Lucene search
K
AlpinelinuxRecent

13033 matches found

AlpineLinux
AlpineLinux
•added 2026/04/08 9:20 p.m.•4 views

CVE-2026-5861

Use after free in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00303EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 8:49 p.m.•4 views

CVE-2026-39892

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. From 45.0.0 to before 46.0.7, if a non-contiguous buffer was passed to APIs which accepted Python buffers e.g. Hash.update, this could lead to buffer overflows. This vulnerability is fixed in...

9.8CVSS6.1AI score0.00652EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 8:24 p.m.•6 views

CVE-2026-39882

OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1.43.0, the otlp HTTP exporters traces/metrics/logs read the full HTTP response body into an in-memory bytes.Buffer without a size cap. This is exploitable for memory exhaustion when the configured collector endpoint is...

5.3CVSS5.4AI score0.0019EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 8:18 p.m.•5 views

CVE-2026-39881

Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious netbeans server to execute arbitrary Ex commands when Vim connects to it, via unsanitized strings in the defineAnnoType and specialKeys protocol...

7.8CVSS6.1AI score0.0062EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/04/08 7:55 p.m.•2 views

CVE-2026-39863

Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.1.1, 6.0.6, and 5.8.8, an out-of-bounds access in the core of Kamailio formerly OpenSER and SER allows remote attackers to cause a denial of service process crash via a specially crafted data packet sent over TCP. The...

7.5CVSS6AI score0.00463EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•2 views

CVE-2026-32280

During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls...

7.5CVSS5.8AI score0.00615EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•7 views

CVE-2026-32281

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

7.5CVSS5.8AI score0.00349EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•5 views

CVE-2026-27140

SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass...

9CVSS6.4AI score0.00658EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•2 views

CVE-2026-27143

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

9.8CVSS5.9AI score0.00536EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•3 views

CVE-2026-32283

If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3...

7.5CVSS5.8AI score0.00621EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•3 views

CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.0029EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•4 views

CVE-2026-27144

The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime...

7.1CVSS5.8AI score0.00261EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•2 views

CVE-2026-32289

Context was not properly tracked across template branches for JS template literals, leading to possibly incorrect escaping of content when branches were used. Additionally template actions within JS template literals did not properly track the brace depth, leading to incorrect escaping being...

6.1CVSS5.7AI score0.0029EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•10 views

CVE-2026-33810

When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

8.8CVSS5.8AI score0.0034EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/08 1:6 a.m.•4 views

CVE-2026-32282

On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the ATSYMLINKNOFOLLOW flag, which Root.Chmod uses to...

6.4CVSS5.8AI score0.00292EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 11:17 p.m.•10 views

CVE-2026-5747

An out-of-bounds write issue in the virtio PCI transport in Firecracker 1.13.0 through 1.14.3 and 1.15.0 on x8664 and aarch64 might allow a local guest user with root privileges to crash the Firecracker VMM process or potentially execute arbitrary code on the host via modification of virtio queue...

8.7CVSS6.5AI score0.00208EPSS
Exploits0References4
AlpineLinux
AlpineLinux
•added 2026/04/07 10:0 p.m.•6 views

CVE-2026-31790

Issue summary: Applications using RSASVE key encapsulation to establish a secret encryption key can send contents of an uninitialized memory buffer to a malicious peer. Impact summary: The uninitialized buffer might contain sensitive data from the previous execution of the application process whi...

7.5CVSS6AI score0.00981EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 10:0 p.m.•4 views

CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.5AI score0.00225EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 10:0 p.m.•14 views

CVE-2026-28390

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denia...

7.5CVSS5.9AI score0.00805EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 10:0 p.m.•9 views

CVE-2026-28389

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denial of...

7.5CVSS6AI score0.01027EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 10:0 p.m.•11 views

CVE-2026-28388

Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CRL Number extension is missing. Impact summary: A NULL pointer dereference can trigger a crash which leads to a Denial of Service for an application...

7.5CVSS6.3AI score0.01059EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 10:0 p.m.•13 views

CVE-2026-28387

Issue summary: An uncommon configuration of clients performing DANE TLSA-based server authentication, when paired with uncommon server DANE TLSA records, may result in a use-after-free and/or double-free on the client side. Impact summary: A use after free can have a range of potential consequenc...

8.1CVSS6.3AI score0.00755EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 9:32 p.m.•25 views

CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS5.7AI score0.00383EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 9:29 p.m.•2 views

CVE-2026-34079

Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the caching for ld.so removes outdated cache files without properly checking that the app controlled path to the outdated cache is in the cache directory. This allows Flatpak apps to delete arbitrary files on t...

8.7CVSS6.1AI score0.00323EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 9:27 p.m.•2 views

CVE-2026-34078

Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access ...

10CVSS6.5AI score0.0168EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 9:13 p.m.•5 views

CVE-2026-34582

Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationData records to be processed prior to the Finished message being received. A server which is attempting to enforce client authentication via certificates can by bypassed by a client which...

9.1CVSS5.3AI score0.00233EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 9:12 p.m.•8 views

CVE-2026-34580

Botan is a C++ cryptography library. In 3.11.0, the function CertificateStore::certificateknown had a misleading name; it would return true if any certificate in the store had a DN and subject key identifier, if set matching that of the argument. It did not check that the cert it found and the ce...

9.3CVSS5.4AI score0.00249EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 8:6 p.m.•9 views

CVE-2026-39395

Cosign provides code signing and transparency for containers and binaries. Prior to 3.0.6 and 2.6.3, cosign verify-blob-attestation may erroneously report a "Verified OK" result for attestations with malformed payloads or mismatched predicate types. For old-format bundles and detached signatures,...

5.3CVSS5.5AI score0.00241EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 5:0 p.m.•3 views

CVE-2026-39316

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, a use-after-free vulnerability exists in the CUPS scheduler cupsd when temporary printers are automatically deleted. cupsdDeleteTemporaryPrinters in...

6.2CVSS5.9AI score0.00178EPSS
Exploits1References1
AlpineLinux
AlpineLinux
•added 2026/04/07 4:59 p.m.•2 views

CVE-2026-39314

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, an integer underflow vulnerability in ppdCreateFromIPP cups/ppd-cache.c allows any unprivileged local user to crash the cupsd root process by supplying a negative...

6.2CVSS5.8AI score0.00154EPSS
Exploits1References1
AlpineLinux
AlpineLinux
•added 2026/04/07 4:38 p.m.•4 views

CVE-2026-35611

Addressable is an alternative implementation to the URI implementation that is part of Ruby's standard library. From 2.3.0 to before 2.9.0, within the URI template implementation in Addressable, two classes of URI template generate regular expressions vulnerable to catastrophic backtracking...

7.5CVSS5.2AI score0.0036EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 4:34 p.m.•3 views

CVE-2025-14821

A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH Secure Shell connections, and manipulation of trusted host information, posing a significant risk to the confidentiality, integrity, and availability of SSH communications via an...

7.8CVSS6.5AI score0.00129EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 2:22 p.m.•9 views

CVE-2026-33034

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. ASGI requests with a missing or understated Content-Length header could bypass the DATAUPLOADMAXMEMORYSIZE limit when reading HttpRequest.body, allowing remote attackers to load an unbounded request body into...

7.5CVSS5.8AI score0.00769EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 2:22 p.m.•8 views

CVE-2026-33033

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. MultiPartParser allows remote attackers to degrade performance by submitting multipart uploads with Content-Transfer-Encoding: base64 including excessive whitespace. Earlier, unsupported Django series such as...

6.5CVSS5.8AI score0.00879EPSS
Exploits1
AlpineLinux
AlpineLinux
•added 2026/04/07 2:22 p.m.•32 views

CVE-2026-4292

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. Admin changelist forms using ModelAdmin.listeditable incorrectly allowed new instances to be created via forged POST data. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated a...

2.7CVSS5.8AI score0.00294EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 2:22 p.m.•3 views

CVE-2026-4277

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. Add permissions on inline model instances were not validated on submission of forged POST data in GenericInlineModelAdmin. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated a...

9.8CVSS5.8AI score0.00458EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 2:22 p.m.•5 views

CVE-2026-3902

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. ASGIRequest allows a remote attacker to spoof headers by exploiting an ambiguous mapping of two header variants with hyphens or with underscores to a single version with underscores. Earlier, unsupported Django...

7.5CVSS5.8AI score0.00436EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 1:49 p.m.•4 views

CVE-2026-20911

A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00504EPSS
Exploits1
AlpineLinux
AlpineLinux
•added 2026/04/07 1:49 p.m.•2 views

CVE-2026-21413

A heap-based buffer overflow vulnerability exists in the losslessjpegloadraw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00746EPSS
Exploits1
AlpineLinux
AlpineLinux
•added 2026/04/07 1:49 p.m.•2 views

CVE-2026-20889

A heap-based buffer overflow vulnerability exists in the x3fthumbloader functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00645EPSS
Exploits1
AlpineLinux
AlpineLinux
•added 2026/04/07 1:49 p.m.•3 views

CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00564EPSS
Exploits1
AlpineLinux
AlpineLinux
•added 2026/04/07 1:49 p.m.•3 views

CVE-2026-24450

An integer overflow vulnerability exists in the uncompressedfpdngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00454EPSS
Exploits1References2
AlpineLinux
AlpineLinux
•added 2026/04/07 1:49 p.m.•2 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00454EPSS
Exploits1References2
AlpineLinux
AlpineLinux
•added 2026/04/07 12:43 p.m.•6 views

CVE-2026-5735

Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 149.0.2 and Thunderbird...

9.8CVSS5.9AI score0.00257EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/04/07 12:43 p.m.•4 views

CVE-2026-5734

Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was...

9.8CVSS5.9AI score0.00329EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/04/07 12:43 p.m.•3 views

CVE-2026-5733

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 149.0.2 and Thunderbird 149.0.2...

8.8CVSS5.8AI score0.00304EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/04/07 12:43 p.m.•4 views

CVE-2026-5732

Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability was fixed in Firefox 149.0.2, Firefox ESR 140.9.1, Thunderbird 149.0.2, and Thunderbird 140.9.1...

8.8CVSS5.8AI score0.0035EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/04/07 11:17 a.m.•5 views

CVE-2026-31842

Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs.c. The ischunkedtransfer function uses strcmp to compare the header value against "chunked", even though RFC 7230 specifies that...

8.7CVSS5.4AI score0.00899EPSS
Exploits1References3
AlpineLinux
AlpineLinux
•added 2026/04/07 12:0 a.m.•18 views

CVE-2026-39043

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

Exploits0
AlpineLinux
AlpineLinux
•added 2026/04/07 12:0 a.m.•8 views

CVE-2026-46472

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

Exploits0
Total number of security vulnerabilities13033