Lucene search
K
SusecveRecent

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•3 views

SUSE CVE-2026-24122

Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...

3.7CVSS5.7AI score0.00197EPSS
Exploits2References6
SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•4 views

SUSE CVE-2026-26064

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Versions 9.2.1 and below contain a Path Traversal vulnerability that allows arbitrary file writes anywhere the user has write permissions. On Windows, this leads to Remote Code Execution by writin...

9.3CVSS5.9AI score0.0088EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•3 views

SUSE CVE-2026-26065

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Versions 9.2.1 and below are vulnerable to Path Traversal through PDB readers both 132-byte and 202-byte header variants that allow arbitrary file writes with arbitrary extension and arbitrary...

9.3CVSS6.2AI score0.0052EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•5 views

SUSE CVE-2026-26200

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on...

7.8CVSS6.6AI score0.00356EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•5 views

SUSE CVE-2026-26278

fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In versions 4.1.3 through 5.3.5, the XML parser can be forced to do an unlimited amount of entity expansion. With a very small XML input, it's possible ...

7.5CVSS5.8AI score0.00811EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•5 views

SUSE CVE-2026-26280

systeminformation is a System and OS information library for node.js. In versions prior to 5.30.8, a command injection vulnerability in the wifiNetworks function allows an attacker to execute arbitrary OS commands via an unsanitized network interface parameter in the retry code path. In...

8.4CVSS6.3AI score0.01233EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:24 a.m.•5 views

SUSE CVE-2026-26318

systeminformation is a System and OS information library for node.js. Versions prior to 5.31.0 are vulnerable to command injection via unsanitized locate output in versions. Version 5.31.0 fixes the issue...

8.8CVSS5.8AI score0.0115EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:23 a.m.•6 views

SUSE CVE-2026-26958

filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If Point.MultiScalarMult i...

6.5CVSS7AI score0.00366EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/02/21 12:23 a.m.•2 views

SUSE CVE-2026-26960

node-tar is a full-featured Tar for Node.js. When using default options in versions 7.5.7 and below, an attacker-controlled archive can create a hardlink inside the extraction directory that points to a file outside the extraction root, enabling arbitrary file read and write as the extracting use...

7.1CVSS5.8AI score0.00288EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:23 a.m.•4 views

SUSE CVE-2026-26994

uTLS is a fork of crypto/tls, created to customize ClientHello for fingerprinting resistance while still using it for the handshake. In versions 1.6.7 and below, uTLS did not implement the TLS 1.3 downgrade protection mechanism specified in RFC 8446 Section 4.1.3 when using a uTLS ClientHello spe...

6.5CVSS5.7AI score0.00268EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/21 12:23 a.m.•5 views

SUSE CVE-2026-26996

minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Versions 10.2.0 and below are vulnerable to Regular Expression Denial of Service ReDoS when a glob pattern contains many consecutive wildcards followed by a literal character that doesn't appea...

7.5CVSS5.7AI score0.00519EPSS
Exploits1References34
SUSE CVE
SUSE CVE
•added 2026/02/21 12:23 a.m.•6 views

SUSE CVE-2026-27017

uTLS is a fork of crypto/tls, created to customize ClientHello for fingerprinting resistance while still using it for the handshake. Versions 1.6.0 through 1.8.0 contain a fingerprint mismatch with Chrome when using GREASE ECH, related to cipher suite selection. When Chrome selects the preferred...

5.3CVSS5.7AI score0.00154EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/02/20 12:26 a.m.•4 views

SUSE CVE-2026-2243

A flaw was found in QEMU. A specially crafted VMDK image could trigger an out-of-bounds read vulnerability, potentially leading to a 12-byte leak of sensitive information or a denial of service condition DoS...

4.4CVSS5.8AI score0.00114EPSS
Exploits1References11
SUSE CVE
SUSE CVE
•added 2026/02/20 12:26 a.m.•4 views

SUSE CVE-2026-2648

Heap buffer overflow in PDFium in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to perform an out of bounds memory write via a crafted PDF file. Chromium security severity: High...

8.8CVSS6AI score0.00481EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•4 views

SUSE CVE-2026-2649

Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00642EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•4 views

SUSE CVE-2026-2650

Heap buffer overflow in Media in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.00493EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•3 views

SUSE CVE-2026-2661

A security flaw has been discovered in Squirrel up to 3.2. This affects the function SQObjectPtr::operator in the library squirrel/sqobject.h. The manipulation results in heap-based buffer overflow. The attack needs to be approached locally. The exploit has been released to the public and may be...

7.8CVSS5.7AI score0.00235EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•5 views

SUSE CVE-2026-2704

A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file src/math/transform3d.cpp of the component CIF File Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the...

8.1CVSS5.2AI score0.00759EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•4 views

SUSE CVE-2026-2708

A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soupmessageheadersappendcommon function in libsoup/soup-message-headers.c unconditionally appends each header value without validating for duplicate or conflicting Content-Length fields. This allows an attacker...

8.2CVSS5.2AI score0.00321EPSS
Exploits1References13
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•10 views

SUSE CVE-2026-22860

Rack is a modular Ruby web server interface. Prior to versions 2.2.22, 3.1.20, and 3.2.5, Rack::Directory's path check used a string prefix match on the expanded path. A request like /../rootexample/ can escape the configured root if the target path starts with the root string, allowing directory...

7.5CVSS6.4AI score0.00665EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•4 views

SUSE CVE-2026-23131

In the Linux kernel, the following vulnerability has been resolved: platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names The hp-bioscfg driver attempts to register kobjects with empty names when the HP BIOS returns attributes with empty name strings. This causes multiple kerne...

5.5CVSS5.6AI score0.00114EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/02/20 12:24 a.m.•7 views

SUSE CVE-2026-24126

Weblate is a web based localization tool. Prior to 5.16.0, the SSH management console did not validate the passed input while adding the SSH host key, which could lead to an argument injection to ssh-add. Version 5.16.0 fixes the issue. As a workaround, properly limit access to the management...

9.1CVSS5.8AI score0.00447EPSS
Exploits3References3
SUSE CVE
SUSE CVE
•added 2026/02/20 12:24 a.m.•5 views

SUSE CVE-2026-25500

Rack is a modular Ruby web server interface. Prior to versions 2.2.22, 3.1.20, and 3.2.5, Rack::Directory generates an HTML directory index where each file entry is rendered as a clickable link. If a file exists on disk whose basename starts with the javascript: scheme e.g. javascript:alert1, the...

5.4CVSS6.4AI score0.00224EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:29 a.m.•4 views

SUSE CVE-2025-66614

Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Older EOL...

7.5CVSS5.7AI score0.00235EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•4 views

SUSE CVE-2025-71225

In the Linux kernel, the following vulnerability has been resolved: md: suspend array while updating raiddisks via sysfs In raid1reshape, freezearray is called before modifying the r1bio memory pool conf-r1biopool and conf-raiddisks, and unfreezearray is called after the update is completed...

5.3CVSS5.7AI score0.00084EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•8 views

SUSE CVE-2025-71226

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00024EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•6 views

SUSE CVE-2025-71227

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't WARN for connections on invalid channels It's not clear to me how exactly syzbot managed to hit this, but it seems conceivable that e.g. regulatory changed and has disabled a channel between scanning channel...

5.5CVSS5.7AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•3 views

SUSE CVE-2025-71228

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00024EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•5 views

SUSE CVE-2025-71229

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: Fix alignment fault in rtwcoreenablebeacon rtwcoreenablebeacon reads 4 bytes from an address that is not a multiple of 4. This results in a crash on some systems. Do 1 byte reads/writes instead. Unable to handle kern...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•4 views

SUSE CVE-2025-71230

In the Linux kernel, the following vulnerability has been resolved: hfs: ensure sb-sfsinfo is always cleaned up When hfs was converted to the new mount api a bug was introduced by changing the allocation pattern of sb-sfsinfo. If setupbdevsuper fails after a new superblock has been allocated by...

2.5CVSS5.7AI score0.00117EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•4 views

SUSE CVE-2025-71231

In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bounds index in findemptyiaacompressionmode The local variable 'i' is initialized with -EINVAL, but the for loop immediately overwrites it and -EINVAL is never returned. If no empty compression mode can b...

7.8CVSS5.6AI score0.00117EPSS
Exploits0References26
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•3 views

SUSE CVE-2025-71232

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Free sp in error path to fix system crash System crash seen during load/unload test in a loop, 61110.449331 qla2xxx 0000:27:00.0-0042:0: Disabled MSI-X. 61110.467494...

4.4CVSS5.7AI score0.00118EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•4 views

SUSE CVE-2025-71233

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Avoid creating sub-groups asynchronously The asynchronous creation of sub-groups by a delayed work could lead to a NULL pointer dereference when the driver directory is removed before the work completes. The crash...

4.4CVSS5.6AI score0.00118EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•3 views

SUSE CVE-2025-71234

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxustaadd The driver does not set hw-stadatasize, which causes mac80211 to allocate insufficient space for driver private station data in stainfoalloc. When rtl8xxxustaadd accesses...

7.5CVSS5.7AI score0.0012EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•5 views

SUSE CVE-2025-71235

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Delay module unload while fabric scan in progress System crash seen during load/unload test in a loop. 105954.384919 RBP: ffff914589838dc0 R08: 0000000000000000 R09: 0000000000000086 105954.384920 R10:...

4.4CVSS5.6AI score0.00118EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•5 views

SUSE CVE-2025-71236

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Validate sp before freeing associated memory System crash with the following signature 154563.214890 nvme nvme2: NVME-FC1: controller connect complete 154564.169363 qla2xxx 0000:b0:00.1-3002:2: nvme: Sched: Set ZIO...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/19 12:28 a.m.•4 views

SUSE CVE-2025-71237

In the Linux kernel, the following vulnerability has been resolved: nilfs2: Fix potential block overflow that cause system hang When a user executes the FITRIM command, an underflow can occur when calculating nblocks if endblock is too small. Since nblocks is of type sectort, which is u64, a...

5.5CVSS5.6AI score0.00118EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:27 a.m.•3 views

SUSE CVE-2026-2447

Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox ESR 115.32.1, Thunderbird 140.7.2, and Thunderbird 147.0.2...

8.1CVSS6AI score0.006EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:27 a.m.•6 views

SUSE CVE-2026-2644

A weakness has been identified in niklasso minisat up to 2.2.0. This issue affects the function Solver::value in the library core/SolverTypes.h of the component DIMACS File Parser. This manipulation of the argument variable index with the input 2147483648 causes out-of-bounds read. The attack nee...

7.8CVSS5.3AI score0.00221EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:27 a.m.•5 views

SUSE CVE-2026-2659

A vulnerability was determined in Squirrel up to 3.2. Affected by this vulnerability is the function SQFuncState::PopTarget of the file src/squirrel/squirrel/sqfuncstate.cpp. Executing a manipulation of the argument targetstack can lead to out-of-bounds read. It is possible to launch the attack o...

7.8CVSS5.4AI score0.00213EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:27 a.m.•4 views

SUSE CVE-2026-23113

In the Linux kernel, the following vulnerability has been resolved: iouring/io-wq: check IOWQBITEXIT inside work run loop Currently this is checked before running the pending work. Normally this is quite fine, as work items either end up blocking which will create a new worker for other items, or...

5.5CVSS5.6AI score0.00115EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2026/02/19 12:27 a.m.•5 views

SUSE CVE-2026-23124

In the Linux kernel, the following vulnerability has been resolved: ipv6: annotate data-race in ndiscrouterdiscovery syzbot found that ndiscrouterdiscovery could read and write in6dev-ramtu without holding a lock 1 This looks fine, IFLAINET6RAMTU is best effort. Add READONCE/WRITEONCE to document...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•6 views

SUSE CVE-2026-23211

In the Linux kernel, the following vulnerability has been resolved: mm, swap: restore swapspace attr aviod kernel panic commit 8b47299a411a "mm, swap: mark swap address space ro and add context debug check" made the swap address space read-only. It may lead to kernel panic if archpreparetoswap...

5.5CVSS5.7AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•3 views

SUSE CVE-2026-23212

In the Linux kernel, the following vulnerability has been resolved: bonding: annotate data-races around slave-lastrx slave-lastrx and slave-targetlastarprx... can be read and written locklessly. Add READONCE and WRITEONCE annotations. syzbot reported: BUG: KCSAN: data-race in bondrcvvalidate /...

4.7CVSS5.6AI score0.00086EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•4 views

SUSE CVE-2026-23213

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Disable MMIO access during SMU Mode 1 reset During Mode 1 reset, the ASIC undergoes a reset cycle and becomes temporarily inaccessible via PCIe. Any attempt to access MMIO registers during this window e.g., from...

4.4CVSS5.7AI score0.00113EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•4 views

SUSE CVE-2026-23214

In the Linux kernel, the following vulnerability has been resolved: btrfs: reject new transactions if the fs is fully read-only BUG There is a bug report where a heavily fuzzed fs is mounted with all rescue mount options, which leads to the following warnings during unmount: BTRFS: Transaction...

4.6CVSS5.6AI score0.00112EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•4 views

SUSE CVE-2026-23215

In the Linux kernel, the following vulnerability has been resolved: x86/vmware: Fix hypercall clobbers Fedora QA reported the following panic: BUG: unable to handle page fault for address: 0000000040003e54 PF: supervisor write access in kernel mode PF: errorcode0x0002 - not-present page Hardware...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•4 views

SUSE CVE-2026-23216

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsitdecconnusagecount In iscsitdecconnusagecount, the function calls complete while holding the conn-connusagelock. As soon as complete is invoked, the waiter such as...

5.5CVSS5.6AI score0.00117EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•3 views

SUSE CVE-2026-23217

In the Linux kernel, the following vulnerability has been resolved: riscv: trace: fix snapshot deadlock with sbi ecall If sbiecall.c's functions are traceable, echo "sbiecall:snapshot" /sys/kernel/tracing/setftracefilter may get the kernel into a deadlock. Functions in sbiecall.c are excluded fro...

5.5CVSS5.6AI score0.0008EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/19 12:26 a.m.•3 views

SUSE CVE-2026-23218

In the Linux kernel, the following vulnerability has been resolved: gpio: loongson-64bit: Fix incorrect NULL check after devmkcalloc Fix incorrect NULL check in loongsongpioinitirqchip. The function checks chip-parent instead of chip-irq.parents...

5.5CVSS5.7AI score0.001EPSS
Exploits0References3
Total number of security vulnerabilities59854