Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/11/07 12:24 a.m.•4 views

SUSE CVE-2025-60753

An issue was discovered in libarchive bsdtar before version 3.8.1 in function applysubstitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service Out-of-Memory crash...

5.5CVSS6.8AI score0.00157EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/11/07 12:24 a.m.•2 views

SUSE CVE-2025-62768

unknown...

7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/11/07 12:24 a.m.•7 views

SUSE CVE-2025-62769

unknown...

8.1CVSS7AI score
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/11/07 12:23 a.m.•8 views

SUSE CVE-2025-64458

An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8. NFKC normalization in Python is slow on Windows. As a consequence, django.http.HttpResponseRedirect, django.http.HttpResponsePermanentRedirect, and the shortcut django.shortcuts.redirect were subject to a...

7.5CVSS6.9AI score0.0193EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/11/07 12:23 a.m.•8 views

SUSE CVE-2025-64459

An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8. The methods QuerySet.filter, QuerySet.exclude, and QuerySet.get, and the class Q, are subject to SQL injection when using a suitably crafted dictionary, with dictionary expansion, as the connector argument...

9.1CVSS8AI score0.19396EPSS
Exploits10References4
SUSE CVE
SUSE CVE
•added 2025/11/06 12:28 a.m.•4 views

SUSE CVE-2025-10966

curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more...

6.8CVSS7.2AI score0.0039EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/11/06 12:28 a.m.•3 views

SUSE CVE-2025-31133

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.9AI score0.0067EPSS
Exploits2References28
SUSE CVE
SUSE CVE
•added 2025/11/06 12:24 a.m.•3 views

SUSE CVE-2025-52565

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container, an attacker can...

7.8CVSS6.7AI score0.00523EPSS
Exploits1References28
SUSE CVE
SUSE CVE
•added 2025/11/06 12:24 a.m.•5 views

SUSE CVE-2025-52881

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts we have also verified thi...

7.8CVSS6.8AI score0.00523EPSS
Exploits1References40
SUSE CVE
SUSE CVE
•added 2025/11/05 7:34 a.m.•9 views

SUSE CVE-2025-12060

The keras.utils.getfile API in Keras, when used with the extract=True option for tar archives, is vulnerable to a path traversal attack. The utility uses Python's tarfile.extractall function without the filter="data" feature. A remote attacker can craft a malicious tar archive containing special...

8.9CVSS8AI score0.00593EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/11/05 7:31 a.m.•4 views

SUSE CVE-2025-62876

A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4...

5.3CVSS6.8AI score0.00143EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/11/04 12:25 a.m.•2 views

SUSE CVE-2025-12464

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

6.2CVSS7.3AI score0.00165EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/11/04 12:24 a.m.•5 views

SUSE CVE-2025-40107

In the Linux kernel, the following vulnerability has been resolved: can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled This issue is similar to the vulnerability in the mcp251x driver, which was fixed in commit 03c427147b2d "can: mcp251x: fix resume fr...

5.5CVSS6.2AI score0.00183EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/11/04 12:24 a.m.•6 views

SUSE CVE-2025-57109

Kitware VTK Visualization Toolkit 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene node references, the application accesses string members of mesh objects that have been previously freed during actor import operations...

6.5CVSS7AI score0.00256EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/11/04 12:24 a.m.•3 views

SUSE CVE-2025-62507

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

9.8CVSS8.2AI score0.06867EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2025/11/03 12:50 a.m.•7 views

SUSE CVE-2025-6075

If the value passed to os.path.expandvars is user-controlled a performance degradation is possible when expanding environment variables...

2.5CVSS6.9AI score0.00136EPSS
Exploits0References32
SUSE CVE
SUSE CVE
•added 2025/11/01 4:2 a.m.•11 views

SUSE CVE-2025-6176

Scrapy versions up to 2.13.2 are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of...

7.5CVSS6.7AI score0.00509EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/11/01 3:53 a.m.•6 views

SUSE CVE-2025-40105

In the Linux kernel, the following vulnerability has been resolved: vfs: Don't leak disconnected dentries on umount When user calls openbyhandleat on some inode that is not cached, we will create disconnected dentry for it. If such dentry is a directory, exportfsdecodefhraw will then try to conne...

3.3CVSS6.3AI score0.00193EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/11/01 3:53 a.m.•6 views

SUSE CVE-2025-40106

In the Linux kernel, the following vulnerability has been resolved: comedi: fix divide-by-zero in comedibufmunge The comedibufmunge function performs a modulo operation async-mungechan %= async-cmd.chanlistlen without first checking if chanlistlen is zero. If a user program submits a command with...

5.5CVSS6.5AI score0.00193EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/11/01 3:50 a.m.•4 views

SUSE CVE-2025-62875

An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1...

5.5CVSS6.3AI score0.00158EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:35 a.m.•3 views

SUSE CVE-2025-10934

GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.6AI score0.00452EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/10/31 12:35 a.m.•4 views

SUSE CVE-2025-11232

To trigger the issue, three configuration parameters must have specific settings: "hostname-char-set" must be left at the default setting, which is "^A-Za-z0-9.-"; "hostname-char-replacement" must be empty the default; and "ddns-qualifying-suffix" must NOT be empty the default is empty. DDNS...

7.5CVSS6.6AI score0.00387EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12428

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.7AI score0.06776EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12429

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.7AI score0.00296EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12430

Object lifecycle issue in Media in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.6AI score0.00305EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12431

Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: High...

6.5CVSS6.5AI score0.00184EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12432

Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.1AI score0.0023EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•2 views

SUSE CVE-2025-12433

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

4.3CVSS6.6AI score0.00278EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12434

Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS6.5AI score0.00178EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•2 views

SUSE CVE-2025-12435

Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6.5AI score0.00245EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12436

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. Chromium security severity: Medium...

5.9CVSS6.3AI score0.00164EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12437

Use after free in PageInfo in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS7.3AI score0.00226EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12438

Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.3AI score0.00248EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12439

Inappropriate implementation in App-Bound Encryption in Google Chrome on Windows prior to 142.0.7444.59 allowed a local attacker to obtain potentially sensitive information from process memory via a malicious file. Chromium security severity: Medium...

5.5CVSS6.1AI score0.00082EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12440

Inappropriate implementation in Autofill in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS6.2AI score0.00201EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12441

Out of bounds read in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.6AI score0.00195EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12443

Out of bounds read in WebXR in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.6AI score0.00217EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•3 views

SUSE CVE-2025-12444

Incorrect security UI in Fullscreen UI in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS6.5AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12445

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Low...

6.5CVSS6.5AI score0.00139EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12446

Incorrect security UI in SplitView in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. Chromium security severity: Low...

4.2CVSS6.5AI score0.0016EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:34 a.m.•4 views

SUSE CVE-2025-12447

Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS6.5AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•4 views

SUSE CVE-2025-40086

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Don't allow evicting of BOs in same VM in array of VM binds An array of VM binds can potentially evict other buffer objects BOs within the same VM under certain conditions, which may lead to NULL pointer dereferences late...

6.1CVSS6.9AI score0.0017EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•3 views

SUSE CVE-2025-40087

In the Linux kernel, the following vulnerability has been resolved: NFSD: Define a proclayoutcommit for the FlexFiles layout type Avoid a crash if a pNFS client should happen to send a LAYOUTCOMMIT operation on a FlexFiles layout...

5.5CVSS6.5AI score0.00193EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•1 views

SUSE CVE-2025-40088

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger the issue: 117.317703 T9855 ================================================================== 117.318353 T9855 BUG: KASAN:...

5.3CVSS6.5AI score0.00193EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•5 views

SUSE CVE-2025-40089

In the Linux kernel, the following vulnerability has been resolved: cxl/features: Add check for no entries in cxlfeatureinfo cxl EDAC calls cxlfeatureinfo to get the feature information and if the hardware has no Features support, cxlfs may be passed in as NULL. 51.957498 BUG: kernel NULL pointer...

5.5CVSS6.1AI score0.0017EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•5 views

SUSE CVE-2025-40090

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix recursive locking in RPC handle list access Since commit 305853cce3794 "ksmbd: Fix race condition in RPC handle list access", ksmbdsessionrpcmethod attempts to lock sess-rpclock. This causes hung connections / tasks wh...

5.5CVSS6.3AI score0.00138EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•4 views

SUSE CVE-2025-40091

In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix too early devlinkfree in ixgberemove Since ixgbeadapter is embedded in devlink, calling devlinkfree prematurely in the ixgberemove path can lead to UAF. Move devlinkfree to the end. KASAN report: BUG: KASAN:...

6.3CVSS6.5AI score0.0017EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•4 views

SUSE CVE-2025-40092

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Refactor bind path to use free After an bind/unbind cycle, the ncm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

4.4CVSS6.4AI score0.00188EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•5 views

SUSE CVE-2025-40093

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fecm: Refactor bind path to use free After an bind/unbind cycle, the ecm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•5 views

SUSE CVE-2025-40094

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

4.3CVSS6.4AI score0.00188EPSS
Exploits0References3
Total number of security vulnerabilities59855