Lucene search
K
SusecveRecent

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/03/11 12:27 a.m.•6 views

SUSE CVE-2026-23239

In the Linux kernel, the following vulnerability has been resolved: espintcp: Fix race condition in espintcpclose This issue was discovered during a code audit. After cancelworksync is called from espintcpclose, espintcptxwork can still be scheduled from paths such as the Delayed ACK handler or...

7CVSS5.7AI score0.00101EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2026/03/11 12:27 a.m.•7 views

SUSE CVE-2026-23240

In the Linux kernel, the following vulnerability has been resolved: tls: Fix race condition in tlsswcancelworktx This issue was discovered during a code audit. After canceldelayedworksync is called from tlsskprotoclose, txworkhandler can still be scheduled from paths such as the Delayed ACK handl...

7CVSS5.7AI score0.0049EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2026/03/11 12:27 a.m.•6 views

SUSE CVE-2026-23907

This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.35, from 3.0.0 through 3.0.6. The ExtractEmbeddedFiles example contains a path traversal vulnerability CWE-22 because the filename that is obtained from PDComplexFileSpecification.getFilename is appended...

5.3CVSS5.9AI score0.00886EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/11 12:25 a.m.•5 views

SUSE CVE-2026-26982

Ghostty is a cross-platform terminal emulator. Ghostty allows control characters such as 0x03 Ctrl+C in pasted and dropped text. These can be used to execute arbitrary commands in some shell environments. This attack requires an attacker to convince the user to copy and paste or drag and drop...

8.8CVSS6AI score0.00307EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•4 views

SUSE CVE-2026-28493

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerabili...

8.2CVSS5.9AI score0.00194EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•5 views

SUSE CVE-2026-28494

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-siz...

8.6CVSS6AI score0.00108EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•5 views

SUSE CVE-2026-28686

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1.2-16 and 6.9.13-...

8.2CVSS5.9AI score0.00113EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•7 views

SUSE CVE-2026-28687

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. This vulnerabilit...

7.5CVSS5.8AI score0.00243EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•4 views

SUSE CVE-2026-28688

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

5.1CVSS5.7AI score0.00193EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•5 views

SUSE CVE-2026-28689

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This...

6.3CVSS5.8AI score0.00108EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•8 views

SUSE CVE-2026-28690

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data...

8.6CVSS6AI score0.00096EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•3 views

SUSE CVE-2026-28691

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•5 views

SUSE CVE-2026-28692

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

8.2CVSS5.8AI score0.00258EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•5 views

SUSE CVE-2026-28693

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

8.6CVSS5.9AI score0.00334EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•4 views

SUSE CVE-2026-30883

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

8.6CVSS5.8AI score0.00123EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•4 views

SUSE CVE-2026-30929

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vulnerability is fix...

8.6CVSS6AI score0.00107EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•3 views

SUSE CVE-2026-30931

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16...

8.6CVSS6AI score0.00108EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•6 views

SUSE CVE-2026-30936

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operati...

5.5CVSS5.8AI score0.00106EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/03/11 12:24 a.m.•5 views

SUSE CVE-2026-30937

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD X Windows encoder can cause an undersized heap buffer allocation. When writing a extremely large image an out of...

6.8CVSS6AI score0.00099EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/10 12:30 a.m.•5 views

SUSE CVE-2026-2219

It was discovered that dpkg-deb a component of dpkg, the Debian package management system does not properly validate the end of the data stream when uncompressing a zstd-compressed .deb archive, which may result in denial of service infinite loop spinning the CPU...

6.5CVSS5.8AI score0.00418EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•4 views

SUSE CVE-2026-2923

GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependi...

7.8CVSS6.3AI score0.00729EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•8 views

SUSE CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS6.4AI score0.00425EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•4 views

SUSE CVE-2026-3082

GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.4AI score0.00787EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•5 views

SUSE CVE-2026-3083

GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependin...

8.8CVSS6.3AI score0.00806EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•2 views

SUSE CVE-2026-3084

GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00421EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•5 views

SUSE CVE-2026-3085

GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.8CVSS6.4AI score0.00828EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•6 views

SUSE CVE-2026-3086

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00421EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•5 views

SUSE CVE-2026-3713

A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function dopnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of the argument width/height causes heap-based buffer overflow. The attack is restricted to local...

5.3CVSS6AI score0.00126EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:29 a.m.•4 views

SUSE CVE-2026-3731

A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftpextensionsgetname/sftpextensionsgetdata of the file src/sftp.c of the component SFTP Extension Name Handler. Executing a manipulation of the argument idx can lead to out-of-bounds read. The attack may ...

5.3CVSS5.4AI score0.00631EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/03/10 12:24 a.m.•4 views

SUSE CVE-2026-28348

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.4, the hassneakyjavascript method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression filters,...

6.1CVSS5.7AI score0.00228EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:24 a.m.•5 views

SUSE CVE-2026-28350

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.4, the tag passes through the default Cleaner configuration. While pagestructure=True removes html, head, and title tags, there is no specific handling for , allowing an attacker to inje...

6.1CVSS5.7AI score0.00254EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:24 a.m.•3 views

SUSE CVE-2026-28804

pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires accessing a stream which uses the /ASCIIHexDecode filter. This issue has been patched in version 6.7.5...

6.5CVSS5.7AI score0.00399EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/10 12:24 a.m.•3 views

SUSE CVE-2026-29076

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.37.0, cpp-httplib uses std::regex libstdc++ to parse RFC 5987 encoded filename values in multipart Content-Disposition headers. The regex engine in libstdc++ implements backtracking via deep...

5.9CVSS5.6AI score0.00602EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/03/10 12:24 a.m.•2 views

SUSE CVE-2026-30851

Caddy is an extensible server platform that uses TLS by default. From version 2.10.0 to before version 2.11.2, forwardauth copyheaders does not strip client-supplied headers, allowing identity injection and privilege escalation. This issue has been patched in version 2.11.2...

8.8CVSS5.7AI score0.00249EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/03/10 12:24 a.m.•5 views

SUSE CVE-2026-30852

Caddy is an extensible server platform that uses TLS by default. From version 2.7.5 to before version 2.11.2, the varsregexp matcher in vars.go:337 double-expands user-controlled input through the Caddy replacer. When varsregexp matches against a placeholder like http.request.header.X-Input, the...

7.5CVSS5.7AI score0.00401EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/03/09 1:31 p.m.•3 views

SUSE CVE-2026-2920

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.4AI score0.00773EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/03/09 1:31 p.m.•5 views

SUSE CVE-2026-2921

GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending o...

7.8CVSS6.4AI score0.00867EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/09 1:31 p.m.•4 views

SUSE CVE-2026-2922

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00431EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/03/07 12:27 a.m.•5 views

SUSE CVE-2025-69644

An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling of DWARF location list headers can cause objdump to enter an unbounded loop and produce endless...

5CVSS5.8AI score0.00126EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:27 a.m.•4 views

SUSE CVE-2025-69645

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offsetsize value being used inside bytegetlittleendian, leading to an abort SIGABR...

5.5CVSS5.8AI score0.00166EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:27 a.m.•6 views

SUSE CVE-2025-69646

Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debugrnglists data. A logic error in the handling of the debugrnglists header can cause objdump to repeatedly print the same warning message and fail to terminate, resulting in an...

5.5CVSS5.8AI score0.00155EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:27 a.m.•4 views

SUSE CVE-2025-69651

GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary with malformed relocation or symbol data. If dumprelocations returns early due to parsing errors, the internal allrelocations array may remain partially uninitialized...

5.5CVSS6.3AI score0.0024EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:27 a.m.•6 views

SUSE CVE-2026-0848

NLTK versions =3.9.2 are vulnerable to arbitrary code execution due to improper input validation in the StanfordSegmenter module. The module dynamically loads external Java .jar files without verification or sandboxing. An attacker can supply or replace the JAR file, enabling the execution of...

10CVSS6.7AI score0.00809EPSS
Exploits3References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:26 a.m.•3 views

SUSE CVE-2026-3632

A flaw was found in libsoup, a library used by applications to send network requests. This vulnerability occurs because libsoup does not properly validate hostnames, allowing special characters to be injected into HTTP headers. A remote attacker could exploit this to perform HTTP smuggling, where...

5.5CVSS5.8AI score0.00207EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:26 a.m.•3 views

SUSE CVE-2026-3633

A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the soupmessagenew function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF Carriage Return Line Feed injection, occurs because the method value is not properly...

6.5CVSS6AI score0.00223EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:26 a.m.•3 views

SUSE CVE-2026-3634

A flaw was found in libsoup. An attacker controlling the value used to set the Content-Type header can inject a Carriage Return Line Feed CRLF sequence due to improper input sanitization in the soupmessageheaderssetcontenttype function. This vulnerability allows for the injection of arbitrary...

6.5CVSS5.9AI score0.00184EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:26 a.m.•4 views

SUSE CVE-2026-23925

An authenticated Zabbix user User role with template/host write permissions is able to create objects via the configuration.import API. This can lead to confidentiality loss by creating unauthorized hosts. Note that the User role is normally not sufficient to create and edit templates/hosts even...

5.1CVSS5.8AI score0.00255EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/07 12:26 a.m.•6 views

SUSE CVE-2026-25679

url.Parse insufficiently validated the host/authority component and accepted some invalid URLs...

3.3CVSS5.8AI score0.00728EPSS
Exploits0References47
SUSE CVE
SUSE CVE
•added 2026/03/07 12:25 a.m.•5 views

SUSE CVE-2026-26017

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a logical vulnerability in CoreDNS allows DNS access controls to be bypassed due to the default execution order of plugins. Security plugins such as acl are evaluated before the rewrite plugin, resulting in a Time-of-Check...

6.3CVSS5.8AI score0.00376EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/03/07 12:25 a.m.•7 views

SUSE CVE-2026-26018

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a denial of service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable...

7.5CVSS5.7AI score0.01068EPSS
Exploits1References4
Total number of security vulnerabilities59854