Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
added 2026/05/09 2:39 a.m.14 views

SUSE CVE-2026-43414

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In qla24xxelsdcmdiocb sp-free is set to qla2x00elsdcmdspfree. When an error happens, this function is called by qla2x00sprelease, when krefput releases the first and the last...

5.5CVSS5.8AI score0.0038EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2026/05/08 2:44 a.m.14 views

SUSE CVE-2011-0334

Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent GWIA in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a long HTTP request for a .css file...

10CVSS6.4AI score0.04822EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/08 2:26 a.m.14 views

SUSE CVE-2026-7975

Use after free in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.8AI score0.00206EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/08 2:25 a.m.14 views

SUSE CVE-2026-7979

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00157EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/08 2:25 a.m.14 views

SUSE CVE-2026-7982

Uninitialized Use in WebCodecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00239EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/08 2:25 a.m.14 views

SUSE CVE-2026-8013

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00163EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/08 2:22 a.m.14 views

SUSE CVE-2026-33079

In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS Regular Expression Denial of Service vulnerability in LINKTITLERE that allows an attacker who can supply Markdown for parsing to cause denial of service. The regular expression used for parsing link titles contains overlapping...

7.5CVSS5.8AI score0.00481EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/08 2:19 a.m.14 views

SUSE CVE-2026-43234

In the Linux kernel, the following vulnerability has been resolved: team: avoid NETDEVCHANGEMTU event when unregistering slave syzbot is reporting unregisternetdevice: waiting for netdevsim0 to become free. Usage count = 3 reftracker: netdev@ffff88807dcf8618 has 1/2 users at netdevtrackeralloc...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2026/05/08 2:19 a.m.14 views

SUSE CVE-2026-43282

In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: Fix potential NULL pointer dereference in ionicqueryport The function ionicqueryport calls ibdevicegetnetdev without checking the return value which could lead to NULL pointer dereference, Fix it by checking the retur...

5.7AI score0.00112EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/08 2:19 a.m.14 views

SUSE CVE-2026-44601

Tor before 0.4.9.7, when circuit queue memory pressure exists, can experience a client crash because of a double close of a circuit, aka TROVE-2026-009...

7.5CVSS5.8AI score0.00337EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:21 a.m.14 views

SUSE CVE-2026-31745

In the Linux kernel, the following vulnerability has been resolved: reset: gpio: fix double free in resetaddgpioauxdevice error path When auxiliarydeviceadd fails, resetaddgpioauxdevice calls auxiliarydeviceuninitadev. The device release callback resetgpioauxdevicerelease frees adev, but the...

5.7AI score0.0012EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:19 a.m.14 views

SUSE CVE-2026-43080

In the Linux kernel, the following vulnerability has been resolved: l2tp: Drop large packets with UDP encap syzbot reported a WARN on my patch series 1. The actual issue is an overflow of 16-bit UDP length field, and it exists in the upstream code. My series added a debug WARN with an overflow...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:18 a.m.14 views

SUSE CVE-2026-43088

In the Linux kernel, the following vulnerability has been resolved: net: afkey: zero aligned sockaddr tail in PFKEY exports PFKEY export paths use pfkeysockaddrsize when reserving sockaddr payload space, so IPv6 addresses occupy 32 bytes on the wire. However, pfkeysockaddrfill initializes only th...

3.3CVSS5.9AI score0.00122EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2026/05/07 2:18 a.m.14 views

SUSE CVE-2026-43094

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: add missing negotiatefeatures op to Hyper-V ops table Commit a7075f501bd3 "ixgbevf: fix mailbox API compatibility by negotiating supported features" added the .negotiatefeatures callback to ixgbemacoperations and populat...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:18 a.m.14 views

SUSE CVE-2026-43117

In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock from dentry in event btrfssyncfile If overlay is used on top of btrfs, dentry-dsb translates to overlay's super block and fsid assignment will lead to a crash. Use fileinodefile-isb to...

9.1CVSS5.8AI score0.00399EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/06 1:45 a.m.14 views

SUSE CVE-2026-5766

An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14. ASGI requests with a missing or understated Content-Length header can bypass the FILEUPLOADMAXMEMORYSIZE limit, potentially loading large files into memory and causing service degradation. As a reminder, Django expects a limit to ...

5.3CVSS5.8AI score0.00423EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/05/06 1:43 a.m.14 views

SUSE CVE-2026-31720

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/06 1:43 a.m.14 views

SUSE CVE-2026-31759

In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: fix double free in ulpiregisterinterface error path When deviceregister fails, ulpiregister calls putdevice on ulpi-dev. The device release callback ulpidevrelease drops the OF node reference and frees ulpi, but the...

7.1CVSS5.7AI score0.00129EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2026/05/05 1:48 a.m.14 views

SUSE CVE-2026-7598

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name of the patch is...

7.3CVSS6.9AI score0.00466EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/05 1:46 a.m.14 views

SUSE CVE-2026-31687

In the Linux kernel, the following vulnerability has been resolved: gpio: omap: do not register driver in probe Commit 11a78b794496 "ARM: OMAP: MPUIO wake updates" registers the omapmpuiodriver from omapmpuioinit, which is called from omapgpioprobe. However, it neither makes sense to register...

5.5CVSS5.8AI score0.00096EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.14 views

SUSE CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

4.8CVSS5.8AI score0.00162EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.14 views

SUSE CVE-2026-31704

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use checkaddoverflow to prevent u16 DACL size overflow setposixaclentriesdacl and setntacldacl accumulate ACE sizes in u16 variables. When a file has many POSIX ACL entries, the accumulated size can wrap past 65535, causin...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.14 views

SUSE CVE-2026-31706

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate numaces and harden ACE walk in smbinheritdacl smbinheritdacl trusts the on-disk numaces value from the parent directory's DACL xattr and uses it to size a heap allocation: acesbase = kmallocsizeofstruct smbace...

7CVSS5.9AI score0.00369EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.14 views

SUSE CVE-2026-31709

In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it in cifsacl buildsecdesc and idmodetocifsacl derive a DACL pointer from a server-supplied dacloffset and then use the incoming ACL to rebuild the chmod/chown security...

8.8CVSS5.8AI score0.00259EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.14 views

SUSE CVE-2026-31712

In the Linux kernel, the following vulnerability has been resolved: ksmbd: require minimum ACE size in smbcheckpermdacl Both ACE-walk loops in smbcheckpermdacl only guard against an under-sized remaining buffer, not against an ACE whose declared ace-size is smaller than the struct it claims to...

8.3CVSS5.7AI score0.00315EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/01 2:11 a.m.14 views

SUSE CVE-2026-6521

OpenFlow v5 protocol dissector infinite loops in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00143EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/05/01 2:3 a.m.14 views

SUSE CVE-2026-42014

A flaw was found in GnuTLS. The gnutlspkcs11tokensetpin function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protected authentication path...

4CVSS5.3AI score0.0015EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2026/04/30 2:30 a.m.14 views

SUSE CVE-2026-6253

curl might erroneously pass on credentials for a first proxy to a second proxy. This can happen when the following conditions are true: 1. curl is setup to use specific different proxies for different URL schemes 2. the first proxy needs credentials 3. the second proxy uses no credentials 4. whil...

5.9CVSS5.8AI score0.00639EPSS
Exploits1References11
SUSE CVE
SUSE CVE
added 2026/04/28 11:27 p.m.14 views

SUSE CVE-2026-31786

In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers/xen/sys-hypervisor.c The build id returned by HYPERVISORxenversionXENVERbuildid is neither NUL terminated nor a string. The first causes a buffer overflow as sprintf in buildidshow will read and copy ti...

6.6CVSS5.8AI score0.00197EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/04/24 1:28 a.m.14 views

SUSE CVE-2026-41182

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to version 0.5.19 of the JavaScript SDK and version 0.7.31 of the Python SDK, the LangSmith SDK's output redaction controls hideOutputs in JS, hideoutputs in Python do not apply to streaming token events. When ...

5.3CVSS5.8AI score0.00214EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/24 1:27 a.m.14 views

SUSE CVE-2026-41990

Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data...

4CVSS5.8AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.14 views

SUSE CVE-2026-31431

In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algifaead since the source and destination...

7.8CVSS5.6AI score0.96267EPSS
Exploits228References146
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.14 views

SUSE CVE-2026-31480

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix potential deadlock in cpu hotplug with osnoise The following sequence may leads deadlock in cpu hotplug: task1 task2 task3 ----- ----- ----- mutexlock&interfacelock CPU GOING OFFLINE cpuswritelock; osnoisecpudie;...

4.7CVSS5.6AI score0.00095EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2026/04/20 11:26 p.m.14 views

SUSE CVE-2026-31430

In the Linux kernel, the following vulnerability has been resolved: X.509: Fix out-of-bounds access when parsing extensions Leo reports an out-of-bounds access when parsing a certificate with empty Basic Constraints or Key Usage extension because the first byte of the extension is read before...

5.6AI score0.00081EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/17 11:25 p.m.14 views

SUSE CVE-2026-32203

unknown...

7.5CVSS6.2AI score0.01553EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.14 views

SUSE CVE-2026-23446

In the Linux kernel, the following vulnerability has been resolved: net: usb: aqc111: Do not perform PM inside suspend callback syzbot reports "task hung in rpmresume" This is caused by aqc111suspend calling the PM variant of its writecmd routine. The simplified call trace looks like this:...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2026/04/03 11:24 p.m.14 views

SUSE CVE-2026-34875

An issue was discovered in Mbed TLS through 3.6.5 and TF-PSA-Crypto 1.0.0. A buffer overflow can occur in public key export for FFDH keys...

9.8CVSS6AI score0.00366EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/28 12:28 a.m.14 views

SUSE CVE-2026-27859

A mail message containing excessive amount of RFC 2231 MIME parameters causes LMTP to use too much CPU. A suitably formatted mail message causes mail delivery process to consume large amounts of CPU time. Use MTA capabilities to limit RFC 2231 MIME parameters in mail messages, or upgrade to fixed...

5.3CVSS5.9AI score0.00374EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/03/25 11:53 a.m.14 views

SUSE CVE-2026-4647

A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and executables. The issue occurs when processing specially crafted XCOFF object files, where a relocation type value is not properly validated before being used. This can caus...

6.1CVSS5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/25 11:53 a.m.14 views

SUSE CVE-2026-4701

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

6.3CVSS7.2AI score0.00461EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2026/02/16 1:5 a.m.14 views

SUSE CVE-2023-53579

In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix irq domain leak Uwe Kleine-K�nig pointed out we still have one resource leak in the mvebu driver triggered on driver detach. Let's address it with a custom devm action...

5.5CVSS5.8AI score0.00138EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2026/02/16 12:26 a.m.14 views

SUSE CVE-2026-23149

In the Linux kernel, the following vulnerability has been resolved: drm: Do not allow userspace to trigger kernel warnings in drmgemchangehandleioctl Since GEM bo handles are u32 in the uapi and the internal implementation uses idralloc which uses int ranges, passing a new handle larger than INTM...

5.5CVSS5.2AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/04 12:26 a.m.14 views

SUSE CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

6.5CVSS7.9AI score0.00223EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/30 12:26 a.m.14 views

SUSE CVE-2026-22039

Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have a critical authorization boundary bypass in namespaced Kyverno Policy apiCall. The resolved urlPath is executed using the Kyverno admission controller ServiceAccount, with no...

9.9CVSS5.9AI score0.00516EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.14 views

SUSE CVE-2026-23012

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: remove callcontrol in inactive contexts If damoncall is executed against a DAMON context that is not running, the function returns error while keeping the damoncallcontrol object linked to the context's callcontrol...

7.8CVSS5.3AI score0.00151EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/17 12:32 a.m.14 views

SUSE CVE-2025-14273

Mattermost versions 11.1.x = 11.1.0, 11.0.x = 11.0.5, 10.12.x = 10.12.3, 10.11.x = 10.11.7 with the Jira plugin enabled and Mattermost Jira plugin versions =4.4.0 fail to enforce authentication and issue-key path restrictions in the Jira plugin, which allows an unauthenticated attacker who knows ...

8.3CVSS7.1AI score0.00227EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:28 a.m.14 views

SUSE CVE-2025-11393

A flaw was found in runtimes-inventory-rhel8-operator. An internal proxy component is incorrectly configured. Because of this flaw, the proxy attaches the cluster's main administrative credentials to any command it receives, instead of only the specific reports it is supposed to handle. This allo...

8.7CVSS6.8AI score0.00215EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/12/31 12:32 a.m.14 views

SUSE CVE-2022-50786

In the Linux kernel, the following vulnerability has been resolved: media: s5p-mfc: Clear workbit to handle error condition During error on CLOSEINSTANCE command, ctxworkbits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/31 12:32 a.m.14 views

SUSE CVE-2022-50813

In the Linux kernel, the following vulnerability has been resolved: drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only...

6.5AI score0.00233EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/25 1:5 a.m.14 views

SUSE CVE-2022-50713

In the Linux kernel, the following vulnerability has been resolved: clk: visconti: Fix memory leak in viscontiregisterpll @pll-ratetable has allocated memory by kmemdup, if clkhwregister fails, it should be freed, otherwise it will cause memory leak issue, this patch fixes it...

6.5AI score0.00198EPSS
Exploits0References3
Total number of security vulnerabilities5000