Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
added 2026/02/16 1:5 a.m.14 views

SUSE CVE-2023-53579

In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix irq domain leak Uwe Kleine-K�nig pointed out we still have one resource leak in the mvebu driver triggered on driver detach. Let's address it with a custom devm action...

5.5CVSS5.8AI score0.00138EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2026/02/16 12:26 a.m.14 views

SUSE CVE-2026-23149

In the Linux kernel, the following vulnerability has been resolved: drm: Do not allow userspace to trigger kernel warnings in drmgemchangehandleioctl Since GEM bo handles are u32 in the uapi and the internal implementation uses idralloc which uses int ranges, passing a new handle larger than INTM...

5.5CVSS5.2AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/04 12:26 a.m.14 views

SUSE CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

6.5CVSS7.9AI score0.00223EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/30 12:26 a.m.14 views

SUSE CVE-2026-22039

Kyverno is a policy engine designed for cloud native platform engineering teams. Versions prior to 1.16.3 and 1.15.3 have a critical authorization boundary bypass in namespaced Kyverno Policy apiCall. The resolved urlPath is executed using the Kyverno admission controller ServiceAccount, with no...

9.9CVSS5.9AI score0.00516EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.14 views

SUSE CVE-2026-23012

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: remove callcontrol in inactive contexts If damoncall is executed against a DAMON context that is not running, the function returns error while keeping the damoncallcontrol object linked to the context's callcontrol...

7.8CVSS5.3AI score0.00151EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/17 12:32 a.m.14 views

SUSE CVE-2025-14273

Mattermost versions 11.1.x = 11.1.0, 11.0.x = 11.0.5, 10.12.x = 10.12.3, 10.11.x = 10.11.7 with the Jira plugin enabled and Mattermost Jira plugin versions =4.4.0 fail to enforce authentication and issue-key path restrictions in the Jira plugin, which allows an unauthenticated attacker who knows ...

8.3CVSS7.1AI score0.00227EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/12/31 12:32 a.m.14 views

SUSE CVE-2022-50786

In the Linux kernel, the following vulnerability has been resolved: media: s5p-mfc: Clear workbit to handle error condition During error on CLOSEINSTANCE command, ctxworkbits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/31 12:32 a.m.14 views

SUSE CVE-2022-50813

In the Linux kernel, the following vulnerability has been resolved: drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only...

6.5AI score0.00233EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/25 1:5 a.m.14 views

SUSE CVE-2022-50697

In the Linux kernel, the following vulnerability has been resolved: mrp: introduce active flags to prevent UAF when applicant uninit The caller of deltimersync must prevent restarting of the timer, If we have no this synchronization, there is a small probability that the cancellation will not be...

7CVSS6.5AI score0.00196EPSS
Exploits0References30
SUSE CVE
SUSE CVE
added 2025/12/25 1:5 a.m.14 views

SUSE CVE-2022-50713

In the Linux kernel, the following vulnerability has been resolved: clk: visconti: Fix memory leak in viscontiregisterpll @pll-ratetable has allocated memory by kmemdup, if clkhwregister fails, it should be freed, otherwise it will cause memory leak issue, this patch fixes it...

6.5AI score0.00198EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/17 12:25 a.m.14 views

SUSE CVE-2025-68203

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.1AI score0.00024EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/12 1:24 a.m.14 views

SUSE CVE-2002-1219

Buffer overflow in named in BIND 4 versions 4.9.10 and earlier, and 8 versions 8.3.3 and earlier, allows remote attackers to execute arbitrary code via a certain DNS server response containing SIG resource records RR...

7.5CVSS8.2AI score0.12322EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/10 12:39 a.m.14 views

SUSE CVE-2022-50632

In the Linux kernel, the following vulnerability has been resolved: drivers: perf: marvellcn10k: Fix hotplug callback leak in tadpmuinit tadpmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path...

5.5CVSS6.5AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.14 views

SUSE CVE-2025-40269

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential overflow of PCM transfer buffer The PCM stream data in USB-audio driver is transferred over USB URB packet buffers, and each packet size is determined dynamically. The packet sizes are limited by so...

5.5CVSS6.8AI score0.00222EPSS
Exploits0References26
SUSE CVE
SUSE CVE
added 2025/11/28 12:22 a.m.14 views

SUSE CVE-2025-64334

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. In versions from 8.0.0 to before 8.0.2, compressed HTTP data can lead to unbounded memory growth during decompression. This issue has been patched in version 8.0.2....

7.5CVSS6.8AI score0.00306EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/01 11:23 p.m.14 views

SUSE CVE-2025-39902

In the Linux kernel, the following vulnerability has been resolved: mm/slub: avoid accessing metadata when pointer is invalid in objecterr objecterr reports details of an object for further debugging, such as the freelist pointer, redzone, etc. However, if the pointer is invalid, attempting to...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/09/08 11:22 p.m.14 views

SUSE CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

5.5CVSS6.5AI score0.00135EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/05/21 12:47 a.m.14 views

SUSE CVE-2025-37920

In the Linux kernel, the following vulnerability has been resolved: xsk: Fix race condition in AFXDP generic RX path Move rxlock from xsksocket to xskbuffpool. Fix synchronization for shared umem mode in generic RX path where multiple sockets share single xskbuffpool. RX queue is exclusive to...

4.5CVSS7.8AI score0.00119EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2025/02/28 2:21 a.m.14 views

SUSE CVE-2025-21760

In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndiscsendskb ndiscsendskb can be called without RTNL or RCU held. Acquire rcureadlock earlier, so that we can use devnetrcu and avoid a potential UAF...

5.5CVSS6.7AI score0.09117EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2025/01/12 12:18 a.m.14 views

SUSE CVE-2024-47143

In the Linux kernel, the following vulnerability has been resolved: dma-debug: fix a possible deadlock on radixlock radixlock shouldn't be held while holding dmahashentryidx.lock otherwise, there's a possible deadlock scenario when dma debug API is called holding rqlock: CPU0 CPU1 CPU2 dmafreeatt...

4.1CVSS7.6AI score0.0017EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2024/12/14 4:13 a.m.14 views

SUSE CVE-2024-12455

unknown...

7AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/10/21 3:47 p.m.14 views

SUSE CVE-2024-47699

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential null-ptr-deref in nilfsbtreeinsert Patch series "nilfs2: fix potential issues with empty b-tree nodes". This series addresses three potential issues with empty b-tree nodes that can occur with corrupted...

5.5CVSS6.7AI score0.00261EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2024/09/07 3:38 a.m.14 views

SUSE CVE-2023-52915

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035i2cmasterxfer In af9035i2cmasterxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally...

5.5CVSS6.3AI score0.00211EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2024/08/18 2:2 a.m.14 views

SUSE CVE-2024-42305

In the Linux kernel, the following vulnerability has been resolved: ext4: check dot and dotdot of dxroot before making dir indexed Syzbot reports a issue as follows: ============================================ BUG: unable to handle page fault for address: ffffed11022e24fe PGD 23ffee067 P4D...

5.5CVSS6.3AI score0.00224EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2024/08/06 2:0 a.m.14 views

SUSE CVE-2024-42095

In the Linux kernel, the following vulnerability has been resolved: serial: 8250omap: Implementation of Errata i2310 As per Errata i23100, Erroneous timeout can be triggered, if this Erroneous interrupt is not cleared then it may leads to storm of interrupts, therefore apply Errata i2310 solution...

5.5CVSS6.4AI score0.0021EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2024/06/13 4:0 a.m.14 views

SUSE CVE-2024-5837

Type Confusion in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.8AI score0.00525EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/05/21 2:2 a.m.14 views

SUSE CVE-2023-52678

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Confirm list is non-empty before utilizing listfirstentry in kfdtopology.c Before using listfirstentry, make sure to check that list is not empty, if list is empty return -ENODATA. Fixes the below:...

5.5CVSS6.3AI score0.00232EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2024/04/20 2:8 a.m.14 views

SUSE CVE-2024-26872

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srptrefreshport. This seems to be because an event handler is registered before the srpt devic...

5.5CVSS6.3AI score0.00235EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/04/15 11:12 p.m.14 views

SUSE CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

9.8CVSS8AI score0.01063EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.14 views

SUSE CVE-2021-45046

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map MDC input data when the logging configuration uses a non-default Pattern Layout with either a Context...

8.1CVSS7.3AI score0.99977EPSS
Exploits40References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.14 views

SUSE CVE-2022-47519

An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211P2PATTROPERCHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger an out-of-bounds write when parsing the channel list attribute from Wi-Fi management frame...

7.8CVSS6.7AI score0.00298EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/30 1:49 a.m.13 views

SUSE CVE-2026-13434

A flaw was found in KubeVirt's network annotation generator. When a tenant creates a VirtualMachineInstance with a Multus network configuration, the supplied networkName value is written verbatim into the launcher pod's v1.multus-cni.io/default-network annotation without format validation or...

4.9CVSS5.9AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/30 1:44 a.m.13 views

SUSE CVE-2026-48706

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.34.0 until 1.35.13, 1.36.9, 1.37.5, and 1.38.3, a vulnerability exists in Envoy's TCP StatsD sink TcpStatsdSink, where the thread-local flusher buffer can be overflowed by exceptionally long statistic...

7.5CVSS6.5AI score0.0061EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/26 2:46 a.m.13 views

SUSE CVE-2023-54365

Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handling inherited from the Go standard library's HTTP/2 implementation CVE-2023-44487 / CVE-2023-39325, the 'Rapid Reset' technique. A remote attacker can rapidly create and cancel HTTP/2...

8.7CVSS5.9AI score0.00562EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/20 2:35 a.m.13 views

SUSE CVE-2026-12044

SQL injection in pgAdmin 4 across every dialog template that renders COMMENT ON ... IS '' for a user-supplied description field. The Jinja templates for Domains and their constraints, Foreign Tables, Languages, and Event Triggers, plus the Views OID-lookup query, interpolated the description...

8.8CVSS5.9AI score0.00489EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/20 2:30 a.m.13 views

SUSE CVE-2026-44663

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, an integer overflow in htundoimpl in src/lib/OpenEXRCore/internalht.cpp leads to a heap-buffer overflow when decoding a crafted...

6.1CVSS5.7AI score0.00199EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/06/20 2:29 a.m.13 views

SUSE CVE-2026-45696

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K High-Throughput JPEG 2000 decoder, htundoimpl in OpenEXRCore is vulnerable to a heap-buffer-overflow READ. The htundoimp...

6.1CVSS5.9AI score0.00263EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/06/20 2:29 a.m.13 views

SUSE CVE-2026-48618

A flaw in Node.js TLS hostname handling can cause Node.js unicode dot separator handling can lead to tls wildcard-depth authentication bypass due to resolver and verifier hostname normalization mismat. This can lead to confidentiality impact or bypass of the intended security boundary under...

7.4CVSS7.1AI score0.00674EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/06/20 2:29 a.m.13 views

SUSE CVE-2026-54273

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, no limit was present on the number of pipelined requests that could be queued. An attacker may be able to use pipelined requests to use excessive amounts of memory, potentially leading to DoS. This...

7.5CVSS5.8AI score0.00279EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/20 2:29 a.m.13 views

SUSE CVE-2026-54275

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, the serverhostname TLS SNI check can be bypassed when an existing connection is reused. If an application makes multiple requests to the same domain, but with different per-request serverhostname...

4.8CVSS5.8AI score0.00266EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/20 2:28 a.m.13 views

SUSE CVE-2026-54530

pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires extracting the text in layout mode. This vulnerability is fixed in 6.13.0...

6.9CVSS5.8AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/17 2:23 a.m.13 views

SUSE CVE-2026-6893

A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by providing specially crafted DHCP Dynamic Host Configuration Protocol options, such as a malicious hostname, to a system using dracut's legacy DHCP path. These options are improperly handled and...

8.8CVSS6AI score0.01131EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2026/06/16 2:23 a.m.13 views

SUSE CVE-2026-9638

Crypt::PBKDF2 versions before 0.261630 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

7.5CVSS5.2AI score0.00305EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/13 2:30 a.m.13 views

SUSE CVE-2025-71330

image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attackers can craft an ICNS buffer containing valid magic bytes and a zero-valued entry length field to...

8.7CVSS5.7AI score0.0043EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/06/13 2:28 a.m.13 views

SUSE CVE-2026-12015

Use after free in Autofill in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.3AI score0.00227EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/13 2:28 a.m.13 views

SUSE CVE-2026-12022

Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS5.4AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/13 2:21 a.m.13 views

SUSE CVE-2026-34182

Issue Summary: Cryptographic Message Services CMS processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedData containers, leading to various potential compromises. Impact Summary: Attackers making use of these vulnerabilities may achieve...

5.9CVSS5.3AI score0.00237EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2026/06/12 2:32 a.m.13 views

SUSE CVE-2026-10118

A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the tilingPatternFill function. This overflow leads to an undersized heap memory allocation, allowing a subsequent...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/12 2:32 a.m.13 views

SUSE CVE-2026-10142

kafka-python prior to 2.3.2 contains a denial-of-service vulnerability in the protocol parser that allows a malicious broker or machine-in-the-middle attacker to exhaust memory or hang connections by sending a crafted 4-byte frame length value without bounds validation. Attackers can send a...

7.5CVSS5.5AI score0.00348EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/12 2:32 a.m.13 views

SUSE CVE-2026-10846

NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as stub resolver over UDP, lacks matching the query destination address and port with the response source address and port. Furthermore not the query ID, neither the question of the query is matched with that of t...

7.5CVSS5.4AI score0.00147EPSS
Exploits0References6
Total number of security vulnerabilities5000