Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/12/05 2:26 p.m.•5 views

SUSE CVE-2025-32900

In the KDE Connect information-exchange protocol before 2025-04-18, a packet can be crafted to temporarily change the displayed information about a device, because broadcast UDP is used. This affects KDE Connect before 1.33.0 on Android, KDE Connect before 25.04 on desktop, KDE Connect before 0.5...

4.3CVSS6.7AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 2:26 p.m.•5 views

SUSE CVE-2025-32901

In KDE Connect before 1.33.0 on Android, malicious device IDs sent via broadcast UDP could cause an application crash...

4.3CVSS7AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 2:25 p.m.•5 views

SUSE CVE-2025-43458

This issue was addressed through improved state management. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash...

4.3CVSS6.3AI score0.00562EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/05 2:25 p.m.•5 views

SUSE CVE-2025-66270

The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This affects KDE Connect before 25.12 on desktop, KDE Connect before 0.5.4 on iOS, KDE Connect before 1.34.4 on Android, GSConnect before 68, and Valent before 1.0.0.alpha.49...

4.7CVSS7AI score0.00185EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 2:25 p.m.•8 views

SUSE CVE-2025-66287

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling...

8.8CVSS6.7AI score0.004EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/05 12:45 a.m.•17 views

SUSE CVE-2025-2486

The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, possibly allowing bypass of Secure Boot constraints. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some previous versions inserted a secure-boot-based...

8.8CVSS7AI score0.00113EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:44 a.m.•4 views

SUSE CVE-2025-10158

A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue...

4.3CVSS6.9AI score0.00289EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/05 12:43 a.m.•3 views

SUSE CVE-2025-11082

A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the component Linker. Executing manipulation can lead to heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be use...

3.3CVSS5.2AI score0.00234EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2025/12/05 12:43 a.m.•3 views

SUSE CVE-2025-13086

Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7alpha1 through 2.7rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client...

7.5CVSS7.7AI score0.00621EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2025/12/05 12:43 a.m.•4 views

SUSE CVE-2025-13372

An issue was discovered in 5.2 before 5.2.9, 5.1 before 5.1.15, and 4.2 before 4.2.27. FilteredRelation is subject to SQL injection in column aliases, using a suitably crafted dictionary, with dictionary expansion, as the kwargs passed to QuerySet.annotate or QuerySet.alias on PostgreSQL. Earlier...

4.3CVSS8AI score0.00904EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/05 12:43 a.m.•7 views

SUSE CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

5.5CVSS6.5AI score0.00132EPSS
Exploits1References5
SUSE CVE
SUSE CVE
•added 2025/12/05 12:43 a.m.•3 views

SUSE CVE-2025-13946

MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service...

5.5CVSS6.8AI score0.00126EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/12/05 12:42 a.m.•6 views

SUSE CVE-2025-13947

A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...

7.4CVSS6AI score0.00282EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/05 12:42 a.m.•5 views

SUSE CVE-2025-13992

Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.7CVSS6.3AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•11 views

SUSE CVE-2025-40214

In the Linux kernel, the following vulnerability has been resolved: afunix: Initialise sccindex in unixaddedge. Quang Le reported that the AFUNIX GC could garbage-collect a receive queue of an alive in-flight socket, with a nice repro. The repro consists of three stages. 1 1-a. Create a single...

7CVSS6.4AI score0.00171EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•4 views

SUSE CVE-2025-40215

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete x-tunnel as we delete x The ipcomp fallback tunnels currently get deleted from the various lists and hashtables as the last user state that needed that fallback is destroyed not deleted. If a reference to that user...

7CVSS6.3AI score0.00167EPSS
Exploits0References30
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•4 views

SUSE CVE-2025-40216

In the Linux kernel, the following vulnerability has been resolved: iouring/rsrc: don't rely on user vaddr alignment There is no guaranteed alignment for user pointers, however the calculation of an offset of the first page into a folio after coalescing uses some weird bit mask logic, get rid of ...

6.5AI score0.00161EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•5 views

SUSE CVE-2025-40222

In the Linux kernel, the following vulnerability has been resolved: tty: serial: sh-sci: fix RSCI FIFO overrun handling The receive error handling code is shared between RSCI and all other SCIF port types, but the RSCI overrunreg is specified as a memory offset, while for other SCIF types it is a...

6.7AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•3 views

SUSE CVE-2025-40223

In the Linux kernel, the following vulnerability has been resolved: most: usb: Fix use-after-free in hdmdisconnect hdmdisconnect calls mostderegisterinterface, which eventually unregisters the MOST interface device with deviceunregisteriface-dev. If that drops the last reference, the device core...

5.5CVSS6.6AI score0.00179EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•3 views

SUSE CVE-2025-40224

In the Linux kernel, the following vulnerability has been resolved: hwmon: cgbc-hwmon Add missing NULL check after devmkzalloc The driver allocates memory for sensor data using devmkzalloc, but did not check if the allocation succeeded. In case of memory allocation failure, dereferencing the NULL...

6.4AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•5 views

SUSE CVE-2025-40225

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix kernel panic on partial unmap of a GPU VA region This commit address a kernel panic issue that can happen if Userspace tries to partially unmap a GPU virtual region aka drmgpuva. The VMBIND interface allows parti...

5.5CVSS6.2AI score0.00172EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•4 views

SUSE CVE-2025-40226

In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Account for failed debug initialization When the SCMI debug subsystem fails to initialize, the related debug root will be missing, and the underlying descriptor will be NULL. Handle this fault condition in the...

5.5CVSS6.5AI score0.00174EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•3 views

SUSE CVE-2025-40227

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc commit test ctx always The damonctx for testing online DAMON parameters commit inputs is deallocated only when the test fails. This means memory is leaked for every successful online DAMON parameters commi...

6.5AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•7 views

SUSE CVE-2025-40228

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: catch commit test ctx alloc failure Patch series "mm/damon/sysfs: fix commit test damonctx deallocation". DAMON sysfs interface dynamically allocates and uses a damonctx object for testing if given inputs for onli...

6.5AI score0.00161EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40229

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: fix potential memory leak by cleaning opsfilter in damondestroyscheme Currently, damondestroyscheme only cleans up the filter list but leaves opsfilter untouched, which could lead to memory leaks when a scheme is...

6.4AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•4 views

SUSE CVE-2025-40230

In the Linux kernel, the following vulnerability has been resolved: mm: prevent poison consumption when splitting THP When performing memory error injection on a THP Transparent Huge Page mapped to userspace on an x86 server, the kernel panics with the following trace. The expected behavior is to...

5.5CVSS6.7AI score0.00186EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40231

In the Linux kernel, the following vulnerability has been resolved: vsock: fix lock inversion in vsockassigntransport Syzbot reported a potential lock inversion deadlock between vsockregistermutex and sklock-AFVSOCK when vsocklinger is called. The issue was introduced by commit 687aa0c5581b "vsoc...

5.5CVSS6.4AI score0.00179EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40232

In the Linux kernel, the following vulnerability has been resolved: rv: Fully convert enabledmonitors to use listhead as iterator The callbacks in enabledmonitorsseqops are inconsistent. Some treat the iterator as struct rvmonitor , while others treat the iterator as struct listhead . This causes...

6.5AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•6 views

SUSE CVE-2025-40233

In the Linux kernel, the following vulnerability has been resolved: ocfs2: clear extent cache after moving/defragmenting extents The extent map cache can become stale when extents are moved or defragmented, causing subsequent operations to see outdated extent flags. This triggers a BUGON in...

5.5CVSS6.4AI score0.00184EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40234

In the Linux kernel, the following vulnerability has been resolved: platform/x86: alienware-wmi-wmax: Fix NULL pointer dereference in sleep handlers Devices without the AWCC interface don't initialize awcc. Add a check before dereferencing it in sleep handlers...

6.5AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40235

In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...

5.5CVSS6.3AI score0.00172EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40236

In the Linux kernel, the following vulnerability has been resolved: virtio-net: zero unused hash fields When GSO tunnel is negotiated virtionethdrtnlfromskb tries to initialize the tunnel metadata but forget to zero unused rxhash fields. This may leak information to another side. Fixing this by...

6.3AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•4 views

SUSE CVE-2025-40237

In the Linux kernel, the following vulnerability has been resolved: fs/notify: call exportfsencodefid with sumount Calling intotifyshowfdinfo on fd watching an overlayfs inode, while the overlayfs is being unmounted, can lead to dereferencing NULL ptr. This issue was found by syzkaller. Race...

5.5CVSS6.3AI score0.00174EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40238

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec cleanup over MPV device When we do mlx5edetachnetdev we eventually disable blocking events notifier, among those events are IPsec MPV events from IB to core. So before disabling those blocking events, make sur...

5.5CVSS6.4AI score0.00172EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40239

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: always set shared-phydev for LAN8814 Currently, during the LAN8814 PTP probe shared-phydev is only set if PTP clock gets actually set, otherwise the function will return before setting it. This is an issue as...

5.5CVSS6.5AI score0.00172EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40240

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

5.5CVSS6.7AI score0.00184EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•6 views

SUSE CVE-2025-40241

In the Linux kernel, the following vulnerability has been resolved: erofs: fix crafted invalid cases for encoded extents Robert recently reported two corrupted images that can cause system crashes, which are related to the new encoded extents introduced in Linux 6.15: - The first one 1 has plen !...

6.3AI score0.00161EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•4 views

SUSE CVE-2025-40242

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix unlikely race in gdlmputlock In gdlmputlock, there is a small window of time in which the DFLUNMOUNT flag has been set but the lockspace hasn't been released, yet. In that window, dlm may still call gdlmast and gdlmbast...

7CVSS6.4AI score0.00174EPSS
Exploits0References27
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40243

In the Linux kernel, the following vulnerability has been resolved: hfs: fix KMSAN uninit-value issue in hfsfindsetzerobits The syzbot reported issue in hfsfindsetzerobits: ===================================================== BUG: KMSAN: uninit-value in hfsfindsetzerobits+0x74d/0xb60...

6.7AI score0.00184EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40244

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix KMSAN uninit-value issue in hfsplusextcacheextent The syzbot reported issue in hfsplusextcacheextent: 70.194323 T9350 BUG: KMSAN: uninit-value in hfsplusextcacheextent+0x7d0/0x990 70.195022 T9350...

5.5CVSS6.4AI score0.00184EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•7 views

SUSE CVE-2025-40245

In the Linux kernel, the following vulnerability has been resolved: nios2: ensure that memblock.currentlimit is set when setting pfn limits On nios2, with CONFIGFLATMEM set, the kernel relies on memblockgetcurrentlimit to determine the limits of memmap, in particular for maxlowpfn. Unfortunately,...

6.4AI score0.00179EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40246

In the Linux kernel, the following vulnerability has been resolved: xfs: fix out of bounds memory read error in symlink repair xfs/286 produced this report on my test fleet: ================================================================== BUG: KFENCE: out-of-bounds read in memcpyorig+0x54/0x110...

5.5CVSS6.8AI score0.00172EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•4 views

SUSE CVE-2025-40247

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix pgtable prealloc error path The following splat was reported: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010 Mem abort info: ESR = 0x0000000096000004 EC = 0x25: DABT current EL, ...

6.4AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40248

In the Linux kernel, the following vulnerability has been resolved: vsock: Ignore signal/timeout on connect if already established During connect, acting on a signal/timeout by disconnecting an already established socket leads to several issues: 1. connect invoking vsocktransportcancelpkt -...

5.5CVSS6.4AI score0.00203EPSS
Exploits0References26
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40249

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: make sure the cdev fd is still active before emitting events With the final call to fput on a file descriptor, the release action may be deferred and scheduled on a work queue. The reference count of that descriptor i...

5.5CVSS6.5AI score0.00162EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•6 views

SUSE CVE-2025-40250

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clean up only new IRQ glue on requestirq failure The mlx5irqalloc function can inadvertently free the entire rmap and end up in a crash1 when the other threads tries to access this, when requestirq fails due to exhauste...

5.5CVSS6.5AI score0.00178EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•3 views

SUSE CVE-2025-40251

In the Linux kernel, the following vulnerability has been resolved: devlink: rate: Unset parent pointer in devlratenodesdestroy The function devlratenodesdestroy is documented to "Unset parent for all rate objects". However, it was only calling the driver-specific rateleafparentset or...

5.5CVSS6.4AI score0.00127EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40252

In the Linux kernel, the following vulnerability has been resolved: net: qlogic/qede: fix potential out-of-bounds read in qedetpacont and qedetpaend The loops in 'qedetpacont' and 'qedetpaend', iterate over 'cqe-lenlist' using only a zero-length terminator as the stopping condition. If the...

5.5CVSS6.4AI score0.00179EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•5 views

SUSE CVE-2025-40253

In the Linux kernel, the following vulnerability has been resolved: s390/ctcm: Fix double-kfree The function 'mpcrcvdsweepreqmpcginfo' is called conditionally from function 'ctcmpcunpackskb'. It frees passed mpcginfo. After that a call to function 'kfree' in function 'ctcmpcunpackskb' frees it...

5.5CVSS6.5AI score0.00184EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/05 12:25 a.m.•4 views

SUSE CVE-2025-40254

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields The validation of the setnsh... action is completely wrong. It runs through the nshkeyputfromnlattr function that is the same function that validates NSH keys...

5.5CVSS6.5AI score0.00207EPSS
Exploits0References20
Total number of security vulnerabilities59855