21761 matches found
bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
...
Versions of the package ua-parser-js from 0.7.30 and before 0.7.33, from 0.8.1 and before 1.0.33 are vulnerable to Regular Expression Denial of Service (ReDoS) via the trim() function.
...
Verify panics on certificates with an unknown public key algorithm in crypto/x509
...
mptcp: plug races between subflow fail and subflow creation
...
A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.
...
ALSA: usb-audio: Kill timer properly at removal
...
drm/amdgpu: fix use-after-free bug
...
Input: gpio-keys - fix a sleep while atomic with PREEMPT_RT
...
Helm May Panic Due To Incorrect YAML Content
...
github.com/ulikunitz/xz leaks memory when decoding a corrupted multiple LZMA archives
...
NGINX ngx_mail_smtp_module vulnerability
...
drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sink
...
Glib: integer overflow in g_string_maybe_expand() leading to potential buffer overflow in glib gstring
...
Insufficient sanitization of Host header in net/http
...
juliangruber brace-expansion index.js expand redos
...
dm-crypt, dm-verity: disable tasklets
...
PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server
...
Memory exhaustion in multipart form parsing in net/textproto and net/http
...
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c.
...
sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by leveraging the timing difference between responses when a large password is provided.
...
Grub2: fs/ufs: oob write in the heap
...
xen/events: close evtchn after mapping cleanup
...
wifi: iwlwifi: mvm: guard against invalid STA ID on removal
...
PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client
...
fou: remove warn in gue_gro_receive on unsupported protocol
...
Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo).
...
drm/i915: Fix potential context UAFs
...
GNU elfutils eu-readelf readelf.c process_symtab buffer overflow
...
Xbox Certification Bug Copilot Djando Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Xbox allows an unauthorized attacker to disclose information over a network...
Azure Networking Elevation of Privilege Vulnerability
...
Azure Bot Service Elevation of Privilege Vulnerability
...
Azure Entra ID Elevation of Privilege Vulnerability
Azure Entra ID Elevation of Privilege Vulnerability...
Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability
...
PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
...
rds: sysctl: rds_tcp_{rcv,snd}buf: avoid using current->nsproxy
...
btrfs: adjust subpage bit start based on sectorsize
...
jfs: Fix shift-out-of-bounds in dbDiscardAG
...
AIDE improper output neutralization vulnerability
...
Libarchive: heap buffer over read in copy_from_lzss_window() at archive_read_support_format_rar.c
...
GNU Binutils nm nm.c internal_strlen buffer overflow
...
Grub2: fs/hfs+: refcount can be decremented twice
...
iommu/amd: Avoid stack buffer overflow from kernel cmdline
...
Excessive resource consumption in net/http, net/textproto and mime/multipart
...
Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c
...
Comments in display names are incorrectly handled in net/mail
...
vim xxd xxd.c main buffer overflow
...
HDF5 H5Gnode.c H5G__node_cmp3 stack-based overflow
...
Grub2: reader/jpeg: heap oob write during jpeg parsing
...
atm: clip: Fix infinite recursive call of clip_push().
...
HDF5 H5Omtime.c H5O__mtime_new_encode heap-based overflow
...