Lucene search
K
RedhatRecent

116766 matches found

RedHat Linux
RedHat Linux
•added 2026/04/23 7:18 a.m.•6 views

freerdp: FreeRDP: Denial of Service via FastGlyph parsing buffer overflow

A flaw was found in FreeRDP. A malicious server can exploit a vulnerability in FastGlyph parsing, which improperly trusts data length without sufficient validation. This can lead to a client-side global buffer overflow, resulting in a denial of service DoS due to a crash. For this vulnerability t...

7.5CVSS5.8AI score0.00481EPSS
Exploits1References10
RedHat Linux
RedHat Linux
•added 2026/04/23 7:18 a.m.•6 views

freerdp: FreeRDP heap-use-after-free

A heap use after free flaw has been discovered in FreeRDP. A race in the serial channel IRP thread tracking allows a heap use‑after‑free when one thread removes an entry from serial-IrpThreads while another reads it...

8.1CVSS5.7AI score0.00286EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/04/23 7:18 a.m.•8 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS5.9AI score0.00453EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/04/23 7:18 a.m.•9 views

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

9.8CVSS6.5AI score0.00656EPSS
Exploits5References12
RedHat Linux
RedHat Linux
•added 2026/04/23 6:29 a.m.•9 views

Important: Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.20.4

The 1.20.4 GA release of Red Hat OpenShift Pipelines Operator.. For more details see product documentation. The 1.20.4 release of Red Hat OpenShift Pipelines Operator...

9.6CVSS6.3AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/04/23 6:6 a.m.•11 views

Important: Red Hat Security Advisory: Red Hat Update Infrastructure 5.1 security update

The latest release of Red Hat Update Infrastructure. For more details, see the product documentation. Red Hat Update Infrastructure RHUI container images are based on the latest RHUI RPM packages and the ubi9 or ubi9-init base images. This release updates to the latest version...

9.8CVSS6.9AI score0.21621EPSS
Exploits1References20
RedHat Linux
RedHat Linux
•added 2026/04/23 5:0 a.m.•10 views

Important: Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.20.4

The 1.20.4 GA release of Red Hat OpenShift Pipelines Operator.. For more details see product documentation. The 1.20.4 release of Red Hat OpenShift Pipelines Operator...

9.6CVSS5.7AI score0.00573EPSS
Exploits0References4
RedHat Linux
RedHat Linux
•added 2026/04/22 9:54 p.m.•17 views

minimatch: minimatch: Denial of Service via specially crafted glob patterns

A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service ReDoS vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking i...

8.7CVSS5.7AI score0.00519EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/04/22 9:54 p.m.•12 views

minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and...

7.5CVSS5.8AI score0.00472EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/04/22 9:54 p.m.•73 views

Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header

A flaw was found in Node.js. A remote attacker can exploit this vulnerability by sending a specially crafted HTTP request that includes a header named proto. When a Node.js application processes this request and attempts to access distinct headers, it encounters an unhandled error, leading to an...

7.5CVSS5.8AI score0.26356EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 9:54 p.m.•9 views

nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination

A flaw was found in nghttp2. Due to missing internal state validation, the library continues to process incoming data even after a session has been terminated. A remote attacker could exploit this by sending a specially crafted HTTP/2 frame, leading to an assertion failure and a denial of service...

7.5CVSS5.7AI score0.00775EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/04/22 9:54 p.m.•18 views

Important: Red Hat Security Advisory: nodejs:20 security update

An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.7CVSS5.8AI score0.26356EPSS
Exploits2References5
RedHat Linux
RedHat Linux
•added 2026/04/22 9:3 p.m.•8 views

Important: Red Hat Security Advisory: DevWorkspace Operator 0.40.1 release.

DevWorkspace Operator 0.40.1 has been released. The DevWorkspace Operator extends OpenShift to provide DevWorkspace support...

9.1CVSS5.7AI score0.01557EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•7 views

kernel: Linux kernel (qla2xxx): Double free vulnerability leads to denial of service and potential privilege escalation.

A flaw was found in the Linux kernel's qla2xxx block SCSI generic bsg interface. This vulnerability, a double free, occurs because certain vendor-specific handlers incorrectly call the bsgjobdone function on both successful and failed operation paths. A local user could exploit this to trigger...

7.8CVSS5.7AI score0.00194EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•9 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•10 views

kernel: Linux kernel: RDMA/rxe use-after-free vulnerability leading to potential arbitrary code execution

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA subsystem, specifically within the rxe component. This use-after-free vulnerability occurs in the rxecreatecq function. When the rxecqfrominit function fails, the subsequent call to rxecleanup attempts to free memory resource...

7.8CVSS7.2AI score0.00179EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•7 views

kernel: iavf: Fix reset error handling

A deadlock condition exists in the linux kernel such that when calling iavfclose in iavfresettask error handling,doing so can lead to double call of napidisable thereby leading to a denial of service due to the deadlock...

5.5CVSS6.4AI score0.0012EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•9 views

kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()

A flaw was found in the Linux kernel. A local attacker with CAPNETADMIN capabilities, or remote packet traffic, could exploit a use-after-free vulnerability in the nftablesaddchain function's error handling. Successful exploitation could lead to a kernel crash, resulting in a Denial of Service Do...

7.8CVSS5.7AI score0.00812EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•9 views

kernel: RDMA/rxe: Fix incomplete state save in rxe_requester

An incorrect state restoration flaw was found in the Linux kernel's RDMA rxe soft-RoCE driver in the requester packet transmission logic. A local user with access to RDMA devices can trigger this issue when network layer packet drops occur during RDMA send operations, causing the work queue eleme...

5.5CVSS6.3AI score0.00146EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•8 views

kernel: net/sched: cls_u32: use skb_header_pointer_careful()

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...

7.1CVSS5.6AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•36 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS6.9AI score0.00812EPSS
Exploits1References10
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•12 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()

A use-after-free flaw was found in the Linux kernel's iSCSI target subsystem. In the iscsitdecconnusagecount function, complete is called while still holding the conn-connusagelock spinlock. The waiting thread such as iscsitcloseconnection may wake up immediately and free the iscsitconn structure...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 8:47 p.m.•20 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count()

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsitdecsessionusagecount In iscsitdecsessionusagecount, the function calls complete while holding the sess-sessionusagelock. Similar to the connection usage count logic, the waiter...

8.8CVSS5.5AI score0.0024EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:54 p.m.•17 views

Important: Red Hat Security Advisory: multicluster engine for Kubernetes v2.6.10 security update

The multicluster engine for Kubernetes 2.6 General Availability release images, which add new features and enhancements, bug fixes, and updated container images. The multicluster engine for Kubernetes v2.6 images The multicluster engine for Kubernetes provides the foundational components that are...

10CVSS7.1AI score0.025EPSS
Exploits5References8
RedHat Linux
RedHat Linux
•added 2026/04/22 5:52 p.m.•13 views

kernel: net/sched: cls_u32: use skb_header_pointer_careful()

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...

7.1CVSS5.6AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:52 p.m.•7 views

kernel: macvlan: fix possible UAF in macvlan_forward_source()

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlanforwardsource Add RCU protection on struct macvlansourceentry-vlan. Whenever macvlanhashdelsource is called, we must clear entry-vlan pointer before RCU grace period starts. This allows...

7.8CVSS5.6AI score0.00188EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:52 p.m.•9 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS5.7AI score0.00812EPSS
Exploits1References4
RedHat Linux
RedHat Linux
•added 2026/04/22 5:52 p.m.•10 views

kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()

A flaw was found in the Linux kernel. A local attacker with CAPNETADMIN capabilities, or remote packet traffic, could exploit a use-after-free vulnerability in the nftablesaddchain function's error handling. Successful exploitation could lead to a kernel crash, resulting in a Denial of Service Do...

7.8CVSS5.7AI score0.00812EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•10 views

freetype: Information disclosure or denial of service via specially crafted font files

A flaw was found in Freetype. An integer overflow vulnerability exists when processing specially crafted OpenType variable fonts. A local attacker could exploit this by convincing a user to open a malicious font file, which may lead to an out-of-bounds read and potential information disclosure or...

5.3CVSS7.2AI score0.00141EPSS
Exploits0References8
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•18 views

openjdk: Enhance Zip file reading (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK:...

3.7CVSS7.3AI score0.00269EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•5 views

openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0....

2.9CVSS7.4AI score0.00124EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•4 views

openjdk: Enhance TLS connection handling (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 and 21.0.10;...

7.5CVSS7.3AI score0.00635EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•6 views

openjdk: Enhance key generation (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0....

2.9CVSS7.4AI score0.00122EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•46 views

openjdk: Enhance certificate chain validation (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

5.3CVSS7.4AI score0.00305EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•6 views

openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

7.5CVSS7.3AI score0.00702EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•6 views

openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JGSS. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

5.3CVSS7.4AI score0.0028EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•9 views

openjdk: Improved Arena allocations (Oracle CPU 2026-04)

Vulnerability in Oracle Java SE component: Libraries. The supported version that is affected is Oracle Java SE: 25.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this...

3.7CVSS7.3AI score0.00206EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•6 views

Important: Red Hat Security Advisory: java-25-openjdk security update

An update for java-25-openjdk is now available for Red Hat Enterprise Linux 9 and Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.2CVSS6.5AI score0.01052EPSS
Exploits2References1
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•7 views

libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion

A flaw was found in libpng. A remote attacker could exploit an out-of-bounds read and write vulnerability in the ARM/AArch64 Neon-optimized palette expansion path. This occurs when processing a final partial chunk of 8-bit paletted rows without verifying sufficient input pixels, leading to...

7.6CVSS5.9AI score0.00585EPSS
Exploits0References7
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•5 views

libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

A flaw was found in libpng, a library used for processing PNG Portable Network Graphics image files. This vulnerability arises from improper memory management where a heap-allocated buffer is aliased between internal data structures. When specific functions are called, a freed memory region can...

7.5CVSS6.5AI score0.01052EPSS
Exploits1References10
RedHat Linux
RedHat Linux
•added 2026/04/22 5:51 p.m.•13 views

giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension

A flaw was found in giflib. A remote attacker can exploit a buffer overflow vulnerability in the EGifGCBToExtension function by providing a specially crafted Graphics Control Extension GCE block. This allows overwriting an existing GCE block without proper size validation, leading to a denial of...

8.2CVSS6.1AI score0.00618EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:42 p.m.•24 views

kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()

A flaw was found in the Linux kernel. A local attacker with CAPNETADMIN capabilities, or remote packet traffic, could exploit a use-after-free vulnerability in the nftablesaddchain function's error handling. Successful exploitation could lead to a kernel crash, resulting in a Denial of Service Do...

7.8CVSS5.7AI score0.00812EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:42 p.m.•10 views

kernel: macvlan: fix possible UAF in macvlan_forward_source()

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlanforwardsource Add RCU protection on struct macvlansourceentry-vlan. Whenever macvlanhashdelsource is called, we must clear entry-vlan pointer before RCU grace period starts. This allows...

7.8CVSS5.6AI score0.00188EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:42 p.m.•16 views

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS5.8AI score0.00812EPSS
Exploits1References4
RedHat Linux
RedHat Linux
•added 2026/04/22 5:42 p.m.•7 views

kernel: net/sched: cls_u32: use skb_header_pointer_careful()

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...

7.1CVSS5.6AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:32 p.m.•7 views

Important: Red Hat Security Advisory: Insights proxy Container Image

Initial GA Release of Red Hat Insights proxy The Insights proxy Container is used by the Insights proxy product RPM and serves as an intermediary between cystomer systems in disconnected networks, air-gapped systems or systems with no outside connections and Insights. The Insights proxy routes al...

9.8CVSS6.7AI score0.01162EPSS
Exploits1References9
RedHat Linux
RedHat Linux
•added 2026/04/22 5:32 p.m.•16 views

openjdk: Enhance key generation (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0....

2.9CVSS7.4AI score0.00122EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:32 p.m.•11 views

openjdk: Enhance certificate chain validation (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

5.3CVSS7.4AI score0.00305EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:32 p.m.•10 views

openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0....

2.9CVSS7.4AI score0.00124EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/04/22 5:32 p.m.•11 views

freetype: Information disclosure or denial of service via specially crafted font files

A flaw was found in Freetype. An integer overflow vulnerability exists when processing specially crafted OpenType variable fonts. A local attacker could exploit this by convincing a user to open a malicious font file, which may lead to an out-of-bounds read and potential information disclosure or...

5.3CVSS7.2AI score0.00141EPSS
Exploits0References8
Total number of security vulnerabilities116766