Lucene search
+L
AlpinelinuxRecent

13033 matches found

AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4717

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00417EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4716

Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.1CVSS7.2AI score0.00407EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4715

Uninitialized memory in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.1CVSS7.2AI score0.0043EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4714

Incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00433EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4712

Information disclosure in the Widget: Cocoa component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00385EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•1 views

CVE-2026-4713

Incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00433EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4711

Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00398EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•1 views

CVE-2026-4725

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

10CVSS7.2AI score0.00318EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4710

Incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00409EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4709

Incorrect boundary conditions in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00463EPSS
Exploits0References7
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•2 views

CVE-2026-4708

Incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00433EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4706

Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00452EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4707

Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00577EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4704

Denial-of-service in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00414EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•6 views

CVE-2026-4705

Undefined behavior in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00418EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•14 views

CVE-2026-4724

Undefined behavior in the Audio/Video component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

9.1CVSS7.2AI score0.00322EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4723

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

9.8CVSS7.2AI score0.00393EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4722

Privilege escalation in the IPC component. This vulnerability was fixed in Firefox 149 and Thunderbird 149...

8.8CVSS7.2AI score0.00313EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4702

JIT miscompilation in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00474EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•2 views

CVE-2026-4701

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00461EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4699

Incorrect boundary conditions in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00687EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•7 views

CVE-2026-4700

Mitigation bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00459EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•6 views

CVE-2026-4697

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00687EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4698

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00755EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4695

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00687EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4696

Use-after-free in the Layout: Text and Fonts component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00483EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•2 views

CVE-2026-4694

Incorrect boundary conditions, integer overflow in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.3AI score0.00772EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4693

Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00687EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4691

Use-after-free in the CSS Parsing and Computation component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00483EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4692

Sandbox escape in the Responsive Design Mode component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

10CVSS7.2AI score0.00487EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4690

Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.6CVSS7.3AI score0.00773EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4689

Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

10CVSS7.3AI score0.00665EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4688

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

10CVSS7.2AI score0.00531EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•5 views

CVE-2026-4687

Sandbox escape due to incorrect boundary conditions in the Telemetry component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.6CVSS7.2AI score0.00539EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•2 views

CVE-2026-4686

Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00702EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•4 views

CVE-2026-4685

Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00687EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:30 p.m.•3 views

CVE-2026-4684

Race condition, use-after-free in the Graphics: WebRender component. This vulnerability was fixed in Firefox 149, Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

7.5CVSS7.2AI score0.00352EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2026/03/24 12:24 a.m.•7 views

CVE-2026-4677

Inappropriate implementation in WebAudio in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00447EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/03/24 12:24 a.m.•7 views

CVE-2026-4679

Integer overflow in Fonts in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.0034EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/03/24 12:24 a.m.•8 views

CVE-2026-4674

Out of bounds read in CSS in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00454EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/03/24 12:24 a.m.•4 views

CVE-2026-4675

Heap buffer overflow in WebGL in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.1AI score0.00385EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/03/24 12:0 a.m.•5 views

CVE-2026-21711

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

0.00146EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2026/03/24 12:0 a.m.•20 views

CVE-2026-33554

ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...

7.5CVSS6AI score0.00403EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/23 9:26 p.m.•6 views

CVE-2026-1940

An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gstwavparseadtlchunk function. The patch added a size validation check lsize + 8 size, but it does not account for the GSTROUNDUP2lsize used in the actual offset calculation. When lsize is an odd number, the parser advances more...

7.5CVSS6.8AI score0.00839EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2026/03/23 6:53 p.m.•3 views

CVE-2026-26209

cbor2 provides encoding and decoding for the Concise Binary Object Representation CBOR serialization format. Versions prior to 5.9.0 are vulnerable to a Denial of Service DoS attack caused by uncontrolled recursion when decoding deeply nested CBOR structures. This vulnerability affects both the...

7.5CVSS7.1AI score0.00417EPSS
Exploits1References4
AlpineLinux
AlpineLinux
•added 2026/03/23 6:57 a.m.•12 views

CVE-2026-23555

Any guest issuing a Xenstore command accessing a node using the illegal node path "/local/domain/", will crash xenstored due to a clobbered error indicator in xenstored when verifying the node path. Note that the crash is forced via a failing assert statement in xenstored. In case xenstored is...

7.1CVSS5.8AI score0.00181EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/03/23 6:56 a.m.•15 views

CVE-2026-23554

The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the flushing is done, and...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2026/03/22 12:15 p.m.•4 views

CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

6.3CVSS4AI score0.00534EPSS
Exploits1References9
AlpineLinux
AlpineLinux
•added 2026/03/20 10:51 p.m.•5 views

CVE-2026-33243

barebox is a bootloader. In barebox from version 2016.03.0 to before version 2026.03.1 and the corresponding backport to 2025.09.3, an attacker could exploit a FIT signature verification vulnerability to trick the bootloader into booting different images than those that were verified as part of a...

8.2CVSS5.8AI score0.00108EPSS
Exploits0References2
AlpineLinux
AlpineLinux
•added 2026/03/20 10:40 p.m.•2 views

CVE-2026-32810

Halloy is an IRC application written in Rust. In versions on \nix and macOS prior to commit f180e41061db393acf65bc99f5c5e7397586d9cb, halloy creates its config directory and files using default umask permissions, which typically results in 0644 on files and 0755 on directories. This allows any...

5.5CVSS5.8AI score0.00175EPSS
Exploits1References2
Total number of security vulnerabilities13033