8244 matches found
ROS-20260403-73-0028
A vulnerability in the blocklayout/extenttree.c component of the Linux kernel is related to access to an uninitialized pointer. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260401-73-0009
A vulnerability in the pngimagereaddirectscaled function of the libpng library is related to reading data outside of buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information or cause denial of service...
ROS-20260401-73-0047
Vulnerability in cflow related to incorrect resource cleanup or release. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260324-73-0037
A vulnerability in the net/mlx5 component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0026
A vulnerability in the eventpoll component of the Linux kernel is related to uncontrolled recursion. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0027
A vulnerability in the net/packet/afpacket.c component of the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0034
A vulnerability in the davinci component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260324-73-0020
A vulnerability in the wifi component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260324-73-0007
A vulnerability in the pptp component of the Linux operating system kernel is related to errors in variable initialization. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260324-73-0014
A vulnerability in the ipv6 component of the Linux operating system kernel is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260323-73-0031
A vulnerability in the ksmbdsmb2checkmessage function of the fs/smb/server/smb2misc.c module of the Linux kernel SMB server support is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260323-73-0026
A vulnerability in the mcast component of the Linux operating system kernel is related to resource release errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260313-73-0014
A vulnerability in the putunusedfd function of the Linux operating system kernel is related to the failure to free memory after an effective lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260313-73-0030
A vulnerability in the toatmarpd function of the Linux kernel is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260313-73-0002
A vulnerability in the objevent function of the Linux kernel is related to a pointer dereferencing error. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260313-73-0005
A vulnerability in the pnfsupdatelayout function of the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260310-73-0012
A vulnerability in the Network service of Google Chrome browser is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...
ROS-20260304-73-0011
A vulnerability in the nfsetpipapoavx2 function of the Linux kernel is associated with a possible memory leak. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality of protected information...
ROS-20260224-73-0014
Vulnerability in moodle related to information disclosure during data transfer. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...
ROS-20260216-73-0042
A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause...
ROS-20260216-73-0039
A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause...
ROS-20260216-73-0033
A vulnerability in the Networking component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access ...
ROS-20260216-73-0034
A vulnerability in the Networking component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access ...
ROS-20260216-73-0026
A vulnerability in the JavaFX component of the Oracle Java SE software platform is related to an operation exceeding buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read, modify, or delete data...
ROS-20260216-73-0016
Vulnerability in gpac related to incorrect resource cleanup or release. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260209-73-0023
A vulnerability in the Zlib protocol implementation of the MongoDB database management system is related to improper handling of a length parameter mismatch. Exploitation of the vulnerability could allow a remote attacker to disclose protected information...
ROS-20260209-73-0033
A vulnerability in the JWE, JWS, JWT go-jose standards suite implementation package for the Go programming language is related to incorrect processing of highly compressed input data. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260205-73-0028
A vulnerability in the crypto, lzo modules of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability may allow an attacker to violate data integrity and also cause a denial of service...
ROS-20260202-73-0053
A vulnerability in the p9clientwrite function of the 9p/net component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260129-73-0046
Vulnerability in nextcloud related to flaws in access to personal information. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...
ROS-20260129-73-0063
The vulnerability in the Go programming language is related to a flaw in the authorization procedure. Exploitation of the vulnerability allows an attacker acting remotely to affect the confidentiality and integrity of protected information...
ROS-20260129-73-0074
A vulnerability in the HTTP/2 protocol implementation is related to the ability to generate a stream of requests within an already established network connection, without opening new network connections and without acknowledging the receipt of packets. Exploitation of the vulnerability could allo...
ROS-20260120-7323
A vulnerability in the drivers/net/caif/caifvirtio.c file of the Linux operating system kernel is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260119-7393
A vulnerability in the pcf85063nvmemread function of the drivers/rtc/rtc-pcf85063.c component of the Linux operating system kernel is related to writing beyond buffer boundaries. Exploitation of the vulnerability may allow an attacker to gain access to sensitive data, violate its integrity, and...
ROS-20260119-7356
A vulnerability in the arpxmitfinish function of the net/ipv4/arp.c module of the Linux kernel IPv4 protocol implementation is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protecte...
ROS-20260114-7322
A vulnerability in the pfifotailenqueue function net/sched/schfifo.c of the Linux operating system kernel is associated with a functionality mismatch according to the specification. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of...
ROS-20251223-7321
A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...
ROS-20251223-7315
Vulnerability in php-symfony4 related to the use of non-canonical url-paths for authorization solutions. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges...
ROS-20251215-7307
A vulnerability in the GNU Wget download manager is related to insufficient server-side request validation. Exploitation of the vulnerability could allow a remote attacker to perform an SSRF, phishing or man-in-the-middle attack...
ROS-20251203-09
A vulnerability in the ProxyCommand component of the OpenSSH cryptographic protection tool is related to the injection of a null byte %00 in the username string. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...
ROS-20251201-02
A vulnerability in the vfsinode.c component of the Linux kernel is related to the use of an uninitialized resource. of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the llcpsock.c component of the Lin...
ROS-20251128-04
Vulnerability of the smb2isvalidoplockbreak function in the fs/smb/client/smb2misc.c module of the SMB client implementation of the Linux kernel is related to the reuse of the previously released SMB protocol client implementation of the Linux kernel is related to the reuse of previously freed...
ROS-20251128-03
A vulnerability in the Vault access control system and Vault enterprise information archiving platform Enterprise is related to authentication bypass using an alternate path or channel in AWS authentication method. AWS authentication method. Exploitation of the vulnerability could allow an attack...
ROS-20251125-08
Apache Tomcat application server vulnerability is related to incorrect resource release. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a denial of service. Apache Tomcat application server vulnerability is associated with failure to take measures to...
ROS-20251125-06
A vulnerability in the Moodle virtual learning environment is related to the disclosure of hidden group names to users, who have permission to create events in the calendar. Exploitation of the vulnerability could allow an attacker, acting remotely, to gain unauthorized access to protected...
ROS-20251106-05
The bfdselfparseehframe function of the GNU Binutils development tool has a vulnerability related to an operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in GNU Binutils software development to...
ROS-20251105-06
The vulnerability of Microsoft .NET Framework, .NET software platforms, and Microsoft Visual Studio software development tool is related to insufficiently strong data encryption. Microsoft Visual Studio software development tool is related to insufficiently strong data encryption. Exploitation...
ROS-20251031-03
A vulnerability in the Apache ActiveMQ software platform is related to the recovery of invalid data in memory data. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code by creating an OpenWire class. arbitrary code by creating a class over the OpenWire protoco...
ROS-20251016-04
Vulnerability of X509VERIFYPARAMadd0policy function of OpenSSL library is related to errors in the procedure of of certificate authentication. Exploitation of the vulnerability could allow an attacker acting remotely to perform a "man-in-the-middle" type of attack. remotely to perform a...
ROS-20250822-23
A vulnerability in the PHP programming language interpreter is related to insufficient null byte checking in the implementation of the fsockopen function when handling hostnames. Exploitation of the vulnerability could allow an attacker acting remotely to perform SSRF attacks A vulnerability in t...