Lucene search
+L
AlpinelinuxRecent

13033 matches found

alpinelinux
alpinelinux
•added 2026/03/03 10:42 p.m.•3 views

CVE-2026-27622

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In CompositeDeepScanLine::readPixels, per-pixel totals are accumulated in vector totalsizes for attacker-controlled large counts across many parts,...

8.4CVSS5.9AI score0.00201EPSS
Exploits2References1
alpinelinux
alpinelinux
•added 2026/03/03 6:12 p.m.•11 views

CVE-2026-3494

In MariaDB server version through 11.8.5, when server audit plugin is enabled with serverauditevents variable configured with QUERYDCL, QUERYDDL, or QUERYDML filtering, if an authenticated database user invokes a SQL statement prefixed with double-hyphen — or hash style comments, the statement is...

5.3CVSS5.8AI score0.00274EPSS
Exploits1References3
alpinelinux
alpinelinux
•added 2026/03/03 2:28 p.m.•8 views

CVE-2026-25674

An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29. Race condition in file-system storage and file-based cache backends in Django allows an attacker to cause file system objects to be created with incorrect permissions via concurrent requests, where one thread's...

3.7CVSS5.9AI score0.00341EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/03 2:28 p.m.•6 views

CVE-2026-25673

An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29. URLField.topython in Django calls urllib.parse.urlsplit, which performs NFKC normalization on Windows that is disproportionately slow for certain Unicode characters, allowing a remote attacker to cause denial o...

7.5CVSS6AI score0.00734EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/03/03 10:46 a.m.•4 views

CVE-2025-59060

Hostname verification bypass issue in Apache Ranger NiFiRegistryClient/NiFiClient is reported in Apache Ranger versions = 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue...

5.3CVSS5.9AI score0.00329EPSS
Exploits0References2
alpinelinux
alpinelinux
•added 2026/03/03 10:44 a.m.•7 views

CVE-2025-59059

Remote Code Execution Vulnerability in NashornScriptEngineCreator is reported in Apache Ranger versions = 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue...

9.8CVSS6AI score0.01244EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/03/02 7:41 p.m.•1 views

CVE-2026-25884

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found. The vulnerability is in the CRW image parser. This issue has been patched in version 0.28.8...

8.1CVSS5.8AI score0.00307EPSS
Exploits1References3
alpinelinux
alpinelinux
•added 2026/03/02 7:40 p.m.•5 views

CVE-2026-27596

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra...

7.5CVSS5.8AI score0.00367EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/03/02 7:40 p.m.•4 views

CVE-2026-27631

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an uncaught exception was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra...

6.9CVSS5.8AI score0.00255EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/03/02 4:9 p.m.•5 views

CVE-2026-23865

An integer overflow in the ttvarloaditemvariationstore function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2...

5.3CVSS7.3AI score0.00141EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 10:8 p.m.•3 views

CVE-2026-28422

Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in buildstlstrhl when rendering a statusline with a multi-byte fill character on a very wide terminal. Version 9.2.0078 patches the issue...

2.2CVSS5.9AI score0.00142EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 10:6 p.m.•4 views

CVE-2026-28421

Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault SEGV exist in Vim's swap file recovery logic. Both are caused by unvalidated fields read from crafted pointer blocks within a swap file. Version 9.2.0077 fixes the issu...

7.8CVSS6AI score0.00177EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 10:4 p.m.•3 views

CVE-2026-28420

Vim is an open source, command line text editor. Prior to version 9.2.0076, a heap-based buffer overflow WRITE and an out-of-bounds READ exist in Vim's terminal emulator when processing maximum combining characters from Unicode supplementary planes. Version 9.2.0076 fixes the issue...

4.4CVSS6.1AI score0.00177EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 10:2 p.m.•4 views

CVE-2026-28419

Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file where a delimiter appears at the start of a line, Vim attempts to read memory immediately preceding...

6.6CVSS6AI score0.00168EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 9:58 p.m.•3 views

CVE-2026-28418

Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file, Vim can be tricked into reading up to 7 bytes beyond the allocated memory boundar...

5.5CVSS6AI score0.0022EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 9:54 p.m.•6 views

CVE-2026-28417

Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a crafted URL e.g., using the scp:// protocol handler, an attacker can execute arbitrary shell command...

7.8CVSS6.1AI score0.01162EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 9:28 p.m.•2 views

CVE-2026-28407

malcontent is software for discovering supply-chain compromises through context, differential analysis, and YARA. Prior to version 1.21.0, malcontent would remove nested archives which failed to extract which could potentially leave malicious content. A better approach is to preserve these archiv...

6.9CVSS7.2AI score0.00222EPSS
Exploits0References3
alpinelinux
alpinelinux
•added 2026/02/27 7:41 p.m.•3 views

CVE-2026-27734

Beszel is a server monitoring platform. Prior to version 0.18.2, the hub's authenticated API endpoints GET /api/beszel/containers/logs and GET /api/beszel/containers/info pass the user-supplied "container" query parameter to the agent without validation. The agent constructs Docker Engine API URL...

6.5CVSS6AI score0.00484EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/27 5:57 p.m.•2 views

CVE-2026-21619

Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...

7.5CVSS5.8AI score0.00576EPSS
Exploits0References6
alpinelinux
alpinelinux
•added 2026/02/27 7:30 a.m.•11 views

CVE-2026-0871

A flaw was found in Keycloak. An administrator with manage-users permission can bypass the "Only administrators can view" setting for unmanaged attributes, allowing them to modify these attributes. This improper access control can lead to unauthorized changes to user profiles, even when the syste...

4.9CVSS5.8AI score0.00307EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/27 3:54 a.m.•4 views

CVE-2026-28364

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization runtime/intern.c enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock function, which performs unbounded memcpy operation...

7.9CVSS6.5AI score0.0021EPSS
Exploits0References2
alpinelinux
alpinelinux
•added 2026/02/26 6:50 p.m.•5 views

CVE-2026-27141

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic...

7.5CVSS7.7AI score0.00501EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/02/25 11:20 p.m.•5 views

CVE-2026-27799

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the DJVU image format handler. The vulnerability occurs due to integer truncation when calculating the stride ro...

4.4CVSS6AI score0.00123EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/02/25 11:18 p.m.•2 views

CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

7.1CVSS6AI score0.00137EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/02/25 9:7 p.m.•5 views

CVE-2026-27951

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function StreamEnsureCapacity can create an endless blocking loop. This may affect all client and server implementations using FreeRDP. For practical exploitation this will only work on 32bit systems whe...

7.5CVSS5.9AI score0.00346EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/02/25 9:5 p.m.•3 views

CVE-2026-27950

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the fix for the heap-use-after-free described in CVE-2026-24680 is incomplete. While the vulnerable execution flow referenced in the advisory exists in the SDL2 implementation, the fix appears to have been...

8.7CVSS6.2AI score0.00427EPSS
Exploits0References4
alpinelinux
alpinelinux
•added 2026/02/25 9:1 p.m.•3 views

CVE-2026-26986

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, railwindowfree dereferences a freed xfAppWindow pointer during HashTableFree cleanup because xfrailwindowcommon calls freeappWindow on title allocation failure without first removing the entry from the...

7.5CVSS6AI score0.00476EPSS
Exploits1References8
alpinelinux
alpinelinux
•added 2026/02/25 8:59 p.m.•4 views

CVE-2026-26965

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE planar decode path, planardecompressplanerle writes into pDstData at nYDst+y nDstStep + 4nXDst + nChannel without verifying that nYDst+nSrcHeight fits in the destination height or that...

8.8CVSS6AI score0.00591EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:47 p.m.•2 views

CVE-2026-26955

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a malicious RDP server can trigger a heap buffer overflow in FreeRDP clients using the GDI surface pipeline e.g., xfreerdp by sending an RDPGFX ClearCodec surface command with an out-of-bounds destination...

8.8CVSS6.1AI score0.00537EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:44 p.m.•6 views

CVE-2026-27015

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in smartcardunpackreadsizealign libfreerdp/utils/smartcardpack.c:1703 allows a malicious RDP server to crash the FreeRDP client via a reachable WINPRASSERT → abort. The crash occurs in...

6.5CVSS5.9AI score0.00256EPSS
Exploits1References2
alpinelinux
alpinelinux
•added 2026/02/25 8:40 p.m.•3 views

CVE-2026-26271

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer overread in freerdpimagecopyfromicondata libfreerdp/codec/color.c can be triggered by crafted RDP Window Icon TSICONINFO data. The bug is reachable over the network when a client processes icon data...

6.9CVSS6.1AI score0.00242EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/02/25 8:38 p.m.•2 views

CVE-2026-25997

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfclipboardformatequal reads freed lastSentFormats memory because xfclipboardformatsfree called from the cliprdr channel thread during auto-reconnect frees the array while the X11 event thread concurrently...

9.8CVSS5.9AI score0.00567EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:36 p.m.•3 views

CVE-2026-25959

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfcliprdrprovidedata passes freed pDstData to XChangeProperty because the cliprdr channel thread calls xfcliprdrserverformatdataresponse which converts and uses the clipboard data without holding any lock,...

9.8CVSS5.9AI score0.00567EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:32 p.m.•5 views

CVE-2026-25955

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer references a freed RDPGFX surface buffer, because gdiDeleteSurface frees surface-data without invalidating the appWindow-image that...

9.8CVSS5.9AI score0.00498EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:30 p.m.•1 views

CVE-2026-25954

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfrailserverlocalmovesize dereferences a freed xfAppWindow pointer because xfrailgetwindow returns an unprotected pointer from the railWindows hash table, and the main thread can concurrently delete the wind...

7.5CVSS5.9AI score0.00486EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:27 p.m.•2 views

CVE-2026-25953

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reads from a freed xfAppWindow because the RDPGFX DVC thread obtains a bare pointer via xfrailgetwindow without any lifetime protection, while the main thread can concurrently...

9.8CVSS5.9AI score0.00587EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:24 p.m.•2 views

CVE-2026-25952

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfSetWindowMinMaxInfo dereferences a freed xfAppWindow pointer because xfrailgetwindow in xfrailserverminmaxinfo returns an unprotected pointer from the railWindows hash table, and the main thread can...

9.8CVSS5.9AI score0.00599EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 8:1 p.m.•2 views

CVE-2026-25942

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfrailserverexecuteresult indexes the global errorcodenames array 7 elements, indices 0–6 with an unchecked execResult-execResult value received from the server, allowing an out-of-bounds read when the serve...

7.5CVSS5.9AI score0.00454EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 7:55 p.m.•3 views

CVE-2026-25941

FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client's RDPGFX channel that allows a malicious RDP server to read uninitialized heap memory...

8.1CVSS6AI score0.00284EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 2:36 p.m.•4 views

CVE-2026-3203

RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service...

7.5CVSS5.5AI score0.00157EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 2:35 p.m.•7 views

CVE-2026-3202

NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service...

7.5CVSS5.5AI score0.00157EPSS
Exploits0
alpinelinux
alpinelinux
•added 2026/02/25 2:35 p.m.•6 views

CVE-2026-3201

USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service...

7.5CVSS5.5AI score0.00184EPSS
Exploits2
alpinelinux
alpinelinux
•added 2026/02/25 12:35 p.m.•3 views

CVE-2026-21725

A time-of-create-to-time-of-use TOCTOU vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so. This requires several very stringent conditions to be met: - The attacker must have admin access to the specific datasource prior to its first deletion...

2.6CVSS5.5AI score0.00175EPSS
Exploits0References1
alpinelinux
alpinelinux
•added 2026/02/25 4:4 a.m.•6 views

CVE-2026-27624

Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied-peer-ip" and/or default loopback restrictions. CVE-2020-26262 addressed bypasses involving "0.0.0.0", "::1" and "::", but IPv4-mapped IPv6 is not...

7.2CVSS7AI score0.00254EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/25 12:0 a.m.•12 views

CVE-2026-22802

This candidate has been reserved by an organization or individual " "that will use it when announcing a new security problem. When the candidate has been " "publicized, the details for this candidate will be provided...

5.2AI score
Exploits0
alpinelinux
alpinelinux
•added 2026/02/24 4:33 p.m.•5 views

CVE-2026-27590

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's FastCGI path splitting logic computes the split index on a lowercased copy of the request path and then uses that byte index to slice the original path. This is unsafe for Unicode because...

9.8CVSS6AI score0.00542EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/24 4:30 p.m.•3 views

CVE-2026-27589

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, the local caddy admin API default listen 127.0.0.1:2019 exposes a state-changing POST /load endpoint that replaces the entire running configuration. When origin enforcement is not enabled enforceorigin not...

8.2CVSS5.4AI score0.00166EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/24 4:28 p.m.•6 views

CVE-2026-27588

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's HTTP host request matcher is documented as case-insensitive, but when configured with a large host list 100 entries it becomes case-sensitive due to an optimized matching path. An attacker can bypass...

9.1CVSS5.6AI score0.0037EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/24 4:26 p.m.•7 views

CVE-2026-27587

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, Caddy's HTTP path request matcher is intended to be case-insensitive, but when the match pattern contains percent-escape sequences %xx it compares against the request's escaped path without lowercasing. An...

9.1CVSS5.5AI score0.0037EPSS
Exploits1
alpinelinux
alpinelinux
•added 2026/02/24 4:8 p.m.•4 views

CVE-2026-27586

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, two swallowed errors in ClientAuthentication.provision cause mTLS client certificate authentication to silently fail open when a CA certificate file is missing, unreadable, or malformed. The server starts...

9.3CVSS5.5AI score0.00267EPSS
Exploits1
Total number of security vulnerabilities13033