Lucene search
K

87 matches found

RedHat Linux
RedHat Linux
added 4 hours ago5 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. XkbSetMapChecks declares a fixed-size stack buffer mapWidths256 indexed by key type index. The helper function CheckKeyTypes writes to this buffer at a client-controlled offset, allowing a stack buffer overflow. This...

7.8CVSS7.5AI score0.00165EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added yesterday3 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. XkbSetMapChecks declares a fixed-size stack buffer mapWidths256 indexed by key type index. The helper function CheckKeyTypes writes to this buffer at a client-controlled offset, allowing a stack buffer overflow. This...

7.8CVSS7.5AI score0.00165EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added yesterday3 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. XkbSetMapChecks declares a fixed-size stack buffer mapWidths256 indexed by key type index. The helper function CheckKeyTypes writes to this buffer at a client-controlled offset, allowing a stack buffer overflow. This...

7.8CVSS7.5AI score0.00165EPSS
Exploits0References7
AlmaLinux
AlmaLinux
added 2026/06/25 12:0 a.m.7 views

Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

7.8CVSS6.1AI score0.00165EPSS
Exploits0References20
OSV
OSV
added 2026/06/19 12:3 a.m.6 views

RLSA-2026:26610 Important: xorg-x11-server security, bug fix, and enhancement update

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fixes: xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution du...

7.8CVSS5.7AI score0.00165EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/06/18 8:20 p.m.18 views

CVE-2026-44663 OpenEXR: Integer overflow in the HTJ2K decoder leads to heap-buffer-overflow

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, an integer overflow in htundoimpl in src/lib/OpenEXRCore/internalht.cpp leads to a heap-buffer overflow when decoding a crafted...

6.1CVSS0.00199EPSS
Exploits1References2
NVD
NVD
added 2026/06/05 12:16 p.m.13 views

CVE-2026-50259

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. XkbSetMapChecks declares a fixed-size stack buffer mapWidths256 indexed by key type index. The helper function CheckKeyTypes writes to this buffer at a client-controlled offset, allowing a stack buffer overflow. This...

7.8CVSS0.00165EPSS
Exploits0References22
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Wifi: nl80211 – Set special AP channel widths to disallowed. Setting the AP channel width is intended for use with the standard 20/40/… MHz channel width progression. Switching between narrow channels in S1G mode is not supported...

5.5CVSS5.8AI score0.0021EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: mac80211 – Reject VHT operation mode for unsupported channel widths Notifications related to VHT operation mode are not defined for channel widths below 20 MHz. Specifically, 5 MHz and 10 MHz are not valid under the VHT...

5.5CVSS5.2AI score0.00119EPSS
Exploits0References2
OSV
OSV
added 2026/05/04 10:31 a.m.7 views

CLSA-2026-1777888717 gawk: Fix of CVE-2023-4156

Fix CVE-2023-4156: builtin.c formattree: When collecting positional field widths or precisions, check for wrap around to negative values...

7.1CVSS5.8AI score0.00428EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/04/24 4:39 p.m.14 views

ParquetSharp: Possible Stack Overflow When Reading a ParquetFile with Large Decimal Type Width

DecimalConverter.ReadDecimal makes a stackalloc using what might be an attacker-supplied value. If an attacker declares a decimal column with some unreasonable width, this could lead to a stack overflow. In a service environment, this would potentially take down a service. This affects applicatio...

5.3CVSS5.3AI score0.00273EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2026/04/07 11:25 p.m.6 views

SUSE CVE-2026-34589

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, the DWA lossy decoder constructs temporary per-component block pointers using signed 32-bit arithmetic. Fo...

7CVSS5.8AI score0.00419EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/04/06 7:47 p.m.6 views

CVE-2026-34589

A flaw was found in OpenEXR. The DWA lossy decoder, responsible for processing EXR image files, incorrectly handles large image widths. This occurs because temporary block pointers are constructed using signed 32-bit arithmetic, which can overflow. A remote attacker could exploit this by providin...

8.8CVSS6.6AI score0.00419EPSS
Exploits1References4
OSV
OSV
added 2026/04/06 4:16 p.m.4 views

UBUNTU-CVE-2026-34589

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, the DWA lossy decoder constructs temporary per-component block pointers using signed 32-bit arithmetic. Fo...

8.4CVSS5.8AI score0.00419EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2026/04/06 3:33 p.m.3 views

CVE-2026-34589 OpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, the DWA lossy decoder constructs temporary per-component block pointers using signed 32-bit arithmetic. Fo...

8.4CVSS5.9AI score0.00419EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-3248

Malware in sbrugna...

9.8CVSS9.2AI score0.0309EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.21 views

EUVD-2025-25089

Malicious code in bioql PyPI...

6.4AI score0.00119EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/31 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38509

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject VHT opmode for unsupported channel widths VHT operating mode...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/08/18 11:23 p.m.4 views

SUSE CVE-2025-38509

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject VHT opmode for unsupported channel widths VHT operating mode notifications are not defined for channel widths below 20 MHz. In particular, 5 MHz and 10 MHz are not valid under the VHT specification and must...

5.5CVSS6.5AI score0.00119EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/18 11:27 a.m.7 views

CVE-2025-38509

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject VHT opmode for unsupported channel widths VHT operating mode notifications are not defined for channel widths below 20 MHz. In particular, 5 MHz and 10 MHz are not valid under the VHT specification and must...

7CVSS7.1AI score0.00119EPSS
Exploits0References4
Rows per page
Query Builder