Lucene search
+L
AlpinelinuxRecent

13033 matches found

alpinelinux
alpinelinux
added 2026/03/19 5:10 p.m.11 views

CVE-2026-2645

In wolfSSL 5.8.2 and earlier, a logic flaw existed in the TLS 1.2 server state machine implementation. The server could incorrectly accept the CertificateVerify message before the ClientKeyExchange message had been received. This issue affects wolfSSL before 5.8.4 wolfSSL 5.8.2 and earlier is...

7.5CVSS5.3AI score0.00126EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/19 5:0 p.m.4 views

CVE-2026-1005

Integer underflow in wolfSSL packet sniffer = 5.8.4 allows an attacker to cause a buffer overflow in the AEAD decryption path by injecting a TLS record shorter than the explicit IV plus authentication tag into traffic inspected by sslDecodePacket. The underflow wraps a 16-bit length to a large...

5.3CVSS5.8AI score0.00251EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/19 4:54 p.m.3 views

CVE-2026-0819

A stack buffer overflow vulnerability exists in wolfSSL's PKCS7 SignedData encoding functionality. In wcPKCS7BuildSignedAttributes, when adding custom signed attributes, the code passes an incorrect capacity value esd-signedAttribsCount to EncodeAttributes instead of the remaining available space...

7.1CVSS5.7AI score0.00101EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/18 8:39 p.m.2 views

CVE-2026-32636

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-17 and 6.9.13-42, the NewXMLTree method contains a bug that could result in a crash due to an out of write bounds of a single zero byte. Versions 7.1.2-17 and 6.9.13-42 fix the issue...

7.5CVSS5.8AI score0.00475EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/18 5:59 p.m.3 views

CVE-2026-27135

nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. Prior to version 1.68.1, the nghttp2 library stops reading the incoming data when user facing public API nghttp2sessionterminatesession or nghttp2sessionterminatesession2 is called by the application. They might be...

7.5CVSS5.8AI score0.00775EPSS
Exploits0References55
alpinelinux
alpinelinux
added 2026/03/18 5:55 p.m.4 views

CVE-2026-32634

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, Glances stores both the Zeroconf-advertised server name and the discovered IP address for dynamic servers, but later builds connection URIs from the untrusted advertised name instead ...

8.1CVSS5.8AI score0.00282EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 5:53 p.m.16 views

CVE-2026-32633

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, the /api/4/serverslist endpoint returns raw server objects from GlancesServersList.getserverslist. Those objects are mutated in-place during background polling and can contain a uri...

9.1CVSS5.8AI score0.00472EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 5:47 p.m.5 views

CVE-2026-32632

Glances is an open-source system cross-platform monitoring tool. Glances recently added DNS rebinding protection for the MCP endpoint, but prior to version 4.5.2, the main REST/WebUI FastAPI application still accepts arbitrary Host headers and does not apply TrustedHostMiddleware or an equivalent...

5.9CVSS5.8AI score0.0016EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 5:21 p.m.1 views

CVE-2026-32611

Glances is an open-source system cross-platform monitoring tool. The GHSA-x46r fix commit 39161f0 addressed SQL injection in the TimescaleDB export module by converting all SQL operations to use parameterized queries and psycopg.sql composable objects. However, the DuckDB export module...

9.1CVSS5.8AI score0.00325EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 4:31 p.m.5 views

CVE-2026-32610

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, the Glances REST API web server ships with a default CORS configuration that sets alloworigins="" combined with allowcredentials=True. When both of these options are enabled together, Starlette's CORSMiddlewa...

8.1CVSS5.7AI score0.00339EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 3:15 p.m.6 views

CVE-2026-33002

Jenkins 2.442 through 2.554 both inclusive, LTS 2.426.3 through LTS 2.541.2 both inclusive performs origin validation of requests made through the CLI WebSocket endpoint by computing the expected origin for comparison using the Host or X-Forwarded-Host HTTP request headers, making it vulnerable t...

7.5CVSS5.8AI score0.00297EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2026/03/18 3:15 p.m.5 views

CVE-2026-33001

Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the extraction of .tar and .tar.gz archives, allowing crafted archives to write files to arbitrary locations on the filesystem, restricted only by file system access permissions of the user running...

8.8CVSS5.9AI score0.01161EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2026/03/18 2:30 p.m.7 views

CVE-2026-32609

Glances is an open-source system cross-platform monitoring tool. The GHSA-gh4x fix commit 5d3de60 addressed unauthenticated configuration secrets exposure on the /api/v4/config endpoints by introducing asdictsecure redaction. However, the /api/v4/args and /api/v4/args/item endpoints were not...

7.5CVSS5.8AI score0.00499EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 6:3 a.m.3 views

CVE-2026-32608

Glances is an open-source system cross-platform monitoring tool. The Glances action system allows administrators to configure shell commands that execute when monitoring thresholds are exceeded. These commands support Mustache template variables e.g., name, key that are populated with runtime...

7CVSS6.1AI score0.00243EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 5:18 a.m.3 views

CVE-2026-32596

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.2, Glances web server runs without authentication by default when started with glances -w, exposing REST API with sensitive system information including process command-lines containing credentials passwords, API keys,...

8.7CVSS5.8AI score0.0155EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/03/18 12:0 a.m.4 views

CVE-2026-26740

Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validating its allocated size...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References17
alpinelinux
alpinelinux
added 2026/03/17 11:34 p.m.8 views

CVE-2026-27459

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to setcookiegeneratecallback returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0....

9.8CVSS5.4AI score0.00704EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/17 11:24 p.m.5 views

CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

6.3CVSS5.3AI score0.00241EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/16 10:30 p.m.6 views

CVE-2026-4177

YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter. The heap overflow occurs when class names exceed the initial 512-byte allocation. The base64 decoder could read past the buffer end on...

9.1CVSS5.5AI score0.00429EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/16 8:44 p.m.10 views

CVE-2026-32767

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

0.00541EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/16 5:52 p.m.7 views

CVE-2026-4224

When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs...

7.5CVSS5.4AI score0.00621EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/16 5:37 p.m.8 views

CVE-2026-3644

The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update, |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.jsoutput lacked the output validation applie...

7.5CVSS5.4AI score0.00419EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/16 7:2 a.m.3 views

CVE-2026-32778

libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition...

5.5CVSS5.8AI score0.00166EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/16 6:58 a.m.4 views

CVE-2026-32777

libexpat before 2.7.5 allows an infinite loop while parsing DTD content...

5.5CVSS5.8AI score0.00216EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/16 6:54 a.m.1 views

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

5.5CVSS5.8AI score0.00164EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/16 6:31 a.m.7 views

CVE-2026-32775

libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exifmnotedatagetvalue function gets passed in a 0 size, the passed in-buffer would be overwritten due to an integer underflow...

7.8CVSS5.7AI score0.00193EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/16 6:13 a.m.2 views

CVE-2025-71264

Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service client crash...

5.3CVSS5.9AI score0.00282EPSS
Exploits0References3
alpinelinux
alpinelinux
added 2026/03/16 12:0 a.m.19 views

CVE-2025-69693

Out-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder libavcodec/rv60dec.c. The quantization parameter qp validation at line 2267 only checks the lower bound qp 0 but is missing upper bound validation. The qp value can reach 65 base value 63 from 6-bit frame header + offset +2 from...

5.4CVSS5.8AI score0.00266EPSS
Exploits0References3
alpinelinux
alpinelinux
added 2026/03/15 5:32 a.m.4 views

CVE-2026-4167

A vulnerability was determined in Belkin F9K1122 1.00.33. This affects the function formReboot of the file /goform/formReboot. This manipulation of the argument webpage causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may be...

9CVSS7.8AI score0.00455EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/13 8:42 p.m.3 views

CVE-2026-3084

GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00421EPSS
Exploits0References5
alpinelinux
alpinelinux
added 2026/03/13 8:41 p.m.3 views

CVE-2026-2921

GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending o...

7.8CVSS6.4AI score0.00867EPSS
Exploits0References22
alpinelinux
alpinelinux
added 2026/03/13 8:41 p.m.1 views

CVE-2026-3083

GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependin...

8.8CVSS6.3AI score0.00806EPSS
Exploits0References21
alpinelinux
alpinelinux
added 2026/03/13 8:40 p.m.9 views

CVE-2026-3086

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00421EPSS
Exploits0References5
alpinelinux
alpinelinux
added 2026/03/13 8:40 p.m.5 views

CVE-2026-3085

GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.8CVSS6.4AI score0.00828EPSS
Exploits0References21
alpinelinux
alpinelinux
added 2026/03/13 8:39 p.m.3 views

CVE-2026-3082

GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.4AI score0.00787EPSS
Exploits0References20
alpinelinux
alpinelinux
added 2026/03/13 8:39 p.m.1 views

CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.4AI score0.00425EPSS
Exploits0References5
alpinelinux
alpinelinux
added 2026/03/13 8:39 p.m.2 views

CVE-2026-2923

GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependi...

7.8CVSS6.3AI score0.00729EPSS
Exploits0References12
alpinelinux
alpinelinux
added 2026/03/13 8:38 p.m.4 views

CVE-2026-2922

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00431EPSS
Exploits0References11
alpinelinux
alpinelinux
added 2026/03/13 8:38 p.m.4 views

CVE-2026-2920

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.4AI score0.00773EPSS
Exploits0References12
alpinelinux
alpinelinux
added 2026/03/13 7:38 p.m.4 views

CVE-2026-31899

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to Kozea/CairoSVG has exponential denial of service via recursive element amplification in cairosvg/defs.py. This causes CPU exhaustion from a small input...

7.5CVSS5.4AI score0.0049EPSS
Exploits2
alpinelinux
alpinelinux
added 2026/03/13 5:42 p.m.4 views

CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

9.1CVSS5.8AI score0.00285EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:40 p.m.1 views

CVE-2026-31806

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, the gdisurfacebits function processes SURFACEBITSCOMMAND messages sent by the RDP server. When the command is handled using NSCodec, the bmp.width and bmp.height values provided by the server are not properly...

9.8CVSS6.3AI score0.00656EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:38 p.m.4 views

CVE-2026-31885

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in MS-ADPCM and IMA-ADPCM decoders due to unchecked predictor and stepindex values from input data. This vulnerability is fixed in 3.24.0...

9.4CVSS5.8AI score0.00263EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:36 p.m.3 views

CVE-2026-31884

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % blocksize where blocksize = context-common.format.nBlockAlign...

7.5CVSS5.8AI score0.00303EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:35 p.m.4 views

CVE-2026-31883

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

9.8CVSS5.8AI score0.00317EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:33 p.m.3 views

CVE-2026-29776

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in updatereadcachebitmaporder Function of FreeRDP's Core Library This vulnerability is fixed in 3.24.0...

3.1CVSS5.8AI score0.00175EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/03/13 5:28 p.m.4 views

CVE-2026-29775

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP's bitmap cache subsystem due to an off-by-one boundary check in bitmapcacheput. A malicious server can send a CACHEBITMAPORDER Rev1 with cacheId equal to...

8.2CVSS5.8AI score0.00309EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:26 p.m.3 views

CVE-2026-29774

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the FreeRDP client's AVC420/AVC444 YUV-to-RGB conversion path due to missing horizontal bounds validation of H.264 metablock regionRects coordinates. In yuv.c, the clamp...

8.2CVSS6AI score0.00323EPSS
Exploits1
alpinelinux
alpinelinux
added 2026/03/13 5:19 p.m.4 views

CVE-2026-29079

Lexbor is a web browser engine library. Prior to 2.7.0, a type‑confusion vulnerability exists in Lexbor’s HTML fragment parser. When ns = UNDEF, a comment is created using the “unknown element” constructor. The comment’s data are written into the element’s fields via an unsafe cast, corrupting th...

8.2CVSS5.8AI score0.00263EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2026/03/13 5:18 p.m.4 views

CVE-2026-29078

Lexbor is a web browser engine library. Prior to 2.7.0, the ISO‑2022‑JP encoder in Lexbor fails to reset the temporary size variable between iterations. The statement ctx-bufferused -= size with a stale size = 3 causes an integer underflow that wraps to SIZEMAX. Afterwards, memcpy is called with ...

8.2CVSS5.8AI score0.00269EPSS
Exploits0References1
Total number of security vulnerabilities13033