Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/12/20 12:25 a.m.•7 views

SUSE CVE-2025-68325

In the Linux kernel, the following vulnerability has been resolved: net/sched: schcake: Fix incorrect qlen reduction in cakedrop In cakedrop, qdisctreereducebacklog is used to update the qlen and backlog of the qdisc hierarchy. Its caller, cakeenqueue, assumes that the parent qdisc will enqueue t...

5.5CVSS6.5AI score0.0018EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/20 12:25 a.m.•7 views

SUSE CVE-2025-68398

Weblate is a web based localization tool. In versions prior to 5.15.1, it was possible to overwrite Git configuration remotely and override some of its behavior. Version 5.15.1 fixes the issue...

9.1CVSS6.8AI score0.00489EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/20 12:25 a.m.•5 views

SUSE CVE-2025-68469

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fixes the issue...

4CVSS6.8AI score0.00178EPSS
Exploits1References5
SUSE CVE
SUSE CVE
•added 2025/12/19 1:7 a.m.•11 views

SUSE CVE-2024-29371

In jose4j before 0.9.6, an attacker can cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high compression ratio. When this token is processed by the server, it results in significant memory allocation and processing time during...

7.5CVSS5.4AI score0.00244EPSS
Exploits1References6
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•4 views

SUSE CVE-2025-14422

GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

7.8CVSS8AI score0.00508EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•2 views

SUSE CVE-2025-14423

GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

7.8CVSS7.9AI score0.00544EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•2 views

SUSE CVE-2025-14424

GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

7.8CVSS7.9AI score0.00539EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•2 views

SUSE CVE-2025-14425

GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.9AI score0.00539EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•3 views

SUSE CVE-2025-14841

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS6.5AI score0.00113EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•1 views

SUSE CVE-2025-14860

Use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 146.0.1...

9.8CVSS7.3AI score0.00265EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:45 a.m.•2 views

SUSE CVE-2025-14861

Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 146.0.1...

8.8CVSS7.4AI score0.00208EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:26 a.m.•4 views

SUSE CVE-2025-64702

quic-go is an implementation of the QUIC protocol in Go. Versions 0.56.0 and below are vulnerable to excessive memory allocation through quic-go's HTTP/3 client and server implementations by sending a QPACK-encoded HEADERS frame that decodes into a large header field section many unique header...

5.3CVSS6.9AI score0.00338EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:26 a.m.•5 views

SUSE CVE-2025-67873

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make csdisasm/csdisasmiter memcpy more than 24 bytes into csinsn.bytes, causing a heap buffer overflow in the disassembly path. Commit...

4.8CVSS7.4AI score0.00191EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/12/19 12:26 a.m.•5 views

SUSE CVE-2025-68114

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream's index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

4.8CVSS7.2AI score0.00163EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/19 12:26 a.m.•4 views

SUSE CVE-2025-68118

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.20.0, a vulnerability exists in FreeRDP's certificate handling code on Windows platforms. The function freerdpcertificatedatahash uses the Microsoft-specific snprintf function to format certificate cache filenames...

9.1CVSS7.2AI score0.00214EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:26 a.m.•4 views

SUSE CVE-2025-68156

Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr, including flatten, min, max, mean, and median, perform recursive traversal over user-provided data structures without enforcing a maximum recursion depth. If the evaluation...

7.5CVSS7.1AI score0.00377EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•4 views

SUSE CVE-2025-68282

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: udc: fix use-after-free in usbgadgetstatework A race condition during gadget teardown can lead to a use-after-free in usbgadgetstatework, as reported by KASAN: BUG: KASAN: invalid-access in sysfsnotify+0x2c/0xd0...

6.4AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•8 views

SUSE CVE-2025-68286

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check NULL before accessing WHAT IGT kmscursorlegacy's long-nonblocking-modeset-vs-cursor-atomic fails with NULL pointer dereference. This can be reproduced with both an eDP panel and a DP monitors connected. BUG...

4.4CVSS6.3AI score0.00173EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•6 views

SUSE CVE-2025-68289

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: feem: Fix memory leak in eemunwrap The existing code did not handle the failure case of usbepqueue in the command path, potentially leading to memory leaks. Improve error handling to free all allocated resources on...

5.5CVSS6.7AI score0.00173EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•4 views

SUSE CVE-2025-68295

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix memory leak in cifsconstructtcon When having a multiuser mount with domain= specified and using cifscreds, cifssetcifscreds will end up setting @ctx-domainname, so it needs to be freed before leaving...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•6 views

SUSE CVE-2025-68303

In the Linux kernel, the following vulnerability has been resolved: platform/x86: intel: punitipc: fix memory corruption This passes the address of the pointer "&punitipcdev" when the intent was to pass the pointer itself "punitipcdev" without the ampersand. This means that the:...

5.5CVSS6.5AI score0.00161EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•5 views

SUSE CVE-2025-68460

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a information disclosure vulnerability in the HTML style sanitizer...

7.5CVSS6.3AI score0.00244EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/19 12:24 a.m.•10 views

SUSE CVE-2025-68461

Roundcube Webmail before 1.5.12 and 1.6 before 1.6.12 is prone to a Cross-Site-Scripting XSS vulnerability via the animate tag in an SVG document...

6.1CVSS6.6AI score0.19769EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:49 a.m.•3 views

SUSE CVE-2025-14174

Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.7AI score0.22721EPSS
Exploits10References9
SUSE CVE
SUSE CVE
•added 2025/12/18 12:49 a.m.•4 views

SUSE CVE-2025-14765

Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.4AI score0.02595EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:49 a.m.•4 views

SUSE CVE-2025-14766

Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.1AI score0.0281EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:29 a.m.•3 views

SUSE CVE-2025-43501

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS6.8AI score0.00686EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/12/18 12:29 a.m.•4 views

SUSE CVE-2025-43529

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may lead to arbitrary code...

8.8CVSS7.5AI score0.08439EPSS
Exploits8References12
SUSE CVE
SUSE CVE
•added 2025/12/18 12:29 a.m.•3 views

SUSE CVE-2025-43531

A race condition was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash...

5.3CVSS5.8AI score0.0044EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/12/18 12:29 a.m.•3 views

SUSE CVE-2025-43535

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS6.4AI score0.0077EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/12/18 12:29 a.m.•3 views

SUSE CVE-2025-43536

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS5.8AI score0.00548EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/18 12:29 a.m.•4 views

SUSE CVE-2025-43541

A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected Safari crash...

6.5CVSS6.3AI score0.32EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/12/18 12:26 a.m.•2 views

SUSE CVE-2025-68142

PyMdown Extensions is a set of extensions for the Python-Markdown markdown project. Versions prior to 10.16.1 have a ReDOS bug found within the figure caption extension pymdownx.blocks.caption. In systems that take unchecked user content, this could cause long hanges when processing the data if a...

6.9CVSS6.7AI score0.00356EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:26 a.m.•5 views

SUSE CVE-2025-68146

filelock is a platform-independent file lock for Python. In versions prior to 3.20.1, a Time-of-Check-Time-of-Use TOCTOU race condition allows local attackers to corrupt or truncate arbitrary user files through symlink attacks. The vulnerability exists in both Unix and Windows lock file creation...

4.7CVSS6.2AI score0.00184EPSS
Exploits1References6
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•6 views

SUSE CVE-2025-68290

In the Linux kernel, the following vulnerability has been resolved: most: usb: fix double free on late probe failure The MOST subsystem has a non-standard registration function which frees the interface on registration failures and on deregistration. This unsurprisingly leads to bugs in the MOST...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•4 views

SUSE CVE-2025-68291

In the Linux kernel, the following vulnerability has been resolved: mptcp: Initialise rcvmss before calling tcpsendactivereset in mptcpdofastclose. syzbot reported divide-by-zero in tcpselectwindow by MPTCP socket. 0 We had a similar issue for the bare TCP and fixed in commit 499350a5a6e7 "tcp:...

6.5AI score0.00175EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•4 views

SUSE CVE-2025-68292

In the Linux kernel, the following vulnerability has been resolved: mm/memfd: fix information leak in hugetlb folios When allocating hugetlb folios for memfd, three initialization steps are missing: 1. Folios are not zeroed, leading to kernel memory disclosure to userspace 2. Folios are not marke...

5.5CVSS5.7AI score0.00176EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•5 views

SUSE CVE-2025-68293

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: fix NULL pointer deference when splitting folio Commit c010d47f107f "mm: thp: split huge page to any lower order pages" introduced an early check on the folio's order via mapping-flags before proceeding with the...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•5 views

SUSE CVE-2025-68294

In the Linux kernel, the following vulnerability has been resolved: iouring/net: ensure vectored buffer node import is tied to notification When support for vectored registered buffers was added, the import itself is using 'req' rather than the notification iokiocb, sr-notif. For non-vectored...

6.7AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•4 views

SUSE CVE-2025-68296

In the Linux kernel, the following vulnerability has been resolved: drm, fbcon, vgaswitcheroo: Avoid race condition in fbcon setup Protect vgaswitcherooclientfbset with console lock. Avoids OOB access in fbconremapall. Without holding the console lock the call races with switching outputs. VGA...

5.5CVSS6.5AI score0.00171EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•3 views

SUSE CVE-2025-68298

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: Avoid btusbmtkclaimisointf NULL deref In btusbmtksetup, we set btmtkdata-isopktintf to: usbifnumtoifdata-udev, MTKISOIFNUM That function can return NULL in some cases. Even when it returns NULL, though...

5.5CVSS6.6AI score0.00155EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•4 views

SUSE CVE-2025-68299

In the Linux kernel, the following vulnerability has been resolved: afs: Fix delayed allocation of a cell's anonymous key The allocation of a cell's anonymous key is done in a background thread along with other cell setup such as doing a DNS upcall. In the reported bug, this is triggered by...

6.7AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•4 views

SUSE CVE-2025-68301

In the Linux kernel, the following vulnerability has been resolved: net: atlantic: fix fragment overflow handling in RX path The atlantic driver can receive packets with more than MAXSKBFRAGS 17 fragments when handling large multi-descriptor packets. This causes an out-of-bounds write in...

5.5CVSS6.7AI score0.00161EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•5 views

SUSE CVE-2025-68302

In the Linux kernel, the following vulnerability has been resolved: net: sxgbe: fix potential NULL dereference in sxgberx Currently, when skb is null, the driver prints an error and then dereferences skb on the next line. To fix this, let's add a 'break' after the error message to switch to...

5.5CVSS6.7AI score0.00161EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•7 views

SUSE CVE-2025-68304

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: lookup hciconn on RX path on protocol side The hdev lock/lookup/unlock/use pattern in the packet RX path doesn't ensure hciconn is not concurrently modified/deleted. This locking appears to be leftover from...

6.7AI score0.00145EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/18 12:24 a.m.•5 views

SUSE CVE-2025-68305

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisock: Prevent race in socket write iter and sock bind There is a potential race condition between sock bind and socket write iter. bind may free the same cmd via mgmtpending before write iter sends the cmd, just as...

5.5CVSS6.5AI score0.00156EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/12/18 12:23 a.m.•3 views

SUSE CVE-2025-68306

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: Fix kernel crash when releasing mtk iso interface When performing reset tests and encountering abnormal card drop issues that lead to a kernel crash, it is necessary to perform a null check before...

5.5CVSS6.4AI score0.00162EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/18 12:23 a.m.•6 views

SUSE CVE-2025-68307

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbxmitcallback: fix handling of failed transmitted URBs The driver lacks the cleanup of failed transfers of URBs. This reduces the number of available URBs per error by 1. This leads to reduced performance and...

5.3CVSS6.5AI score0.00161EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/18 12:23 a.m.•4 views

SUSE CVE-2025-68308

In the Linux kernel, the following vulnerability has been resolved: can: kvaserusb: leaf: Fix potential infinite loop in command parsers The kvaserusbleafwaitcmd and kvaserusbleafreadbulkcallback functions contain logic to zero-length commands. These commands are used to align data to the USB...

5.5CVSS6.8AI score0.00161EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 2:19 a.m.•7 views

SUSE CVE-2017-18870

An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, and 4.3.4. It mishandled webhook access control in the EnableOnlyAdminIntegrations case...

4.3CVSS7AI score0.00614EPSS
Exploits0References2
Total number of security vulnerabilities59855