Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.4 views

SUSE CVE-2025-40314

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget In the cdnspgadgetinit and cdnspgadgetexit functions, the gadget structure pdev-gadget was freed before its endpoints. The endpoints are...

6.1CVSS6.3AI score0.00167EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.5 views

SUSE CVE-2025-40315

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix epfile null pointer access after ep enable. A race condition occurs when ffsfuncepsenable runs concurrently with ffsdatareset. The ffsdataclear called in ffsdatareset sets ffs-epfiles to NULL before resettin...

5.5CVSS6.3AI score0.00175EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.2 views

SUSE CVE-2025-40316

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix device use-after-free on unbind A recent change fixed device reference leaks when looking up drm platform device driver data during bind but failed to remove a partial fix which had been added by commit...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.4 views

SUSE CVE-2025-40317

In the Linux kernel, the following vulnerability has been resolved: regmap: slimbus: fix buscontext pointer in regmap init calls Commit 4e65bda8273c "ASoC: wcd934x: fix error handling in wcd934xcodecparsedata" revealed the problem in the slimbus regmap. That commit breaks audio playback, for...

5.5CVSS6.2AI score0.00171EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.4 views

SUSE CVE-2025-40318

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix race in hcicmdsyncdequeueonce hcicmdsyncdequeueonce does lookup and then cancel the entry under two separate lock sections. Meanwhile, hcicmdsyncwork can also delete the same entry, leading to double listd...

5.5CVSS6.1AI score0.00162EPSS
Exploits0References23
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.4 views

SUSE CVE-2025-40319

In the Linux kernel, the following vulnerability has been resolved: bpf: Sync pending IRQ work before freeing ring buffer Fix a race where irqwork can be queued in bpfringbufcommit but the ring buffer is freed before the work executes. In the syzbot reproducer, a BPF program attached to schedswit...

5.5CVSS6.4AI score0.00167EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.5 views

SUSE CVE-2025-40320

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential cfid UAF in smb2queryinfocompound When smb2queryinfocompound retries, a previously allocated cfid may have been freed in the first attempt. Because cfid wasn't reset on replay, later cleanup could act o...

5.5CVSS6.2AI score0.00162EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.7 views

SUSE CVE-2025-40321

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode Currently, whenever there is a need to transmit an Action frame, the brcmfmac driver always uses the P2P vif to send the "actframe" IOVAR to firmware. Th...

5.5CVSS6.1AI score0.00175EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.9 views

SUSE CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

5.3CVSS6.2AI score0.00175EPSS
Exploits0References26
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.4 views

SUSE CVE-2025-40323

In the Linux kernel, the following vulnerability has been resolved: fbcon: Set fbdisplayi-mode to NULL when the mode is released Recently, we discovered the following issue through syzkaller: BUG: KASAN: slab-use-after-free in fbmodeisequal+0x285/0x2f0 Read of size 4 at addr ff11000001b3c69c by...

6.4CVSS6.2AI score0.00167EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.4 views

SUSE CVE-2025-40324

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix crash in nfsd4readrelease When tracing is enabled, the tracenfsdreaddone trace point crashes during the pynfs read.testNoFh test...

5.5CVSS6.3AI score0.00167EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.5 views

SUSE CVE-2025-40326

In the Linux kernel, the following vulnerability has been resolved: NFSD: Define actions for the new timedeleg FATTR4 attributes NFSv4 clients won't send legitimate GETATTR requests for these new attributes because they are intended to be used only with CBGETATTR and SETATTR. But NFSD has to do...

6.2AI score0.00154EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/09 12:23 a.m.6 views

SUSE CVE-2025-66004

A Path Traversal vulnerability in usbmuxd allows local users to escalate to the service user.This issue affects usbmuxd: before 3ded00c9985a5108cfc7591a309f9a23d57a8cba...

5.7CVSS6.8AI score0.00134EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2025/12/09 12:23 a.m.7 views

SUSE CVE-2025-66512

Nextcloud Server is a self hosted personal cloud system. In Nextcloud Server and Server Enterprise prior to 31.0.12 and 32.0.3, a missing sanitization allowed malicious users to circumvent the content security policy when a malicious user manages to trick a user it viewing an uploaded SVG outside...

6.1CVSS6.4AI score0.00237EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.5 views

SUSE CVE-2025-40267

In the Linux kernel, the following vulnerability has been resolved: iouring/rw: ensure allocated iovec gets cleared for early failure A previous commit reused the recyling infrastructure for early cleanup, but this is not enough for the case where our internal caches have overflowed. If this...

6.5AI score0.0015EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.7 views

SUSE CVE-2025-40268

In the Linux kernel, the following vulnerability has been resolved: cifs: client: fix memory leak in smb3fscontextparseparam The user calls fsconfig twice, but when the program exits, free only frees ctx-source for the second fsconfig, not the first. Regarding fc-source, there is no code in the f...

4.7CVSS6.6AI score0.00162EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.15 views

SUSE CVE-2025-40269

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential overflow of PCM transfer buffer The PCM stream data in USB-audio driver is transferred over USB URB packet buffers, and each packet size is determined dynamically. The packet sizes are limited by so...

5.5CVSS6.8AI score0.00222EPSS
Exploits0References26
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.4 views

SUSE CVE-2025-40270

In the Linux kernel, the following vulnerability has been resolved: mm, swap: fix potential UAF issue for VMA readahead Since commit 78524b05f1a3 "mm, swap: avoid redundant swap device pinning", the common helper for allocating and preparing a folio in the swap cache layer no longer tries to get ...

6.3AI score0.00154EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.3 views

SUSE CVE-2025-40271

In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix uaf in procreaddirde Pde is erased from subdir rbtree through rberase, but not set the node to EMPTY, which may result in uaf access. We should use RBCLEARNODE set the erased node to EMPTY, then pdesubdirnext will...

5.2CVSS6.5AI score0.00519EPSS
Exploits3References26
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.12 views

SUSE CVE-2025-40272

In the Linux kernel, the following vulnerability has been resolved: mm/secretmem: fix use-after-free race in fault handler When a page fault occurs in a secret memory file created with memfdsecret2, the kernel will allocate a new folio for it, mark the underlying page as not-present in the direct...

5.5CVSS6.3AI score0.00171EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.5 views

SUSE CVE-2025-40273

In the Linux kernel, the following vulnerability has been resolved: NFSD: free copynotify stateid in nfs4freeolstateid Typically copynotify stateid is freed either when parent's stateid is being close/freed or in nfsd4laundromat if the stateid hasn't been used in a lease period. However, in case...

5.5CVSS6.4AI score0.00167EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.3 views

SUSE CVE-2025-40274

In the Linux kernel, the following vulnerability has been resolved: KVM: guestmemfd: Remove bindings on memslot deletion when gmem is dying When unbinding a memslot from a guestmemfd instance, remove the bindings even if the guestmemfd file is dying, i.e. even if its file refcount has gone to zer...

5.5CVSS6.6AI score0.00161EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.5 views

SUSE CVE-2025-40275

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL pointer dereference in sndusbmixercontrolsbadd In sndusbcreatestreams, for UAC version 3 devices, the Interface Association Descriptor IAD is retrieved via usbifnumtoif. If this call fails, a fallback...

5.5CVSS6.4AI score0.00171EPSS
Exploits0References22
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.8 views

SUSE CVE-2025-40276

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Flush shmem writes before mapping buffers CPU-uncached The shmem layer zeroes out the new pages using cached mappings, and if we don't CPU-flush we might leave dirty cachelines behind, leading to potential data leaks...

5.5CVSS6.9AI score0.00161EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.2 views

SUSE CVE-2025-40277

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate command header size against SVGACMDMAXDATASIZE This data originates from userspace and is used in buffer offset calculations which could potentially overflow causing an out-of-bounds access...

5.5CVSS7AI score0.00319EPSS
Exploits0References30
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.2 views

SUSE CVE-2025-40278

In the Linux kernel, the following vulnerability has been resolved: net: sched: actife: initialize struct tcife to fix KMSAN kernel-infoleak Fix a KMSAN kernel-infoleak detected by the syzbot . net? KMSAN: kernel-infoleak in skbdatagramiter In tcfifedump, the variable 'opt' was partially...

5.5CVSS6.4AI score0.00189EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.4 views

SUSE CVE-2025-40279

In the Linux kernel, the following vulnerability has been resolved: net: sched: actconnmark: initialize struct tcife to fix kernel leak In tcfconnmarkdump, the variable 'opt' was partially initialized using a designatied initializer. While the padding bytes are reamined uninitialized. nlaput copi...

4.4CVSS6.5AI score0.00171EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.10 views

SUSE CVE-2025-40280

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcmonreinitself. syzbot reported use-after-free of tipcnetnet-monitors in tipcmonreinitself. 0 The array is protected by RTNL, but tipcmonreinitself iterates over it without RTNL. tipcmonreinitself i...

7CVSS6.5AI score0.00189EPSS
Exploits0References28
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.7 views

SUSE CVE-2025-40281

In the Linux kernel, the following vulnerability has been resolved: sctp: prevent possible shift-out-of-bounds in sctptransportupdaterto syzbot reported a possible shift-out-of-bounds 1 Blamed commit added rtoalphamax and rtobetamax set to 1000. It is unclear if some sctp users are setting very...

6.4AI score0.00189EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.6 views

SUSE CVE-2025-40282

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: 6lowpan: reset link-local header on ipv6 recv path Bluetooth 6lowpan.c netdev has headerops, so it must set link-local header for RX skb, otherwise things crash, eg. with AFPACKET SOCKRAW Add missing skbresetmacheader...

6.5CVSS6.5AI score0.00171EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.5 views

SUSE CVE-2025-40283

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: reorder cleanup in btusbdisconnect to avoid UAF There is a KASAN: slab-use-after-free read in btusbdisconnect. Calling "usbdriverreleaseinterface&btusbdriver, data-intf" will free the btusb data associated with...

6.6CVSS6.4AI score0.00175EPSS
Exploits0References23
SUSE CVE
SUSE CVE
added 2025/12/08 12:23 a.m.5 views

SUSE CVE-2025-40284

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: cancel mesh send timer when hdev removed meshsenddone timer is not canceled when hdev is removed, which causes crash if the timer triggers after hdev is gone. Cancel the timer when MGMT removes the hdev, like oth...

7.8CVSS6.6AI score0.00162EPSS
Exploits0References125
SUSE CVE
SUSE CVE
added 2025/12/08 12:22 a.m.4 views

SUSE CVE-2025-40285

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible refcount leak in smb2sesssetup Reference count of ksmbdsession will leak when session need reconnect. Fix this by adding the missing ksmbdusersessionput...

6.5AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:22 a.m.5 views

SUSE CVE-2025-40286

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible memory leak in smb2read Memory leak occurs when ksmbdvfsread fails. Fix this by adding the missing kvfree...

6.5AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/08 12:22 a.m.4 views

SUSE CVE-2025-40287

In the Linux kernel, the following vulnerability has been resolved: exfat: fix improper check of dentry.stream.validsize We found an infinite loop bug in the exFAT file system that can lead to a Denial-of-Service DoS condition. When a dentry in an exFAT filesystem is malformed, the following syst...

5.5CVSS6.2AI score0.00161EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2025/12/08 12:22 a.m.5 views

SUSE CVE-2025-40288

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices Previously, APU platforms and other scenarios with uninitialized VRAM managers triggered a NULL pointer dereference in ttmresourcemanagerusage. The root cause...

5.5CVSS5.9AI score0.00162EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/12/08 12:22 a.m.4 views

SUSE CVE-2025-40289

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM Otherwise accessing them can cause a crash...

5.5CVSS6.5AI score0.00161EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2025/12/08 12:22 a.m.7 views

SUSE CVE-2025-65516

A stored cross-site scripting XSS vulnerability was discovered in Seafile Community Edition prior to version 13.0.12. When Seafile is configured with the Golang file server, an attacker can upload a crafted SVG file containing malicious JavaScript and share it using a public link. Opening the lin...

6.1CVSS5.9AI score0.0019EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/06 12:24 a.m.6 views

SUSE CVE-2025-12744

A flaw was found in the ABRT daemon's handling of user-supplied mount information.ABRT copies up to 12 characters from an untrusted input and places them directly into a shell command docker inspect %s without proper validation. An unprivileged local user can craft a payload that injects shell...

8.8CVSS6.7AI score0.00585EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.4 views

SUSE CVE-2025-40219

In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Fix race between SR-IOV enable/disable and hotplug Commit 05703271c3cd "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV" tried to fix a race between the VF removal inside sriovdelvfs and concurrent...

6.6CVSS5.7AI score0.00171EPSS
Exploits0References36
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.6 views

SUSE CVE-2025-40220

In the Linux kernel, the following vulnerability has been resolved: fuse: fix livelock in synchronous file put from fuseblk workers I observed a hang when running generic/323 against a fuseblk server. This test opens a file, initiates a lot of AIO writes to that file descriptor, and closes the fi...

6.1CVSS6.5AI score0.00167EPSS
Exploits0References28
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.11 views

SUSE CVE-2025-40221

In the Linux kernel, the following vulnerability has been resolved: media: pci: mg4b: fix uninitialized iio scan data Fix potential leak of uninitialized stack data to userspace by ensuring that the scan structure is zeroed before use...

6.3CVSS6.5AI score0.00161EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.8 views

SUSE CVE-2025-55753

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

6.5CVSS7.3AI score0.00417EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.7 views

SUSE CVE-2025-58098

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

6.5CVSS7AI score0.01527EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.8 views

SUSE CVE-2025-59775

Server-Side Request Forgery SSRF vulnerability in Apache HTTP Server on Windows with AllowEncodedSlashes On and MergeSlashes Off allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content Users are recommended to upgrade to version 2.4.66, which fixes...

7.5CVSS6.6AI score0.00784EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.7 views

SUSE CVE-2025-65082

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server through environment variables set via the Apache configuration unexpectedly superseding variables calculated by the server for CGI programs. This issue affects Apache HTTP Server from 2.4.0 through...

5.5CVSS6.7AI score0.00771EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.5 views

SUSE CVE-2025-66200

moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65. Users are...

6.2CVSS6.7AI score0.00591EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2025/12/06 12:23 a.m.8 views

SUSE CVE-2025-66453

Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed function, it might lead to high CPU consumption and a potential Denial of Service. Small...

5.3CVSS6.8AI score0.00235EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/12/05 2:26 p.m.8 views

SUSE CVE-2025-32898

The KDE Connect verification-code protocol before 2025-04-18 uses only 8 characters and therefore allows brute-force attacks. This affects KDE Connect before 1.33.0 on Android, KDE Connect before 25.04 on desktop, KDE Connect before 0.5 on iOS, Valent before 1.0.0.alpha.47, and GSConnect before 5...

4.7CVSS7AI score0.00137EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/05 2:26 p.m.4 views

SUSE CVE-2025-32899

In KDE Connect before 1.33.0 on Android, a packet can be crafted that causes two paired devices to unpair. Specifically, it is an invalid discovery packet sent over broadcast UDP...

4.3CVSS6.9AI score0.00166EPSS
Exploits0References3
Total number of security vulnerabilities59855