Lucene search
K
SusecveRecent

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/02/05 12:25 a.m.•4 views

SUSE CVE-2026-23077

In the Linux kernel, the following vulnerability has been resolved: mm/vma: fix anonvma UAF on mremap faulted, unfaulted merge Patch series "mm/vma: fix anonvma UAF on mremap faulted, unfaulted merge", v2. Commit 879bca0a2c4f "mm/vma: fix incorrectly disallowed anonymous VMA merges" introduced th...

7.8CVSS5.3AI score0.00134EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:25 a.m.•8 views

SUSE CVE-2026-23078

In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Fix buffer overflow in config retrieval The scarlett2usbgetconfig function has a logic error in the endianness conversion code that can cause buffer overflows when count 1. The code checks if size == 2 where size...

6.3CVSS5.5AI score0.00143EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:25 a.m.•5 views

SUSE CVE-2026-23079

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: Fix resource leaks on errors in lineinfochangednotify On error handling paths, lineinfochangednotify doesn't free the allocated resources which results leaks. Fix it...

5.5CVSS5.1AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•4 views

SUSE CVE-2026-23080

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: mcbausbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In mcbausbprobe - mcbausbstart, the URBs for USB-in transfe...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•4 views

SUSE CVE-2026-23081

In the Linux kernel, the following vulnerability has been resolved: net: phy: intel-xway: fix OF node refcount leakage Automated review spotted am OF node reference count leakage when checking if the 'leds' child node exists. Call ofputnode to correctly maintain the refcount...

5.5CVSS5.1AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•4 views

SUSE CVE-2026-23082

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbreceivebulkcallback: unanchor URL on usbsubmiturb error In commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak", the URB was re-anchored before usbsubmiturb in gsusbreceivebulkcallback ...

5.5CVSS5.2AI score0.00123EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23083

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOUATTRIPPROTO. fouudprecv has the same problem mentioned in the previous patch. If FOUATTRIPPROTO is set to 0, skb is not freed by fouudprecv nor "resubmit"-ted in ipprotocoldeliverrcu. Let's forbid 0 for...

3.3CVSS5.2AI score0.00129EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23084

In the Linux kernel, the following vulnerability has been resolved: be2net: Fix NULL pointer dereference in becmdgetmacfromlist When the parameter pmacidvalid argument of becmdgetmacfromlist is set to false, the driver may request the PMACID from the firmware of the network card, and this functio...

4.4CVSS5.2AI score0.00123EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23085

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23086

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: cap TX credit to local buffer size The virtio transports derives its TX credit directly from peerbufalloc, which is set from the remote endpoint's SOVMSOCKETSBUFFERSIZE value. On the host side this means that the...

6.5CVSS5.6AI score0.00142EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23087

In the Linux kernel, the following vulnerability has been resolved: scsi: xen: scsiback: Fix potential memory leak in scsibackremove Memory allocated for struct vscsiblkinfo in scsibackprobe is not freed in scsibackremove leading to potential memory leaks on remove, as well as in the scsibackprob...

5.5CVSS5.2AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23088

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix crash on synthetic stacktrace field usage When creating a synthetic event based on an existing synthetic event that had a stacktrace field and the new synthetic event used that field a kernel crash occurred: cd...

5.5CVSS5.2AI score0.00122EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•10 views

SUSE CVE-2026-23089

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix use-after-free in sndusbmixerfree When sndusbcreatemixer fails, sndusbmixerfree frees mixer-idelems but the controls already added to the card still reference the freed memory. Later when sndcardregister runs...

5.9CVSS5.2AI score0.00135EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23090

In the Linux kernel, the following vulnerability has been resolved: slimbus: core: fix device reference leak on report present Slimbus devices can be allocated dynamically upon reception of report-present messages. Make sure to drop the reference taken when looking up already registered devices...

5.5CVSS5.2AI score0.00123EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23091

In the Linux kernel, the following vulnerability has been resolved: intelth: fix device leak on output open Make sure to drop the reference taken when looking up the th device during output device open on errors and on close. Note that a recent commit fixed the leak in a couple of open error path...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•7 views

SUSE CVE-2026-23092

In the Linux kernel, the following vulnerability has been resolved: iio: dac: ad3552r-hs: fix out-of-bound write in ad3552rhswritedatasource When simplewritetobuffer succeeds, it returns the number of bytes actually copied to the buffer. The code incorrectly uses 'count' as the index for null...

7.8CVSS5.5AI score0.00186EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23093

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbd: fix dmaunmapsg nents The dmaunmapsg functions should be called with the same nents as the dmamapsg, not the value the map function returned...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•7 views

SUSE CVE-2026-23094

In the Linux kernel, the following vulnerability has been resolved: uacce: fix isolate sysfs check condition uacce supports the device isolation feature. If the driver implements the isolateerrthresholdread and isolateerrthresholdwrite callback functions, uacce will create sysfs files now. Users...

5.5CVSS5.2AI score0.00114EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23095

In the Linux kernel, the following vulnerability has been resolved: gue: Fix skb memleak with inner IP protocol 0. syzbot reported skb memleak below. 0 The repro generated a GUE packet with its inner protocol 0. gueudprecv returns -guehdr-protoctype for "resubmit" in ipprotocoldeliverrcu, but thi...

5.5CVSS5.2AI score0.00239EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•8 views

SUSE CVE-2026-23096

In the Linux kernel, the following vulnerability has been resolved: uacce: fix cdev handling in the cleanup path When cdevdeviceadd fails, it internally releases the cdev memory, and if cdevdevicedel is then executed, it will cause a hang error. To fix it, we check the return value of cdevdevicea...

5.5CVSS5.2AI score0.00114EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23097

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

5.5CVSS5.2AI score0.00114EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23098

In the Linux kernel, the following vulnerability has been resolved: netrom: fix double-free in nrrouteframe In nrrouteframe, oldskb is immediately freed without checking if nrneigh-ax25 pointer is NULL. Therefore, if nrneigh-ax25 is NULL, the caller function will free oldskb again, causing a...

8.8CVSS5.2AI score0.00177EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23099

In the Linux kernel, the following vulnerability has been resolved: bonding: limit BONDMODE8023AD to Ethernet devices BONDMODE8023AD makes sense for ARPHRDETHER only. syzbot reported: BUG: KASAN: global-out-of-bounds in hwaddrcreate net/core/devaddrlists.c:63 inline BUG: KASAN: global-out-of-boun...

5.5CVSS5.2AI score0.00152EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•7 views

SUSE CVE-2026-23100

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlbpmdshared Patch series "mm/hugetlb: fixes for PMD table sharing incl. using mmugather", v3. One functional fix, one performance regression fix, and two related comment fixes. I cleaned up my prototype I...

5.5CVSS5.2AI score0.00114EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•4 views

SUSE CVE-2026-23101

In the Linux kernel, the following vulnerability has been resolved: leds: led-class: Only Add LED to ledslist when it is fully ready Before this change the LED was added to ledslist before ledinitcore gets called adding it the list before ledclassdev.setbrightnesswork gets initialized. This leave...

5.5CVSS5.2AI score0.0012EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•8 views

SUSE CVE-2026-23102

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Fix restoration of SVE context When SME is supported, Restoring SVE signal context can go wrong in a few ways, including placing the task into an invalid state where the kernel may read from out-of-bounds...

5.5CVSS5.5AI score0.00117EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23103

In the Linux kernel, the following vulnerability has been resolved: ipvlan: Make the addrslock be per port Make the addrslock be per port, not per ipvlan dev. Initial code seems to be written in the assumption, that any address change must occur under RTNL. But it is not so for the case of IPv6. ...

5.5CVSS5.3AI score0.00107EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•7 views

SUSE CVE-2026-23104

In the Linux kernel, the following vulnerability has been resolved: ice: fix devlink reload call trace Commit 4da71a77fc3b "ice: read internal temperature sensor" introduced internal temperature sensor reading via HWMON. icehwmoninit was added to iceinitfeature and icehwmonexit was added to...

5.1CVSS5.2AI score0.00112EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23105

In the Linux kernel, the following vulnerability has been resolved: net/sched: qfq: Use clisactive to determine whether class is active in qfqrmfromag This is more of a preventive patch to make the code more consistent and to prevent possible exploits that employ child qlen manipulations on qfq...

4.7CVSS5.3AI score0.0012EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23106

In the Linux kernel, the following vulnerability has been resolved: timekeeping: Adjust the leap state for the correct auxiliary timekeeper When doajdtimex was introduced to handle adjtimex for any timekeeper, this reference to tkcore was not updated. When called on an auxiliary timekeeper, the...

5.5CVSS5.2AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•7 views

SUSE CVE-2026-23107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.4AI score0.00126EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•5 views

SUSE CVE-2026-23108

In the Linux kernel, the following vulnerability has been resolved: can: usb8dev: usb8devreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In usb8devopen - usb8devstart, the URBs for USB-in transfer...

4.4CVSS5.2AI score0.00127EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•6 views

SUSE CVE-2026-23109

In the Linux kernel, the following vulnerability has been resolved: fs/writeback: skip ASNODATAINTEGRITY mappings in waitsbinodes Above the while loop in waitsbinodes, we document that we must wait for all pages under writeback for data integrity. Consequently, if a mapping, like fuse,...

5.5CVSS5.3AI score0.00111EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•7 views

SUSE CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.3AI score0.00096EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2026/02/04 12:41 a.m.•5 views

SUSE CVE-2025-24293

Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potentially unsafe image transformation methods and parameters by default. The default allowed list contains three methods allow for the circumvention of the safe defaults which enables...

9.2CVSS5.9AI score0.02388EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/04 12:30 a.m.•2 views

SUSE CVE-2025-62879

A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens both accessKey and secretKey into the rancher-backup-operator pod's logs...

6.8CVSS5.7AI score0.0034EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/02/04 12:30 a.m.•7 views

SUSE CVE-2025-65834

Meltytech Shotcut 25.10.31 is vulnerable to Buffer Overflow. A memory access violation occurs when processing MLT project files with manipulated width and height parameters. By setting these values to extremely large numbers, the application attempts to allocate excessive memory during image...

9.8CVSS5.7AI score0.0034EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/02/04 12:26 a.m.•14 views

SUSE CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

6.5CVSS7.9AI score0.00223EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/04 12:25 a.m.•3 views

SUSE CVE-2026-1764

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead to a heap buffer overflow. This vulnerability allows a remote attacker...

5.6CVSS5.7AI score0.00209EPSS
Exploits2References6
SUSE CVE
SUSE CVE
•added 2026/02/04 12:25 a.m.•4 views

SUSE CVE-2026-1765

A flaw was found in the tracker-extract-mp3 component of GNOME localsearch previously known as tracker-miners. This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 file, leading to a Denia...

5.6CVSS5.5AI score0.00139EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/04 12:25 a.m.•5 views

SUSE CVE-2026-1766

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM Comment tags. An attacker cou...

5.6CVSS5.5AI score0.00158EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2026/02/04 12:25 a.m.•5 views

SUSE CVE-2026-1767

A flaw was found in the GNOME localsearch previously known as tracker-miners MP3 Extractor tracker-extract-mp3 component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This incorrect length...

5.6CVSS5.7AI score0.00246EPSS
Exploits1References6
SUSE CVE
SUSE CVE
•added 2026/02/04 12:25 a.m.•5 views

SUSE CVE-2026-22780

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2...

4.4CVSS5.5AI score0.00179EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/03 12:25 a.m.•4 views

SUSE CVE-2025-69662

SQL injection vulnerability in geopandas before v.1.1.2 allows an attacker to obtain sensitive information via the topostgis function being used to write GeoDataFrames to a PostgreSQL database...

8.6CVSS5.7AI score0.00385EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/03 12:24 a.m.•4 views

SUSE CVE-2026-0797

GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.6AI score0.01157EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/03 12:24 a.m.•6 views

SUSE CVE-2026-1703

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations...

3.1CVSS5.4AI score0.0039EPSS
Exploits1References9
SUSE CVE
SUSE CVE
•added 2026/02/03 12:24 a.m.•6 views

SUSE CVE-2026-1757

A flaw was identified in the interactive shell of the xmllint utility, part of the libxml2 project, where memory allocated for user input is not properly released under certain conditions. When a user submits input consisting only of whitespace, the program skips command execution but fails to fr...

3.3CVSS5.7AI score0.00194EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/02/03 12:24 a.m.•4 views

SUSE CVE-2026-1760

A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests,...

8.6CVSS5.4AI score0.00423EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/02/03 12:24 a.m.•5 views

SUSE CVE-2026-1761

A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multipart HTTP responses due to an incorrect length calculation. A remote attacker can exploit this by sending a specially crafted multipart HTTP response, which can lead to memory corruption...

8.1CVSS6.7AI score0.00947EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/02/01 12:24 a.m.•6 views

SUSE CVE-2025-71180

In the Linux kernel, the following vulnerability has been resolved: counter: interrupt-cnt: Drop IRQFNOTHREAD flag An IRQ handler can either be IRQFNOTHREAD or acquire spinlockt, as CONFIGPROVERAWLOCKNESTING warns: ============================= BUG: Invalid wait context 6.18.0-rc1+git... 1...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References3
Total number of security vulnerabilities59854