Lucene search
+L
AlpinelinuxRecent

13033 matches found

alpinelinux
alpinelinux
•added 2026/03/09 9:38 p.m.•1 views

CVE-2026-28688

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

5.3CVSS5.7AI score0.00193EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/09 9:37 p.m.•1 views

CVE-2026-28687

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. This vulnerabilit...

5.3CVSS5.8AI score0.00243EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/09 9:33 p.m.•3 views

CVE-2026-28686

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1.2-16 and 6.9.13-...

6.8CVSS6AI score0.00113EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/09 9:31 p.m.•1 views

CVE-2026-28494

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-siz...

7.1CVSS6.1AI score0.00108EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/09 9:29 p.m.•7 views

CVE-2026-28493

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerabili...

6.5CVSS5.8AI score0.00194EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/09 9:11 p.m.•3 views

CVE-2026-31802

node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar npm can be tricked into creating a symlink that points outside the extraction directory by using a drive-relative symlink target such as C:../../../target.txt, which enables file overwrite outside cwd during normal tar.x...

8.2CVSS5.8AI score0.00253EPSS
Exploits4References2
alpinelinux
alpinelinux
•added 2026/03/09 12:0 a.m.•7 views

CVE-2025-69648

GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF .debugrnglists data. A logic flaw in the DWARF parsing path causes readelf to repeatedly print the same warning message without making forward progress, resulting in a...

6.2CVSS6.2AI score0.00176EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/09 12:0 a.m.•7 views

CVE-2025-69647

GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause readelf to repeatedly print the same table output without making forward progress, resulting in an...

6.2CVSS5.9AI score0.00152EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/08 10:32 a.m.•2 views

CVE-2026-3731

A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftpextensionsgetname/sftpextensionsgetdata of the file src/sftp.c of the component SFTP Extension Name Handler. Executing a manipulation of the argument idx can lead to out-of-bounds read. The attack may ...

7.5CVSS5.5AI score0.00631EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/03/07 4:28 p.m.•5 views

CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS5.7AI score0.00249EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/07 4:28 p.m.•2 views

CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

7.5CVSS5.7AI score0.00401EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/07 3:32 p.m.•4 views

CVE-2026-29786

node-tar is a full-featured Tar for Node.js. Prior to version 7.5.10, tar can be tricked into creating a hardlink that points outside the extraction directory by using a drive-relative link target such as C:../target.txt, which enables file overwrite outside cwd during normal tar.x extraction. Th...

8.2CVSS5.7AI score0.00408EPSS
Exploits2References2
alpinelinux
alpinelinux
•added 2026/03/07 8:10 a.m.•10 views

CVE-2026-2219

It was discovered that dpkg-deb a component of dpkg, the Debian package management system does not properly validate the end of the data stream when uncompressing a zstd-compressed .deb archive, which may result in denial of service infinite loop spinning the CPU...

7.5CVSS5.8AI score0.00418EPSS
Exploits0References2
alpinelinux
alpinelinux
•added 2026/03/06 9:28 p.m.•2 views

CVE-2026-27142

Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...

6.1CVSS5.7AI score0.00328EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 9:28 p.m.•4 views

CVE-2026-27139

On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which the File was opened. The impact of this escape is limited to reading metadata provided by lstat from arbitrary locations on the...

2.5CVSS5.9AI score0.00201EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 9:28 p.m.•6 views

CVE-2026-27138

Certificate verification can panic when a certificate in the chain has an empty DNS name and another certificate in the chain has excluded name constraints. This can crash programs that are either directly verifying X.509 certificate chains, or those that use TLS...

5.9CVSS5.8AI score0.0035EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 9:28 p.m.•3 views

CVE-2026-25679

url.Parse insufficiently validated the host/authority component and accepted some invalid URLs...

7.5CVSS5.8AI score0.0052EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 9:28 p.m.•2 views

CVE-2026-27137

When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered...

7.5CVSS5.8AI score0.00606EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 9:10 p.m.•4 views

CVE-2026-30231

Flare is a Next.js-based, self-hostable file sharing platform that integrates with screenshot tools. Prior to version 1.7.2, the raw and direct file routes only block unauthenticated users from accessing private files. Any authenticated, non‑owner user who knows the file URL can retrieve the...

6CVSS5.7AI score0.00283EPSS
Exploits1References1
alpinelinux
alpinelinux
•added 2026/03/06 9:9 p.m.•6 views

CVE-2026-30230

Flare is a Next.js-based, self-hostable file sharing platform that integrates with screenshot tools. Prior to version 1.7.2, the thumbnail endpoint does not validate the password for password‑protected files. It checks ownership/admin for private files but skips password verification, allowing...

8.2CVSS5.7AI score0.00376EPSS
Exploits1References1
alpinelinux
alpinelinux
•added 2026/03/06 3:36 p.m.•4 views

CVE-2026-26017

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a logical vulnerability in CoreDNS allows DNS access controls to be bypassed due to the default execution order of plugins. Security plugins such as acl are evaluated before the rewrite plugin, resulting in a Time-of-Check...

7.7CVSS5.8AI score0.00385EPSS
Exploits0References8
alpinelinux
alpinelinux
•added 2026/03/06 3:35 p.m.•3 views

CVE-2026-26018

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a denial of service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable...

7.5CVSS5.7AI score0.01093EPSS
Exploits1References8
alpinelinux
alpinelinux
•added 2026/03/06 6:36 a.m.•7 views

CVE-2026-28799

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap use-after-free vulnerability exists in PJSIP's event subscription framework evsub.c that is triggered during presence unsubscription SUBSCRIBE with Expires=0. This issue has been patched i...

8.7CVSS5.4AI score0.00285EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 6:36 a.m.•9 views

CVE-2026-29068

PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, there is a stack buffer overflow vulnerability when pjmedia-codec parses an RTP payload contain more frames than the caller-provided frames can hold. This issue has been patched in version 2.17...

8.7CVSS5.7AI score0.00314EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•6 views

CVE-2025-69644

An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling of DWARF location list headers can cause objdump to enter an unbounded loop and produce endless...

5CVSS5.8AI score0.00126EPSS
Exploits0References2
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•3 views

CVE-2025-69649

GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. During relocation processing, an invalid or null section pointer may be passed into displayrelocations, resulting in a segmentation fault SIGSEGV and...

7.5CVSS5.8AI score0.00256EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•4 views

CVE-2025-69650

GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT relocation handling, dumprelocations may return early without initializing the allrelocations array. As a result, processgotsectioncontents may pass ...

7.5CVSS6.2AI score0.00502EPSS
Exploits1References5
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•4 views

CVE-2025-69651

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...

5.5CVSS6.1AI score0.0024EPSS
Exploits1References5
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•5 views

CVE-2025-69652

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort SIGABRT when processing a crafted ELF binary with malformed DWARF abbrev or debug information. Due to incomplete state cleanup in processdebuginfo, an invalid debuginfop state may propagate into DWARF attribute parsing...

6.2CVSS6.1AI score0.00173EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•8 views

CVE-2025-69645

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offsetsize value being used inside bytegetlittleendian, leading to an abort SIGABR...

5.5CVSS5.8AI score0.00166EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/06 12:0 a.m.•9 views

CVE-2025-69646

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debugrnglists data. A logic error in the handling of the debugrnglists header can cause objdump to repeatedly print the same warning message and fail to terminate, resulting in an...

5.5CVSS5.8AI score0.00155EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/05 4:18 p.m.•1 views

CVE-2026-29054

Traefik is an HTTP reverse proxy and load balancer. From version 2.11.9 to 2.11.37 and from version 3.1.3 to 3.6.8, there is a potential vulnerability in Traefik managing the Connection header with X-Forwarded headers. When Traefik processes HTTP/1.1 requests, the protection put in place to preve...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/03/05 4:15 p.m.•3 views

CVE-2026-26999

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.38 and 3.6.9, there is a potential vulnerability in Traefik managing TLS handshake on TCP routers. When Traefik processes a TLS connection on a TCP router, the read deadline used to bound protocol sniffing is cleared befor...

7.5CVSS5.8AI score0.00539EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/03/05 4:15 p.m.•5 views

CVE-2026-26998

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.38 and 3.6.9, there is a potential vulnerability in Traefik managing the ForwardAuth middleware responses. When Traefik is configured to use the ForwardAuth middleware, the response body from the authentication server is...

4.4CVSS5.8AI score0.00451EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/03/05 1:28 a.m.•6 views

CVE-2026-3381

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

9.8CVSS5.8AI score0.00548EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/03/05 12:0 a.m.•3 views

CVE-2025-69534

Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser.HTMLParser to raise an unhandled AssertionError during Markdown parsing. Because Python-Markdown does not catch this exception, any application that processes attacker-controlled Markdown...

8.2CVSS5.8AI score0.00566EPSS
Exploits1References20
alpinelinux
alpinelinux
•added 2026/03/04 10:10 p.m.•8 views

CVE-2026-2297

The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...

5.7CVSS5.4AI score0.00202EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 9:53 p.m.•3 views

CVE-2025-68467

Dark Reader is an accessibility browser extension that makes web pages colors dark. The dynamic dark mode feature of the extension works by analyzing the colors of web pages found in CSS style sheet files. In order to analyze cross-origin style sheets stored on websites different from the origina...

3.4CVSS5.7AI score0.00108EPSS
Exploits0References1
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•4 views

CVE-2026-3545

Insufficient data validation in Navigation in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS6AI score0.00263EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•4 views

CVE-2026-3543

Inappropriate implementation in V8 in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00289EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•15 views

CVE-2026-3544

Heap buffer overflow in WebCodecs in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.1AI score0.00313EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•8 views

CVE-2026-3542

Inappropriate implementation in WebAssembly in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00306EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•6 views

CVE-2026-3541

Inappropriate implementation in CSS in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00258EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•3 views

CVE-2026-3540

Inappropriate implementation in WebAudio in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.003EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•8 views

CVE-2026-3538

Integer overflow in Skia in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6AI score0.00497EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•9 views

CVE-2026-3539

Rejected reason: Determined a bug and not a vulnerability...

7.8AI score0.00271EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•8 views

CVE-2026-3536

Integer overflow in ANGLE in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6AI score0.00458EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 7:24 p.m.•5 views

CVE-2026-3537

Object lifecycle issue in PowerVR in Google Chrome on Android prior to 145.0.7632.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6AI score0.00377EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 5:17 p.m.•8 views

CVE-2026-20031

A vulnerability in the HTML Cascading Style Sheets CSS module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit th...

5.3CVSS5.8AI score0.00414EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/04 12:0 a.m.•4 views

CVE-2026-26514

An Argument Injection vulnerability exists in bird-lg-go before commit 6187a4e. The traceroute module uses shlex.Split to parse user input without validation, allowing remote attackers to inject arbitrary flags e.g., -w, -q via the q parameter. This can be exploited to cause a Denial of Service D...

7.5CVSS6.1AI score0.00388EPSS
Exploits1References2
Total number of security vulnerabilities13033