Lucene search
K
SusecveRecent

59178 matches found

SUSE CVE
SUSE CVE
•added 2026/06/24 2:34 a.m.•4 views

SUSE CVE-2026-56376

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap use-after-free in the meta coder: when memory allocation fails, a single byte is written to a stale pointer. Remote attackers can trigger it by processing specially crafted image files, causing a denial of service...

6.3CVSS5.9AI score0.00184EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/24 2:34 a.m.•4 views

SUSE CVE-2026-56379

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a command injection vulnerability in the SVG decoder that allows attackers to inject arbitrary MVG drawing commands. Attackers can craft malicious SVG files with injected Magick Vector Graphics commands that execute during rendering...

5.5CVSS6.1AI score0.01193EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/24 2:34 a.m.•5 views

SUSE CVE-2026-56968

GNU SASL before 2.2.4 lacks sanitization of a short challenge in gsaslntlmclientstep in the NTLM client, which could result in memory disclosure via a crafted server...

3.7CVSS5.8AI score0.00241EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:31 a.m.•6 views

SUSE CVE-2025-70102

A NULL pointer dereference occurs in Roy Marples NetworkConfiguration/dhcpcd 10.3.0 while parsing configuration options. In parseoption src/if-options.c:1886, the code performs a member access on a NULL pointer of type 'struct dhcpopt' when an unexpected/invalid option token or parsing state caus...

6.3CVSS5.9AI score0.00169EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:31 a.m.•5 views

SUSE CVE-2026-2303

The mongo-go-driver repository contains CGo bindings for GSSAPI Kerberos authentication on Linux and macOS. The C wrapper implementation contains a heap out-of-bounds read vulnerability due to incorrect assumptions about string termination in the GSSAPI standard. Since GSSAPI buffers are not...

6.9CVSS5.9AI score0.00223EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:31 a.m.•5 views

SUSE CVE-2026-4660

HashiCorp's go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and package...

7.5CVSS5.9AI score0.00583EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:30 a.m.•7 views

SUSE CVE-2026-9375

urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in its streaming API preloadcontent=False when using Brotli support. The issue arises due to three independent code paths in response.py that bypass the maxlength protection introduced in version 2.6.0 to mitigate CVE-2025-66471...

7.5CVSS6.2AI score0.00304EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:29 a.m.•7 views

SUSE CVE-2026-12725

A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies containing unsupported algorithm or digest types can cause dnsmasq to write past the end of an internal logging buffer. A remote attacker able to supply su...

7.5CVSS6.1AI score0.00406EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:28 a.m.•7 views

SUSE CVE-2026-23879

py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and decryption. Versions 1.1.2 and below contain an an arbitrary file write vulnerability, which allows symbolic links to be recreated outside the destination directory via crafted malicious...

8CVSS6.2AI score0.00404EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:26 a.m.•5 views

SUSE CVE-2026-33558

Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient component will output entire requests and responses information in the DEBUG log level in the logs. By default, the log level is set to INFO level. If the DEBUG level is enabled, the sensitive information wi...

5.3CVSS5.7AI score0.00535EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:22 a.m.•6 views

SUSE CVE-2026-44604

A command injection vulnerability was discovered in the rpmuncompress utility of RPM. When extracting certain archive formats ZIP, 7z, GEM to a specified destination directory, the tool inserts the archive's top-level folder name into a shell command without properly sanitizing it. A specially...

7CVSS6.1AI score0.00547EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•7 views

SUSE CVE-2026-47262

unknown...

5.5CVSS5.8AI score0.00458EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•5 views

SUSE CVE-2026-48715

radvd is a router advertisement daemon for IPv6. Prior to version 2.21, the radvdump utility shipped with radvd contains a stack buffer overflow in the Route Information option parser. When processing a crafted ICMPv6 Router Advertisement, printff copies up to 2032 bytes from attacker-controlled...

7.7CVSS6.1AI score0.00203EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•6 views

SUSE CVE-2026-50195

unknown...

8.8CVSS5.8AI score0.00316EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•6 views

SUSE CVE-2026-52908

In the Linux kernel, the following vulnerability has been resolved: RDMA: During reregmr ensure that REREGACCESS is compatible If IBMRREREGACCESS changes from RO to RW then the umem has to be re-evaluated to ensure it is properly pinned as RW. Since the umem is hidden inside each driver's mr stru...

5.7AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•7 views

SUSE CVE-2026-52909

In the Linux kernel, the following vulnerability has been resolved: ip6vti: set netnsimmutable on the fallback device. john1988 and Noam Rathaus reported that vti6initnet does not set the netnsimmutable flag on the per-netns fallback tunnel device ip6vti0. Other similar tunnel drivers like...

5.8AI score0.00119EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•11 views

SUSE CVE-2026-52910

In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU grace period. Eulgyu Kim reported the splat below with a repro. 0 The repro sets up a UDP reuseport group with a cBPF prog and replaces it with a new one while another thread is sending a U...

5.7AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•8 views

SUSE CVE-2026-52911

In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn-binding slowpath to bound sessions only When the binding SESSIONSETUP sets conn-binding = true, the flag stays set after the call so that the global session lookup in ksmbdsessionlookupall can find the session,...

5.8AI score0.00362EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•8 views

SUSE CVE-2026-53488

unknown...

8.8CVSS5.8AI score0.00229EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•7 views

SUSE CVE-2026-53489

unknown...

5.5CVSS5.8AI score0.00245EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:20 a.m.•6 views

SUSE CVE-2026-53492

unknown...

8.8CVSS5.8AI score0.00478EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•7 views

SUSE CVE-2026-54762

Traefik is an HTTP reverse proxy and load balancer. From 3.7.0-ea.1 until 3.7.5, there is a medium severity vulnerability in Traefik's Kubernetes Ingress NGINX provider that causes affected routes to fail open. When an Ingress explicitly enables BasicAuth or DigestAuth through the supported...

8.6CVSS5.9AI score0.0036EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-54904

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::AtomicReferenceupdate can enter a permanent busy retry loop when the current value is Float::NAN. The issue is caused by the interaction between AtomicReferenceupdate, which retries until compareandsetoldvalue,...

8.2CVSS5.9AI score0.00278EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•6 views

SUSE CVE-2026-54905

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::ReentrantReadWriteLock can incorrectly grant a write lock after one thread acquires the read lock 32,768 times. The lock stores a thread's local read and write hold counts in one integer. The low 15 bits are used...

2CVSS5.8AI score0.00106EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•4 views

SUSE CVE-2026-54906

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::ReadWriteLockreleasewritelock does not verify that the calling thread acquired the write lock. Any thread with access to the lock object can release an active write lock held by another thread. A second writer can...

2.1CVSS5.9AI score0.0016EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-55195

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•6 views

SUSE CVE-2026-55206

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-55774

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-55775

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•4 views

SUSE CVE-2026-55776

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•6 views

SUSE CVE-2026-56208

A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. A flaw in the AV1 encoder's Look-Ahead Processing LAP mode causes the first-pass stats ring buffer wrap-around guard to be bypassed when glaginframes is set to 1 or higher. This results in a 232-byte...

7.1CVSS6.2AI score0.00275EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•6 views

SUSE CVE-2026-56209

An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows an attacker to inject an arbitrary pointer into the cyclic refresh map field via crafted image pixel value...

8.1CVSS6AI score0.00272EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•7 views

SUSE CVE-2026-56210

A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows setting a spatiallayerid exceeding the configured number of layers. This causes an out-of-bounds heap rea...

7.1CVSS5.8AI score0.00245EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•6 views

SUSE CVE-2026-56211

A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation. Insufficient bounds validation in the AV1 encoder's SVC Scalable Video Coding layer ID control allows an attacker to supply crafted video frame pixels that overlap with internal encoder layer contex...

7.5CVSS6.7AI score0.00399EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-56367

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...

4.8CVSS5.9AI score0.00236EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-56403

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•6 views

SUSE CVE-2026-56404

libexpat before 2.8.2 has an integer overflow in addBinding...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-56405

libexpat before 2.8.2 has an integer overflow in getAttributeId...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•4 views

SUSE CVE-2026-56406

libexpat before 2.8.2 has an integer overflow in XMLParseBuffer because it lacked a check that was present in XMLParse...

6.9CVSS5.8AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•4 views

SUSE CVE-2026-56407

libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•4 views

SUSE CVE-2026-56408

libexpat before 2.8.2 has an integer overflow in copyString...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•8 views

SUSE CVE-2026-56409

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS5.9AI score0.00098EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-56411

xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations...

6.9CVSS5.9AI score0.0011EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/23 2:19 a.m.•5 views

SUSE CVE-2026-56412

libexpat before 2.8.2 does not consider XMLTOKDATACHARS in doCdataSection and thus lacks handler call depth tracking for various calls from within handlers in cases of a policy violation. Thus, a use-after-free can occur. NOTE: this issue exists because of an incomplete fix for CVE-2026-50219...

4.9CVSS5.8AI score0.00105EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/22 12:46 a.m.•7 views

SUSE CVE-2026-54634

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/21 2:17 a.m.•9 views

SUSE CVE-2026-48619

A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead to an Out of Memory error on the client. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

5.9CVSS6.3AI score0.00656EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/06/20 2:48 a.m.•10 views

SUSE CVE-2025-15661

libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bounds heap read vulnerability in the sftpsymlink function in src/sftp.c that allows a malicious SSH server or man-in-the-middle attacker to disclose heap memory contents or cause a crash by sending a crafted SSHFXPNAME response...

6.8CVSS6AI score0.00267EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/20 2:36 a.m.•20 views

SUSE CVE-2026-9692

Mojolicious::Sessions::Storable versions through 0.05 for Perl generate session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, the heap address of an anonymous hash, and the PID. These are predictable or low-entropy...

5.3CVSS5.8AI score0.00274EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/20 2:36 a.m.•12 views

SUSE CVE-2026-11463

A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor...

7.5CVSS6.6AI score0.00313EPSS
Exploits0References3
Total number of security vulnerabilities59178