Lucene search
+L
AlpinelinuxRecent

13033 matches found

alpinelinux
alpinelinux
•added 2026/03/20 10:37 p.m.•6 views

CVE-2026-32733

Halloy is an IRC application written in Rust. Prior to commit 0f77b2cfc5f822517a256ea5a4b94bad8bfe38b6, the DCC receive flow did not sanitize filenames from incoming DCC SEND requests. A remote IRC user could send a filename with path traversal sequences like ../../.ssh/authorizedkeys and the fil...

8.7CVSS5.9AI score0.00399EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/20 10:23 p.m.•2 views

CVE-2026-33186

gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 :path pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the :path omitted the mandatory...

9.1CVSS5.9AI score0.00522EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/20 8:33 p.m.•3 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.7AI score0.00349EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/20 8:32 p.m.•2 views

CVE-2026-33165

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a crafted HEVC bitstream causes an out-of-bounds heap write confirmed by AddressSanitizer. The trigger is a stale ctbinfo.log2unitSize after an SPS change where PicWidthInCtbsY and PicHeightInCtbsY stay...

5.5CVSS5.7AI score0.00232EPSS
Exploits1References3
alpinelinux
alpinelinux
•added 2026/03/20 6:31 p.m.•8 views

CVE-2026-32710

MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSONSCHEMAVALID function. Under certain conditions it might be possible to turn the crash into a remote code execution. These...

9.9CVSS6.1AI score0.00856EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/20 10:8 a.m.•4 views

CVE-2026-32595

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 comtain BasicAuth middleware that allows username enumeration via a timing attack. When a submitted username exists, the middleware performs a bcrypt password comparison taki...

6.3CVSS5.8AI score0.00385EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/03/20 10:1 a.m.•5 views

CVE-2026-32305

Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below, 3.0.0-beta1 through 3.6.11, and 3.7.0-ea.1 are vulnerable to mTLS bypass through the TLS SNI pre-sniffing logic related to fragmented ClientHello packets. When a TLS ClientHello is fragmented across multiple records,...

7.8CVSS5.8AI score0.00405EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/03/20 8:21 a.m.•4 views

CVE-2026-33069

PJSIP is a free and open source multimedia communication library written in C. Versions 2.16 and below have a cascading out-of-bounds heap read in pjsipmultipartparse. After boundary string matching, curptr is advanced past the delimiter without verifying it has not reached the buffer end. This...

7.5CVSS5.6AI score0.0026EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 7:11 a.m.•3 views

CVE-2026-33056

tar-rs is a tar archive reading/writing library for Rust. In versions 0.4.44 and below, when unpacking a tar archive, the tar crate's unpackdir function uses fs::metadata to check whether a path that already exists is a directory. Because fs::metadata follows symbolic links, a crafted tarball...

6.5CVSS5.9AI score0.00379EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/20 3:54 a.m.•5 views

CVE-2026-32945

PJSIP is a free and open source multimedia communication library written in C. Versions 2.16 and below have a Heap-based Buffer Overflowvulnerability in the DNS parser's name length handler. Thisimpacts applications using PJSIP's built-in DNS resolver, such as those configured with...

9.8CVSS5.5AI score0.00308EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/20 3:43 a.m.•4 views

CVE-2026-32942

PJSIP is a free and open source multimedia communication library written in C. Versions 2.16 and below contain a heap use-after-free vulnerability in the ICE session that occurs when there are race conditions between session destruction and the callbacks. This issue has been fixed in version 2.17...

9.3CVSS5.3AI score0.00319EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 2:48 a.m.•9 views

CVE-2026-32935

phpseclib is a PHP secure communications library. Projects using versions 0.1.1 through 1.0.26, 2.0.0 through 2.0.51, and 3.0.0 through 3.0.49 are vulnerable to a to padding oracle timing attack when using AES in CBC mode. This issue has been fixed in versions 1.0.27, 2.0.52 and 3.0.50...

8.2CVSS5.3AI score0.00374EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:35 a.m.•4 views

CVE-2026-32875

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Versions 5.10 through 5.11.0 are vulnerable to buffer overflow or infinite loop through large indent handling. ujson.dumps crashes the Python interpreter segmentation fault when the product of the indent...

7.5CVSS5.9AI score0.00469EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•4 views

CVE-2026-4463

Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00301EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•4 views

CVE-2026-4464

Integer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.9AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•5 views

CVE-2026-4462

Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•2 views

CVE-2026-4460

Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•6 views

CVE-2026-4459

Out of bounds read and write in WebAudio in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00281EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•4 views

CVE-2026-4458

Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...

8.8CVSS5.8AI score0.00193EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•2 views

CVE-2026-4457

Type Confusion in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00306EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•15 views

CVE-2026-4454

Use after free in Network in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•5 views

CVE-2026-4455

Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Chromium security severity: High...

8.8CVSS6AI score0.0025EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•4 views

CVE-2026-4453

Integer overflow in Dawn in Google Chrome on Mac prior to 146.0.7680.153 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00176EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•3 views

CVE-2026-4452

Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•4 views

CVE-2026-4450

Out of bounds write in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00281EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•3 views

CVE-2026-4451

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•5 views

CVE-2026-4449

Use after free in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•2 views

CVE-2026-4448

Heap buffer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00271EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•5 views

CVE-2026-4445

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00253EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•4 views

CVE-2026-4446

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00281EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•5 views

CVE-2026-4444

Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00301EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•5 views

CVE-2026-4442

Heap buffer overflow in CSS in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00271EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•3 views

CVE-2026-4443

Heap buffer overflow in WebAudio in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.4AI score0.00415EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:34 a.m.•2 views

CVE-2026-4441

Use after free in Base in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.9AI score0.00317EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:31 a.m.•3 views

CVE-2026-32874

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Versions 5.4.0 through 5.11.0 contain an accumulating memory leak in JSON parsing large outside of the range -2^63, 2^64 - 1 integers. The leaked memory is a copy of the string form of the integer plus a...

7.5CVSS5.4AI score0.00479EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/20 1:26 a.m.•2 views

CVE-2026-32711

pydicom is a pure Python package for working with DICOM files. Versions 2.0.0-rc.1 through 3.0.1 are vulnerable to Path Traversal through a maliciously crafted DICOMDIR ReferencedFileID when it is set to a path outside the File-set root. pydicom resolves the path only to confirm that it exists, b...

7.8CVSS5.8AI score0.00279EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/20 12:0 a.m.•26 views

CVE-2025-63261

AWStats 8.0 is vulnerable to Command Injection via the open function...

7.8CVSS5.9AI score0.01046EPSS
Exploits1References3
alpinelinux
alpinelinux
•added 2026/03/19 9:17 p.m.•8 views

CVE-2026-4159

1-byte OOB heap read in wcPKCS7DecodeEnvelopedData via zero-length encrypted content. A vulnerability existed in wolfSSL 5.8.4 and earlier, where a 1-byte out-of-bounds heap read in wcPKCS7DecodeEnvelopedData could be triggered by a crafted CMS EnvelopedData message with zero-length encrypted...

3.3CVSS5.2AI score0.00095EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 9:7 p.m.•5 views

CVE-2026-3229

An integer overflow vulnerability existed in the static function wolfssladdtochain, that caused heap corruption when certificate data was written out of bounds of an insufficiently sized certificate buffer. wolfssladdtochain is called by these API: wolfSSLCTXaddextrachaincert,...

5.5CVSS5.9AI score0.00064EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 8:59 p.m.•4 views

CVE-2026-3230

Missing required cryptographic step in the TLS 1.3 client HelloRetryRequest handshake logic in wolfSSL could lead to a compromise in the confidentiality of TLS-protected communications via a crafted HelloRetryRequest followed by a ServerHello message that omits the required keyshare extension,...

2.7CVSS5.8AI score0.00209EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 8:41 p.m.•3 views

CVE-2026-4395

Heap-based buffer overflow in the KCAPI ECC code path of wceccimportx963ex in wolfSSL wolfcrypt allows a remote attacker to write attacker-controlled data past the bounds of the pubkeyraw buffer via a crafted oversized EC public key point. The WOLFSSLKCAPIECC code path copies the input to...

9.8CVSS6.1AI score0.00344EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 8:37 p.m.•3 views

CVE-2026-30836

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Versions 0.30.0-rc6 and below do not safeguard against unauthenticated certificate issuance through the SCEP UpdateReq. This issue has been fixed in version 0.30.0...

10CVSS5.7AI score0.00296EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 8:29 p.m.•9 views

CVE-2026-3849

Stack Buffer Overflow in wcHpkeLabeledExtract via Oversized ECH Config. A vulnerability existed in wolfSSL 5.8.4 ECH Encrypted Client Hello support, where a maliciously crafted ECH config could cause a stack buffer overflow on the client side, leading to potential remote execution and client...

9.8CVSS6.2AI score0.00444EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 8:20 p.m.•17 views

CVE-2026-3547

Out-of-bounds read in ALPN parsing due to incomplete validation. wolfSSL 5.8.4 and earlier contained an out-of-bounds read in ALPN handling when built with ALPN enabled HAVEALPN / --enable-alpn. A crafted ALPN protocol list could trigger an out-of-bounds read, leading to a potential process crash...

7.5CVSS5.8AI score0.00257EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 8:9 p.m.•5 views

CVE-2026-3549

Heap Overflow in TLS 1.3 ECH parsing. An integer underflow existed in ECH extension parsing logic when calculating a buffer length, which resulted in writing beyond the bounds of an allocated buffer. Note that in wolfSSL, ECH is off by default, and the ECH standard is still evolving...

9.8CVSS6AI score0.00487EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 7:46 p.m.•6 views

CVE-2026-3580

In wolfSSL 5.8.4, constant-time masking logic in sp256getentry2569 is optimized into conditional branches bnez by GCC when targeting RISC-V RV32I with -O3. This transformation breaks the side-channel resistance of ECC scalar multiplication, potentially allowing a local attacker to recover secret...

4.7CVSS5.8AI score0.00128EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 7:37 p.m.•6 views

CVE-2026-3579

wolfSSL 5.8.4 on RISC-V RV32I architectures lacks a constant-time software implementation for 64-bit multiplication. The compiler-inserted muldi3 subroutine executes in variable time based on operand values. This affects multiple SP math functions sp256mul9, sp256sqr9, etc., leading to a timing...

5.9CVSS5.8AI score0.00265EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 6:12 p.m.•6 views

CVE-2026-3503

Protection mechanism failure in wolfCrypt post-quantum implementations ML-KEM and ML-DSA in wolfSSL on ARM Cortex-M microcontrollers allows a physical attacker to compromise key material and/or cryptographic outcomes via induced transient faults that corrupt or redirect seed/pointer values during...

5.2CVSS5.2AI score0.00153EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/19 5:45 p.m.•6 views

CVE-2026-3548

Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improperly storing the CRL number as a hexadecimal string, and a stack-based overflow for sufficiently sized CRL numbers. With appropriately crafted CRLs,...

9.8CVSS5.8AI score0.00471EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/19 5:25 p.m.•7 views

CVE-2026-2646

A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSLd2iSSLSESSION function. When deserializing session data with SESSIONCERTS enabled, certificate and session id lengths are read from an untrusted input without bounds validation, allowing an attacker to overflow fixed-size buffers and...

8.1CVSS5.3AI score0.00123EPSS
Exploits0
Total number of security vulnerabilities13033