Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•3 views

SUSE CVE-2025-40095

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: frndis: Refactor bind path to use free After an bind/unbind cycle, the rndis-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•3 views

SUSE CVE-2025-40096

In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix potential double free in drmschedjobaddresvdependencies When adding dependencies with drmschedjobadddependency, that function consumes the fence reference both on success and failure, so in the latter case the...

5.8CVSS6.7AI score0.00183EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•4 views

SUSE CVE-2025-40097

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fix missing pointer check in hdacomponentmanagerinit function The componentmatchadd function may assign the 'matchptr' pointer the value ERRPTR-ENOMEM, which will subsequently be dereferenced. The call stack leading to...

5.5CVSS6.5AI score0.00181EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•6 views

SUSE CVE-2025-40098

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41getacpimutestate Return value of a function acpievaluatedsm is dereferenced without checking for NULL, but it is usually checked for this function. acpievaluatedsm may...

5.5CVSS6.4AI score0.00168EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•4 views

SUSE CVE-2025-40099

In the Linux kernel, the following vulnerability has been resolved: cifs: parsedfsreferrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTLDFSGETREFERRALS - reply smaller than sizeofstruct getdfsreferralrsp - reply with number of referrals smaller than...

6.3CVSS6.5AI score0.00183EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/31 12:25 a.m.•2 views

SUSE CVE-2025-40100

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not assert we found block group item when creating free space tree Currently, when building a free space tree at populatefreespacetree, if we are not using the block group tree feature, we always expect to find block...

5.5CVSS6.4AI score0.00183EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/31 12:24 a.m.•4 views

SUSE CVE-2025-40101

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory leaks when rejecting a non SINGLE data profile without an RST At the end of btrfsloadblockgroupzoneinfo the first thing we do is to ensure that if the mapping type is not a SINGLE one and there is no RAID stripe...

3.3CVSS6.6AI score0.00181EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/10/31 12:24 a.m.•5 views

SUSE CVE-2025-40102

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Prevent access to vCPU events before init Another day, another syzkaller bug. KVM erroneously allows userspace to pend vCPU events for a vCPU that hasn't been initialized yet, leading to KVM interpreting a bunch of...

7AI score0.00181EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/10/31 12:24 a.m.•9 views

SUSE CVE-2025-40103

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix refcount leak for cifssbtlink Fix three refcount inconsistency issues related to cifssbtlink. Comments for cifssbtlink state that cifsputtlink needs to be called after successful calls to cifssbtlink. Three calls...

3.3CVSS6.6AI score0.00188EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/31 12:24 a.m.•4 views

SUSE CVE-2025-40104

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...

6.5AI score0.00183EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/10/31 12:24 a.m.•6 views

SUSE CVE-2025-55754

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an...

5.3CVSS6.9AI score0.09917EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/10/30 12:39 a.m.•3 views

SUSE CVE-2023-7324

In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix possible addldescptr out-of-bounds accesses Sanitize possible addldescptr out-of-bounds accesses in sesenclosuredataprocess...

5.5CVSS6.6AI score0.00193EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:30 a.m.•3 views

SUSE CVE-2025-12380

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability was fixed in Firefox 144.0.2...

8.8CVSS7.3AI score0.00308EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/30 12:29 a.m.•7 views

SUSE CVE-2025-30189

When cache is enabled, some passdb/userdb drivers incorrectly cache all users with same cache key, causing wrong cached information to be used for these users. After cached login, all subsequent logins are for same user. Install fixed version or disable caching either globally or for the impacted...

6.4CVSS6.7AI score0.00548EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/10/30 12:25 a.m.•4 views

SUSE CVE-2025-40033

In the Linux kernel, the following vulnerability has been resolved: remoteproc: pru: Fix potential NULL pointer dereference in prurprocsetctable prurprocsetctable accessed rproc-priv before the ISERRORNULL check, which could lead to a null pointer dereference. Move the pru assignment, ensuring we...

5.5CVSS6.4AI score0.00197EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/30 12:25 a.m.•6 views

SUSE CVE-2025-40035

In the Linux kernel, the following vulnerability has been resolved: Input: uinput - zero-initialize uinputffuploadcompat to avoid info leak Struct ffeffectcompat is embedded twice inside uinputffuploadcompat, contains internal padding. In particular, there is a hole after struct ffreplay to satis...

5.5CVSS6.5AI score0.00211EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/10/30 12:25 a.m.•12 views

SUSE CVE-2025-40037

In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after free in simplefbdetachgenpds The pmdomain cleanup can not be devres managed as it uses struct simplefbpar which is allocated within struct fbinfo by framebufferalloc. This allocation is explicitly...

5.5CVSS6.4AI score0.00194EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/10/30 12:25 a.m.•7 views

SUSE CVE-2025-40038

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g. because KVM is running with nrips=false. SVM must decode and emulate...

5.5CVSS6.4AI score0.00197EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/10/30 12:25 a.m.•2 views

SUSE CVE-2025-40041

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Sign-extend struct ops return values properly The nsbpfqdisc selftest triggers a kernel panic: Oops1: CPU 0 Unable to handle kernel paging request at virtual address 0000000000741d58, era == 90000000851b5ac0, ra =...

5.5CVSS6.4AI score0.00182EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/30 12:25 a.m.•3 views

SUSE CVE-2025-40051

In the Linux kernel, the following vulnerability has been resolved: vhost: vringh: Modify the return value check The return value of copyfromiter and copytoiter can't be negative, check whether the copied lengths are equal...

5.5CVSS6.5AI score0.00197EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/30 12:24 a.m.•3 views

SUSE CVE-2025-40054

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF issue in f2fsmergepagebio As JY reported in bugzilla 1, Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 pc : 0xffffffe51d249484 f2fsiscpguaranteed+0x70/0x98 lr : 0xffffffe51d24ad...

5.5CVSS6.5AI score0.00181EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/30 12:24 a.m.•3 views

SUSE CVE-2025-40067

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/30 12:24 a.m.•4 views

SUSE CVE-2025-40083

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue To prevent a potential crash in aggdequeue net/sched/schqfq.c when cl-qdisc-ops-peekcl-qdisc returns NULL, we check the return value before using it, similar to the existing approac...

5.5CVSS6.7AI score0.00188EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/30 12:24 a.m.•3 views

SUSE CVE-2025-40084

In the Linux kernel, the following vulnerability has been resolved: ksmbd: transportipc: validate payload size before reading handle handleresponse dereferences the payload as a 4-byte handle without verifying that the declared payload size is at least 4 bytes. A malformed or truncated message fr...

6.1CVSS6.4AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/30 12:24 a.m.•3 views

SUSE CVE-2025-40085

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL pointer deference in trytoregistercard In trytoregistercard, the return value of usbifnumtoif is passed directly to usbinterfaceclaimed without a NULL check, which will lead to a NULL pointer dereference...

6.1CVSS6.4AI score0.00188EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/30 12:24 a.m.•5 views

SUSE CVE-2025-61099

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaqueinfodetail function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LS Update packet...

5.9CVSS7.1AI score0.00457EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•4 views

SUSE CVE-2025-61100

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospfopaquelsadump function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS under specific malformed LSA conditions...

5.9CVSS7.2AI score0.00457EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•5 views

SUSE CVE-2025-61101

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinkrmtitfaddr function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

5.9CVSS7.1AI score0.00457EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•6 views

SUSE CVE-2025-61102

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinkadjsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

5.9CVSS7.1AI score0.00457EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•6 views

SUSE CVE-2025-61103

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinklanadjsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

6.5CVSS7.1AI score0.00582EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•8 views

SUSE CVE-2025-61104

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyunknowntlv function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

6.5CVSS7.1AI score0.00582EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•6 views

SUSE CVE-2025-61106

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextprefprefsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

6.5CVSS7.1AI score0.00582EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•6 views

SUSE CVE-2025-61107

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextprefprefsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LSA Update packet...

6.5CVSS7.1AI score0.00582EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2025/10/30 12:23 a.m.•3 views

SUSE CVE-2025-62727

Starlette is a lightweight ASGI framework/toolkit. Starting in version 0.39.0 and prior to version 0.49.1 , an unauthenticated attacker can send a crafted HTTP Range header that triggers quadratic-time processing in Starlette's FileResponse Range parsing/merging logic. This enables CPU exhaustion...

7.5CVSS5.6AI score0.00638EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/10/29 1:53 a.m.•5 views

SUSE CVE-2023-53702

In the Linux kernel, the following vulnerability has been resolved: s390/crypto: use vector instructions only if available for ChaCha20 Commit 349d03ffd5f6 "crypto: s390 - add crypto library interface for ChaCha20" added a library interface to the s390 specific ChaCha20 implementation. However no...

6.2AI score0.00193EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:44 a.m.•3 views

SUSE CVE-2025-12343

A flaw was found in FFmpeg's TensorFlow backend within the libavfilter/dnnbackendtf.c source file. The issue occurs in the dnnexecutemodeltf function, where a task object is freed multiple times in certain error-handling paths. This redundant memory deallocation can lead to a double-free conditio...

5.5CVSS7AI score0.00149EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•3 views

SUSE CVE-2025-40025

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer for non inode dnode As syzbot reported below: ------------ cut here ------------ kernel BUG at fs/f2fs/file.c:1243! Oops: invalid opcode: 0000 1 SMP KASAN NOPTI CPU: 0 UID: 0 PID: 5354...

6.1CVSS6.6AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•5 views

SUSE CVE-2025-40026

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Don't recheck L1 intercepts when completing userspace I/O When completing emulation of instruction that generated a userspace exit for I/O, don't recheck L1 intercepts as KVM has already finished that phase of instructi...

3.6CVSS6.5AI score0.00241EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•3 views

SUSE CVE-2025-40027

In the Linux kernel, the following vulnerability has been resolved: net/9p: fix double req put in p9fdcancelled Syzkaller reports a KASAN issue as below: general protection fault, probably for non-canonical address 0xfbd59c0000000021: 0000 1 PREEMPT SMP KASAN NOPTI KASAN: maybe wild-memory-access...

5.3CVSS6.3AI score0.00213EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•5 views

SUSE CVE-2025-40028

In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees the old bitmap via dbitmapfree. However, the driver calls dbitmapfree...

6.1CVSS6.4AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40029

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: Check return value of platformgetresource platformgetresource returns NULL in case of failure, so check its return value and propagate the error in order to prevent NULL pointer dereference...

5.5CVSS6.5AI score0.00202EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40030

In the Linux kernel, the following vulnerability has been resolved: pinctrl: check the return value of pinmuxops::getfunctionname While the API contract in docs doesn't specify it explicitly, the generic implementation of the getfunctionname callback from struct pinmuxops -...

5.5CVSS6.5AI score0.00207EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•3 views

SUSE CVE-2025-40031

In the Linux kernel, the following vulnerability has been resolved: tee: fix registershmhelper In registershmhelper, fix incorrect error handling for a call to ioviterextractpages. A case is missing for when ioviterextractpages only got some pages and return a number larger than 0, but not the...

5.5CVSS6.5AI score0.00194EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40032

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before release The fields dmachantx and dmachanrx of the struct pciepftest can be NULL even after EPF initialization. Then it is prudent to check that they have non-NUL...

4.4CVSS6.4AI score0.00197EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40034

In the Linux kernel, the following vulnerability has been resolved: PCI/AER: Avoid NULL pointer dereference in aerratelimit When platform firmware supplies error information to the OS, e.g., via the ACPI APEI GHES mechanism, it may identify an error source device that doesn't advertise an AER...

5.5CVSS6.3AI score0.00182EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40036

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix possible map leak in fastrpcputargs copytouser failure would cause an early return without cleaning up the fdlist, which has been updated by the DSP. This could lead to map leak. Fix this by redirecting to a...

5.5CVSS6.3AI score0.00197EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•6 views

SUSE CVE-2025-40039

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix race condition in RPC handle list access The 'sess-rpchandlelist' XArray manages RPC handles within a ksmbd session. Access to this list is intended to be protected by 'sess-rpclock' an rwsemaphore. However, the lockin...

5.3CVSS6.7AI score0.00124EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•3 views

SUSE CVE-2025-40040

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise syzkaller discovered the following crash: kernel BUG 44.607039 ------------ cut here ------------ 44.607422 kernel BUG at mm/userfaultfd.c:2067! 44.608148 Oops: invalid opcode: 000...

5.5CVSS6.2AI score0.00338EPSS
Exploits0References27
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40042

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference There is a critical race condition in kprobe initialization that can lead to NULL pointer dereference and kernel crash. 1135630.084782 Unable t...

5.5CVSS7AI score0.00207EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/29 12:25 a.m.•4 views

SUSE CVE-2025-40043

In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Add parameter validation for packet data Syzbot reported an uninitialized value bug in nciinitreq, which was introduced by commit 5aca7966d2a7 "Merge tag 'perf-tools-fixes-for-v6.17-2025-09-16' of...

6.3CVSS6.3AI score0.00202EPSS
Exploits0References19
Total number of security vulnerabilities59855