Lucene search
K
SusecveMost viewed

59380 matches found

SUSE CVE
SUSE CVE
•added 2026/05/01 2:11 a.m.•9 views

SUSE CVE-2026-6528

TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service...

5.5CVSS5.3AI score0.00141EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/05/01 2:11 a.m.•9 views

SUSE CVE-2026-6529

iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.00125EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/05/01 2:11 a.m.•9 views

SUSE CVE-2026-6530

DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.0016EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/05/01 2:11 a.m.•9 views

SUSE CVE-2026-6537

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.0018EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/05/01 2:11 a.m.•9 views

SUSE CVE-2026-6538

BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.3AI score0.0018EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/05/01 2:11 a.m.•9 views

SUSE CVE-2026-7111

Text::CSVXS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getlineall methods invoke registered callbacks for example afterparse, beforeprint, or...

8.4CVSS5.6AI score0.00158EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/05/01 2:5 a.m.•9 views

SUSE CVE-2026-31692

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: add missing netlinknscapable check for peer netns rtnlnewlink lacks a CAPNETADMIN capability check on the peer network namespace when creating paired devices veth, vxcan, netkit. This allows an unprivileged user with a...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/01 2:3 a.m.•9 views

SUSE CVE-2026-42010

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest-Shamir-Adleman - Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

7.1CVSS5.8AI score0.0105EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/05/01 2:3 a.m.•9 views

SUSE CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name SAN could cause the validation process to incorrectly fall back to checking the Common Name CN field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to...

6.5CVSS5.8AI score0.00423EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/04/30 2:30 a.m.•9 views

SUSE CVE-2026-6276

Using libcurl, when a custom Host: header is first set for an HTTP request and a second request is subsequently done using the same easy handle but without the custom Host: header set, the second request would use stale information and pass on cookies meant for the first host in the second reques...

3.7CVSS5.8AI score0.00291EPSS
Exploits1References10
SUSE CVE
SUSE CVE
•added 2026/04/30 2:30 a.m.•9 views

SUSE CVE-2026-6357

pip prior to version 26.1 would run self-update check functionality after installing wheel files which required importing well-known Python modules names. These module imports were intentionally deferred to increase startup time of the pip CLI. The patch changes self-update functionality to run...

5.8CVSS5.3AI score0.00138EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/04/30 2:30 a.m.•9 views

SUSE CVE-2026-6429

When asked to both use a .netrc file for credentials and to follow HTTP redirects, libcurl could leak the password used for the first host to the followed-to host under certain circumstances...

5.9CVSS5.8AI score0.00519EPSS
Exploits1References10
SUSE CVE
SUSE CVE
•added 2026/04/30 2:29 a.m.•9 views

SUSE CVE-2026-7321

Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, and Thunderbird 140.10.1...

9.6CVSS5.2AI score0.00258EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/04/30 2:29 a.m.•9 views

SUSE CVE-2026-7324

Memory safety bugs present in Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.1 and Thunderbird 150.0.1...

7.3CVSS6AI score0.003EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/30 2:27 a.m.•9 views

SUSE CVE-2026-23561

unknown...

5.2AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/30 2:27 a.m.•9 views

SUSE CVE-2026-23562

unknown...

5.2AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/30 2:25 a.m.•9 views

SUSE CVE-2026-40686

In Exim before 4.99.2, when utf8 operators are enabled, there is an out-of-bounds read if large UTF-8 trailing characters are present malformed UTF-8 header data. Information might be divulged within an error message produced during handling of an unrelated e-mail message...

5.3CVSS5.8AI score0.00246EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/30 2:25 a.m.•9 views

SUSE CVE-2026-41066

lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to resolveentities='internal' ...

5.9CVSS5.3AI score0.00324EPSS
Exploits1References10
SUSE CVE
SUSE CVE
•added 2026/04/30 2:25 a.m.•9 views

SUSE CVE-2026-41602

Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

7.5CVSS5.3AI score0.01163EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/04/30 2:24 a.m.•9 views

SUSE CVE-2026-41636

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

7.5CVSS5.2AI score0.00469EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/28 11:30 p.m.•9 views

SUSE CVE-2026-23558

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status pages via XENMEMaddtophysmap. Some of the status pages may then be freed while...

7.8CVSS5.8AI score0.00117EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/04/26 1:52 a.m.•9 views

SUSE CVE-2026-31675

In the Linux kernel, the following vulnerability has been resolved: net/sched: schnetem: fix out-of-bounds access in packet corruption In netemenqueue, the packet corruption logic uses getrandomu32belowskbheadlenskb to select an index for modifying skb-data. When an AFPACKET TXRING sends fully...

5.6CVSS5.6AI score0.00126EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/04/26 1:52 a.m.•9 views

SUSE CVE-2026-31679

In the Linux kernel, the following vulnerability has been resolved: openvswitch: validate MPLS set/setmasked payload length validateset accepted OVSKEYATTRMPLS as variable-sized payload for SET/SETMASKED actions. In action handling, OVS expects fixed-size MPLS key data struct ovskeympls. Use the...

6.7CVSS5.4AI score0.00117EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/04/25 1:39 a.m.•9 views

SUSE CVE-2026-31547

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix missing runtime PM reference in ccsmodestore ccsmodestore calls xegtreset which internally invokes xepmruntimegetnoresume. That function requires the caller to already hold an outer runtime PM reference and warns if...

5.5CVSS5.4AI score0.00107EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/04/25 1:39 a.m.•9 views

SUSE CVE-2026-31565

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix deadlock during netdev reset with active connections Resolve deadlock that occurs when user executes netdev reset while RDMA applications e.g., rping are active. The netdev reset causes ice driver to remove irdma...

5.5CVSS5.4AI score0.00095EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/04/25 1:39 a.m.•9 views

SUSE CVE-2026-31568

In the Linux kernel, the following vulnerability has been resolved: s390/mm: Add missing secure storage access fixups for donated memory There are special cases where secure storage access exceptions happen in a kernel context for pages that don't have the PGarch1 bit set. That bit is set for...

5.5CVSS5.5AI score0.00124EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/04/25 1:39 a.m.•9 views

SUSE CVE-2026-31570

In the Linux kernel, the following vulnerability has been resolved: can: gw: fix OOB heap access in cgwcsumcrc8rel cgwcsumcrc8rel correctly computes bounds-safe indices via calcidx: int from = calcidxcrc8-fromidx, cf-len; int to = calcidxcrc8-toidx, cf-len; int res = calcidxcrc8-resultidx, cf-len...

7CVSS5.5AI score0.00262EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2026/04/25 1:39 a.m.•9 views

SUSE CVE-2026-31571

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Unlink NV12 planes earlier unlinknv12plane will clobber parts of the plane state potentially already set up by planeatomiccheck, so we must make sure not to call the two in the wrong order. The problem happens when a...

5.5CVSS5.5AI score0.00121EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:38 a.m.•9 views

SUSE CVE-2026-31583

In the Linux kernel, the following vulnerability has been resolved: media: em28xx: fix use-after-free in em28xxv4l2open em28xxv4l2open reads dev-v4l2 without holding dev-lock, creating a race with em28xxv4l2init's error path and em28xxv4l2fini, both of which free the em28xxv4l2 struct and set...

7CVSS5.5AI score0.00128EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/25 1:38 a.m.•9 views

SUSE CVE-2026-31598

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix possible deadlock between unlink and dioendiowrite ocfs2unlink takes orphan dir inodelock first and then ipallocsem, while in ocfs2dioendiowrite, it acquires these locks in reverse order. This creates an ABBA lock...

7.5CVSS5.5AI score0.00435EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/25 1:38 a.m.•9 views

SUSE CVE-2026-31602

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Limit PTP to a single page Commit 391e69143d0a increased CTPTPNUM from 1 to 4 to support 256 playback streams, but the additional pages are not used by the card correctly. The CT20K2 hardware already has multiple...

7.8CVSS5.5AI score0.00131EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/04/25 1:38 a.m.•9 views

SUSE CVE-2026-31605

In the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: avoid divide-by-zero on FBIOPUTVSCREENINFO Much like commit 19f953e74356 "fbdev: fbpm2fb: Avoid potential divide by zero error", we also need to prevent that same crash from happening in the udlfb driver as it uses...

5.5CVSS5.4AI score0.00125EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•9 views

SUSE CVE-2026-31628

In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operations. Those results can be leaked by another, attacker thread. Fix that with a chicken bit...

4.7CVSS5.4AI score0.00125EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•9 views

SUSE CVE-2026-31634

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix reference count leak in rxrpcserverkeyring This patch fixes a reference count leak in rxrpcserverkeyring by checking if rx-securities is already set...

5.5CVSS5.4AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•9 views

SUSE CVE-2026-31644

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix use-after-free and leak in lan966xfdmareload When lan966xfdmareload fails to allocate new RX buffers, the restore path restarts DMA using old descriptors whose pages were already freed via lan966xfdmarxfreepages...

7CVSS5.5AI score0.00125EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•9 views

SUSE CVE-2026-31645

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966xfdmarxalloc creates a page pool but does not destroy it if the subsequent fdmaalloccoherent call fails, leaking the pool. Similarly, lan966xfdmainit frees the coherent DMA...

3.3CVSS5.4AI score0.00122EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•9 views

SUSE CVE-2026-31668

In the Linux kernel, the following vulnerability has been resolved: seg6: separate dstcache for input and output paths in seg6 lwtunnel The seg6 lwtunnel uses a single dstcache per encap route, shared between seg6inputcore and seg6outputcore. These two paths can perform the post-encap SID lookup ...

4.4CVSS5.4AI score0.00443EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/04/23 1:29 a.m.•9 views

SUSE CVE-2026-5265

When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total length iptotlen for IPv4, ip6plen for IPv6 without validating it against the actual packet buffer size...

7.5CVSS5.6AI score0.00629EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/04/23 1:28 a.m.•9 views

SUSE CVE-2026-6845

A flaw was found in binutils, specifically within the readelf utility. This vulnerability allows a local attacker to cause a Denial of Service DoS by tricking a user into processing a specially crafted Executable and Linkable Format ELF file. The exploitation of this flaw can lead to the system...

5CVSS5.7AI score0.00141EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/23 1:26 a.m.•9 views

SUSE CVE-2026-31433

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...

8.8CVSS5.8AI score0.006EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/23 1:26 a.m.•9 views

SUSE CVE-2026-31441

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxdwqdisablecleanup which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty all its resourc...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/23 1:26 a.m.•9 views

SUSE CVE-2026-31447

In the Linux kernel, the following vulnerability has been resolved: ext4: reject mount if bigalloc with sfirstdatablock != 0 bigalloc with sfirstdatablock != 0 is not supported, reject mounting it...

5.6AI score0.00135EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/23 1:26 a.m.•9 views

SUSE CVE-2026-31448

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical blocks to physical blocks, if inserting a new extent into the extent tree fails in this example, because the file system disabled th...

5.5CVSS5.7AI score0.00433EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31466

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: fix folio isn't locked in softleaftofolio On arm64 server, we found folio that get from migration entry isn't locked in softleaftofolio. This issue triggers when mTHP splitting and zapnonpresentptes races, and the...

4.7CVSS5.6AI score0.00089EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31474

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in isotpsendmsg isotpsendmsg uses only cmpxchg on so-tx.state to serialize access to so-tx.buf. isotprelease waits for ISOTPIDLE via waiteventinterruptible and then calls kfreeso-tx.buf. If a...

5.5CVSS5.6AI score0.00104EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31478

In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 "ksmbd: add support for read compound", response buffer management was changed to use dynamic iov array. In the new design,...

9.8CVSS5.8AI score0.00502EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31479

In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workload, user is reporting hitting: 413.361679 WARNING: drivers/gpu/drm/xe/xevm.c:1217 at vmbindioctlopsunwind+0x1e2/0x2e0 xe, CPU7: vkd3dqueue/9925 413.361944 CPU: 7 UID:...

5.6AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31483

In the Linux kernel, the following vulnerability has been resolved: s390/syscalls: Add spectre boundary for syscall dispatch table The s390 syscall number is directly controlled by userspace, but does not have an arrayindexnospec boundary to prevent access past the syscall function pointer tables...

4.7CVSS5.7AI score0.00123EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31492

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Initialize freeqp completion before using it In irdmacreateqp, if ibcopytoudata fails, it will call irdmadestroyqp to clean up which will attempt to wait on the freeqp completion, which is not initialized yet. Fix thi...

5.5CVSS5.6AI score0.00123EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/04/23 1:25 a.m.•9 views

SUSE CVE-2026-31505

In the Linux kernel, the following vulnerability has been resolved: iavf: fix out-of-bounds writes in iavfgetethtoolstats iavf incorrectly uses realnumtxqueues for ETHSSSTATS. Since the value could change in runtime, we should use numtxqueues instead. Moreover iavfgetethtoolstats uses...

7CVSS5.8AI score0.00129EPSS
Exploits0References20
Total number of security vulnerabilities5000