits0References30
UbuntuCve
UbuntuCve
added 2025/07/09 11:15 a.m.4 views

CVE-2025-38255

In the Linux kernel, the following vulnerability has been resolved: lib/groupcpus: fix NULL pointer dereference from groupcpusevenly While testing nullblk with configfs, echo 0 pollqueues will trigger following panic: BUG: kernel NULL pointer dereference, address: 0000000000000010 Oops: Oops: 000...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/04 2:15 p.m.3 views

CVE-2025-38216

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices Commit 2031c469f816 "iommu/vt-d: Add support for static identity domain" changed the context entry setup during domain attachment from a set-and-check policy to a...

7.8CVSS6.6AI score0.00142EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.4 views

CVE-2022-50221

In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage...

7.1CVSS6.3AI score0.00178EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/06/11 2:15 p.m.3 views

CVE-2025-40914

Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow. CryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328...

9.8CVSS7.2AI score0.00442EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/05/20 4:15 p.m.1 views

CVE-2025-37961

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix uninit-value for saddr in dooutputroute4 syzbot reports for uninit-value for the saddr argument 1. commit 4754957f04f5 "ipvs: do not use random local source address for tunnels" already implies that the input value of...

5.5CVSS6.4AI score0.00149EPSS
Exploits0References26
UbuntuCve
UbuntuCve
added 2025/05/15 2:15 p.m.11 views

CVE-2025-4516

There is an issue in CPython when using bytes.decode"unicodeescape", error="ignore|replace". If you are not using the "unicodeescape" encoding or an error handler your usage is not affected. To work-around this issue you may stop using the error= handler and instead wrap the bytes.decode call in ...

5.9CVSS6.4AI score0.00171EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/05/01 3:16 p.m.1 views

CVE-2022-49825

In the Linux kernel, the following vulnerability has been resolved: ata: libata-transport: fix error handling in atatportadd In atatportadd, the return value of transportadddevice is not checked. As a result, it causes null-ptr-deref while removing the module, because transportremovedevice is...

5.5CVSS6.3AI score0.00183EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/04/25 3:15 p.m.14 views

CVE-2025-3643

A flaw was found in Moodle. The return URL in the policy tool required additional sanitizing to prevent a reflected Cross-site scripting XSS risk...

5.4CVSS6AI score0.00276EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/04/01 4:15 p.m.6 views

CVE-2025-21930

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't try to talk to a dead firmware This fixes: bad state = 0 WARNING: CPU: 10 PID: 702 at drivers/net/wireless/inel/iwlwifi/iwl-trans.c:178 iwltranssendcmd+0xba/0xe0 iwlwifi Call Trace: ? warn+0xca/0x1c0 ?...

5.5CVSS6.4AI score0.00187EPSS
Exploits0References20
UbuntuCve
UbuntuCve
added 2025/03/27 3:16 p.m.8 views

CVE-2025-29490

libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted SWF file...

6.5CVSS5.9AI score0.00322EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/03/25 9:15 p.m.9 views

CVE-2025-27832

An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c...

9.8CVSS7AI score0.00806EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/03/17 12:0 a.m.8 views

CVE-2025-2368

A vulnerability was found in WebAssembly wabt 1.0.36 and classified as critical. This issue affects the function wabt::interp::anonymous namespace::BinaryReaderInterp::OnExport of the file wabt/src/interp/binary-reader-interp.cc of the component Malformed File Handler. The manipulation leads to...

8.8CVSS6.4AI score0.00529EPSS
Exploits1References8
UbuntuCve
UbuntuCve
added 2025/02/26 7:1 a.m.12 views

CVE-2022-49478

In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix array-index-out-of-bounds in pvr2i2ccoreinit Syzbot reported that -1 is used as array index. The problem was in missing validation check. hdw-unitnumber is initialized with -1 and then if init table walk fails...

7.8CVSS6.4AI score0.00274EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/02/26 7:1 a.m.7 views

CVE-2022-49366

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix reference count leak in smbcheckpermdacl The issue happens in a specific path in smbcheckpermdacl. When "id" and "uid" have the same value, the function simply jumps out of the loop without decrementing the reference...

5.5CVSS5.9AI score0.00245EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/02/26 7:0 a.m.7 views

CVE-2022-49157

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix premature hw access after PCI error After a recoverable PCI error has been detected and recovered, qla driver needs to check to see if the error condition still persist and/or wait for the OS to give the resume...

5.5CVSS6.3AI score0.00252EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/02/26 7:0 a.m.6 views

CVE-2022-49147

In the Linux kernel, the following vulnerability has been resolved: block: Fix the maximum minor value is blkallocextminor idaallocrange..., min, max, ... returns values from min to max, inclusive. So, NREXTDEVT is a valid idx returned by blkallocextminor. This is an issue because in deviceadddis...

5.5CVSS6.2AI score0.00245EPSS
Exploits0References6
Rows per page
Query Builder