Lucene search
K
AlpinelinuxRecent

13018 matches found

AlpineLinux
AlpineLinux
added 2026/05/21 7:35 a.m.17 views

CVE-2026-44076

Insufficient sanitization of volume paths in Netatalk 3.1.0 through 4.4.2 allows a local privileged user to inject OS commands and execute arbitrary code via a crafted volume path...

6.7CVSS6.2AI score0.0013EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:35 a.m.10 views

CVE-2026-44073

Authentication modules in Netatalk 1.5.0 through 4.4.2 fail to check the return value of seteuid, which may allow a remote authenticated attacker to retain elevated privileges under error conditions...

5CVSS5.8AI score0.00277EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:35 a.m.11 views

CVE-2026-44072

Netatalk 2.2.1 through 4.4.2 calls system after a failed chdir without properly handling the error condition, which allows a local privileged user to execute unintended commands or cause a minor service disruption under specific conditions...

3CVSS5.9AI score0.00091EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:35 a.m.10 views

CVE-2026-44070

An unbounded memory reallocation in the charset conversion code in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service via crafted character conversion requests...

3.1CVSS5.9AI score0.00318EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.10 views

CVE-2026-44069

An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption via crafted volume translation input...

3.9CVSS5.8AI score0.00094EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.15 views

CVE-2026-44068

Incomplete sanitization of extended attribute EA path components in Netatalk 2.1.0 through 4.4.2 allows a remote authenticated attacker to write to files outside the intended metadata namespace via crafted EA names...

7.6CVSS5.8AI score0.00322EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.8 views

CVE-2026-44067

A heap over-read in extended attribute EA header parsing in Netatalk 2.1.0 through 4.4.2 allows a remote authenticated attacker to obtain limited information or cause a minor service disruption via crafted EA data...

4.2CVSS5.8AI score0.00292EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.16 views

CVE-2026-44066

Multiple heap out-of-bounds reads in the Spotlight RPC unmarshalling code in Netatalk 3.1.0 through 4.4.2 allow a remote authenticated attacker to obtain sensitive information or cause a minor service disruption...

7.1CVSS5.9AI score0.0029EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.9 views

CVE-2026-44065

An off-by-two error in lpwrite in papd in Netatalk 2.0.0 through 4.4.2 allows an adjacent network attacker to modify limited data or cause a minor service disruption via crafted print data...

4.2CVSS5.8AI score0.0013EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.14 views

CVE-2026-44064

An out-of-bounds read in ASP session ID handling in Netatalk 1.3 through 4.4.2 allows an adjacent network attacker to obtain limited information or cause a denial of service via a crafted ASP request...

7.1CVSS5.8AI score0.00171EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.9 views

CVE-2026-44063

An LDAP injection vulnerability in Netatalk 2.1.0 through 4.4.2 allows a remote authenticated attacker to manipulate LDAP queries and obtain limited information or modify LDAP entries via crafted filter input...

4.2CVSS5.8AI score0.00213EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.16 views

CVE-2026-44062

A missing output length bounds check in pullcharsetflags in Netatalk 2.0.4 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code or cause a denial of service via crafted character set data...

7.5CVSS6.2AI score0.00357EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.8 views

CVE-2026-44061

Netatalk 1.5.0 through 4.4.2 uses DES-ECB for authentication with a timing side channel, which allows a remote attacker to recover authentication credentials via timing analysis...

5.9CVSS5.8AI score0.00389EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.17 views

CVE-2026-44060

An integer underflow in dsiwriteinit in Netatalk 1.5.0 through 4.4.2 allows a remote unauthenticated attacker to cause a denial of service via a crafted DSI write request...

7.5CVSS5.8AI score0.00328EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.8 views

CVE-2026-44059

A race condition in the privilege toggle mechanism in Netatalk 2.2.5 through 4.4.2 allows a local attacker to obtain limited information, modify limited data, or cause a minor service disruption...

4.5CVSS5.8AI score0.00065EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.12 views

CVE-2026-44058

An authentication bypass vulnerability in Netatalk 2.2.2 through 4.4.2 allows a remote privileged user to authenticate as an arbitrary user via the admin auth user mechanism...

7.2CVSS6AI score0.00532EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.11 views

CVE-2026-44056

A stack-based buffer overflow in desktop.c in Netatalk 1.3 through 4.2.2 allows a remote authenticated attacker to cause a denial of service, obtain limited information, or modify limited data...

6.4CVSS6.1AI score0.00253EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.14 views

CVE-2026-44055

A logic error involving bitwise OR operations in Netatalk 3.1.4 through 4.4.2 allows a remote authenticated attacker to inject OS commands and execute arbitrary code...

7.5CVSS6.1AI score0.0036EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.18 views

CVE-2026-44054

Netatalk 2.0.0 through 4.4.2 generates AFP session tokens derived from predictable process IDs, which allows a remote authenticated attacker to cause a denial of service by exploiting the reconnect mechanism...

6.5CVSS5.8AI score0.0028EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.9 views

CVE-2026-44053

Netatalk 1.5.0 through 4.2.2 uses a broken cryptographic algorithm in the DHCAST128 UAM, which allows a remote attacker to obtain authentication credentials or impersonate a user via cryptanalytic attack...

7.4CVSS5.8AI score0.00301EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.15 views

CVE-2026-44052

Netatalk 2.1.0 through 4.4.2 inserts LDAP simple-bind passwords into log output in cleartext, which allows an attacker with access to the log files to obtain LDAP credentials...

7.5CVSS5.8AI score0.00245EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.16 views

CVE-2026-44051

An improper link resolution vulnerability in Netatalk 3.0.2 through 4.4.2 allows a remote authenticated attacker to read arbitrary files or overwrite arbitrary files via attacker-controlled symlink creation...

8.1CVSS6AI score0.00477EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.17 views

CVE-2026-44050

A heap-based buffer overflow in the CNID daemon commrcv function in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code with escalated privileges or cause a denial of service...

9.9CVSS6.4AI score0.00418EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.17 views

CVE-2026-44049

An out-of-bounds write due to improper null termination in convertcharset in Netatalk 2.0.4 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code or cause a denial of service via crafted character data...

7.5CVSS6.2AI score0.00516EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:34 a.m.13 views

CVE-2026-44048

A stack-based buffer overflow via UCS-2 type confusion in convertcharset in Netatalk 2.0.4 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code or cause a denial of service...

8.8CVSS6.5AI score0.00418EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 7:33 a.m.14 views

CVE-2026-44047

An SQL injection vulnerability in the MySQL CNID backend in Netatalk 3.1.0 through 4.4.2 allows a remote authenticated attacker to obtain unauthorized access to data, modify data, or cause a denial of service...

8.8CVSS5.9AI score0.00371EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 12:0 a.m.13 views

CVE-2026-46358

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

0.00029EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 12:0 a.m.13 views

CVE-2026-46405

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

0.00083EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/21 12:0 a.m.15 views

CVE-2026-45808

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

0.00046EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.7 views

CVE-2026-9124

Insufficient validation of untrusted input in Input in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.5AI score0.00261EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.7 views

CVE-2026-9122

Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00269EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.11 views

CVE-2026-9121

Out of bounds read in GPU in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.5AI score0.0033EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.6 views

CVE-2026-9126

Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.00396EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.9 views

CVE-2026-9119

Heap buffer overflow in WebRTC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.4AI score0.00538EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.5 views

CVE-2026-9118

Use after free in XR in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00396EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.8 views

CVE-2026-9116

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.3AI score0.00218EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.9 views

CVE-2026-9115

Insufficient policy enforcement in Service Worker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.5AI score0.00224EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.9 views

CVE-2026-9112

Use after free in GPU in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00396EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 1:10 p.m.20 views

CVE-2026-5950

An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sending queries that trigger specific retry conditions. This issue affects BIND 9 versions 9.18.36 throu...

5.3CVSS5.8AI score0.00551EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2026/05/20 1:10 p.m.17 views

CVE-2026-5947

Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG0, it begins work to validate that signature. If, during that validation, the "recursive-clients" limit is reached as would occur during a query...

7.5CVSS5.8AI score0.01387EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 1:10 p.m.13 views

CVE-2026-5946

Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Internet IN — for example, CHAOS or HESIOD, or DNS messages that specify meta-classes ANY or NONE in the question section. Specially crafted requests reaching the affected code paths — recursio...

7.5CVSS5.9AI score0.0181EPSS
Exploits0References13
AlpineLinux
AlpineLinux
added 2026/05/20 1:9 p.m.17 views

CVE-2026-3593

A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. This issue affects BIND 9 versions 9.20.0 through 9.20.22, 9.21.0 through 9.21.21, and 9.20.9-S1 through 9.20.22-S1. BIND 9 versions 9.18.0 through 9.18.48 and 9.18.11-S1 through 9.18.48-S1 are NOT affected...

9.8CVSS5.8AI score0.01844EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/20 1:9 p.m.11 views

CVE-2026-3592

BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a victim resolver makes a query to a specially crafted zone, the resolver will consume disproportionate resources. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.48, 9.20.0...

5.3CVSS5.8AI score0.00406EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/05/20 1:9 p.m.14 views

CVE-2026-3039

BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consumption when receiving and processing maliciously-constructed packets. Typically these servers will be found in Active Directory integrated DNS deployments and/or...

7.5CVSS5.7AI score0.01047EPSS
Exploits0References13
AlpineLinux
AlpineLinux
added 2026/05/20 12:48 p.m.11 views

CVE-2026-29518

Rsync versions before 3.4.3 contain a time-of-check to time-of-use TOCTOU race condition in daemon file handling that allows attackers to redirect file writes outside intended directories by replacing parent directory components with symbolic links. Attackers with write access to a module path ca...

7.8CVSS5.9AI score0.00152EPSS
Exploits0References11
AlpineLinux
AlpineLinux
added 2026/05/20 9:21 a.m.10 views

CVE-2026-44608

NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency vulnerability that when certain conditions are met multi-threaded, RPZ XFR reload, RPZ zone with 'rpz-nsip'/'rpz-nsdname' triggers it could result in heap use-after-free and eventual crash. An adversary can...

8.2CVSS5.7AI score0.00255EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/05/20 9:21 a.m.11 views

CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

7.5CVSS5.8AI score0.00801EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/05/20 9:21 a.m.10 views

CVE-2026-42960

NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to poisoning via promiscuous records for the authority section. Promiscuous RRSets that complement DNS replies in the authority section can be used to trick Unbound to cache such records. If an adversary is able to attach such...

10CVSS5.7AI score0.00311EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/05/20 9:20 a.m.13 views

CVE-2026-42959

NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC validator that can lead to a crash given malicious upstream replies. When Unbound constructs chase-reply messages for validation, the code uses the wrong counter to calculate write offsets fo...

8.7CVSS5.8AI score0.00779EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2026/05/20 9:20 a.m.9 views

CVE-2026-42944

NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in the reply packet. The relevant options 'nsid', 'answer-cookie', 'pad-responses' default need to be enabl...

8.7CVSS5.8AI score0.00842EPSS
Exploits0References8
Total number of security vulnerabilities13018