Lucene search
K
SusecveRecent

59178 matches found

SUSE CVE
SUSE CVE
•added 4 days ago•10 views

SUSE CVE-2026-53300

In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potential DMA use-after-free issue 1. If netcxmitntmpcmd times out and returns an error, the pending command is not explicitly aborted, while...

7.8CVSS6AI score0.00124EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53301

In the Linux kernel, the following vulnerability has been resolved: reset: amlogic: t7: Fix null reset ops Fix missing reset ops causing kernel null pointer dereference. This SOC's reset is currently not used yet...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53302

In the Linux kernel, the following vulnerability has been resolved: crypto: eip93 - fix hmac setkey algo selection eip93hmacsetkey allocates a temporary ahash transform for computing HMAC ipad/opad key material. The allocation uses the driver-specific cradrivername e.g. "sha256-eip93" but passes...

5.9AI score0.00166EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53303

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extensionlist reading with sblock in f2fssbishow In f2fssbishow, the extensionlist, extensioncount and hotextcount are read without holding sbi-sblock. If a concurrent sysfs store modifies the extension list via...

5.8AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53304

In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Resolve soft lockup issue when opening /dev/sgX The parameter defreservedsize defines the default buffer size reserved for each Sgfd and should be restricted to a range between 0 and 1,048,576 see...

5.9AI score0.00185EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2026-53305

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ps883x: Fix Oops at unbind When trying to unbind a device in order to bind to it vfio-platform as: echo bc0000.geniqup /sys/bus/platform/devices/bc0000.geniqup/driver/unbind I get the following Oops: 436.478639 Unable...

5.8AI score0.00166EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53306

In the Linux kernel, the following vulnerability has been resolved: tty: hvciucv: fix off-by-one in number of supported devices MAXHVCIUCVLINES == HVCALLOCTTYADAPTERS == 8. This is the number of entries in: static struct hvciucvprivate hvciucvtableMAXHVCIUCVLINES; Sometimes hvciucvtable is limite...

5.8AI score0.00177EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53307

In the Linux kernel, the following vulnerability has been resolved: pinctrl: pinconf-generic: Fully validate 'pinmux' property The pinconfgenericparsedtpinmux assumes that the 'pinmux' property is not empty when present. This might be not true. With that, the allocator will give a special value i...

5.8AI score0.00154EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53308

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interface for allocating workqueue to fix two bugs at the same time: 1. Driver leaks the memory on remove, because the workqueue is not destroyed. 2...

5.8AI score0.00145EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53309

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlmmatchregions region comparison The local-vs-remote region comparison loop uses '=' instead of '', causing it to read one entry past the valid range of qrregions. The other loops in the same functio...

9.8CVSS5.8AI score0.00404EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53310

In the Linux kernel, the following vulnerability has been resolved: soc/tegra: cbb: Fix cross-fabric target timeout lookup When a fabric receives an error interrupt, the error may have occurred on a different fabric. The target timeout lookup was using the wrong base address cbb-regs with offsets...

5.8AI score0.00154EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53311

In the Linux kernel, the following vulnerability has been resolved: fuse: fix uninit-value in fusedentryrevalidate fusedentryrevalidate may be called with a dentry that didn't had -dtime initialised. The issue was found with KMSAN, where lookupopen calls dalloc, followed by drevalidate, as shown...

5.7AI score0.00154EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53312

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.9AI score0.00154EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.8AI score0.00145EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•5 views

SUSE CVE-2026-53314

In the Linux kernel, the following vulnerability has been resolved: padata: Put CPU offline callback in ONLINE section to allow failure syzbot reported the following warning: DEAD callback error for CPU1 WARNING: kernel/cpu.c:1463 at cpudown+0x759/0x1020 kernel/cpu.c:1463, CPU0: syz.0.1960/14614 ...

5.8AI score0.00161EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53315

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in rascoregetutcsecondtimestamp rascoregetutcsecondtimestamp retrieves the current UTC timestamp in seconds since the Unix epoch through a platform-specific RAS system callback and is used for...

5.8AI score0.00148EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53316

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in rascorerasinterruptdetected Fixes a NULL pointer dereference when rascore is NULL and rascore-dev is accessed in the error path. Reported by: Dan Carpenter...

5.8AI score0.00145EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53317

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: Place upper limit on station AID Any station configured with an AID over 20 causes a firmware crash. This situation occurred in our testing using an AP interface on 7922 hardware, with a modified hostapd,...

5.8AI score0.00157EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53318

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925txcheckaggr Move the NULL check for 'sta' before dereferencing it to prevent a possible crash...

5.8AI score0.00157EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2026-53319

In the Linux kernel, the following vulnerability has been resolved: blk-wbt: remove WARNONONCE from wbtinitenabledefault wbtinitenabledefault uses WARNONONCE to check for failures from wbtalloc and wbtinit. However, both are expected failure paths: - wbtalloc can return NULL under memory pressure...

5.8AI score0.00145EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53320

In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject zero bdoblocknr in nilfsioctlmarkblocksdirty nilfsioctlmarkblocksdirty uses bdoblocknr to detect dead blocks by comparing it with the current block number bdblocknr. If they differ, the block is considered dead and...

5.8AI score0.00173EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•6 views

SUSE CVE-2026-53321

In the Linux kernel, the following vulnerability has been resolved: iouring/napi: cap busypollto 10 msec Currently there's no cap on the maximum amount of time that napi is allowed to poll if no events are found, which can lead to kernel complaints on a task being stuck as there's no conditional...

5.8AI score0.00154EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 4 days ago•9 views

SUSE CVE-2026-53322

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disabling function On device shutdown, make vfiopcicoreclosedevice call vfiopcidmabufcleanup before the function is disabled via vfiopcicoredisable. This ensures that all access via DMABUFs is...

8.8CVSS5.8AI score0.00174EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53323

In the Linux kernel, the following vulnerability has been resolved: net: dsa: remove redundant netdevlockops from conduit ethtool ops DSA replaces the conduit master device's ethtoolops with its own wrappers that aggregate stats from both the conduit and DSA switch ports. Taking the lock again...

5.8AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•7 views

SUSE CVE-2026-53324

In the Linux kernel, the following vulnerability has been resolved: net: mana: Use pciname for debugfs directory naming Use pcinamepdev for the per-device debugfs directory instead of hardcoded "0" for PFs and pcislotnamepdev-slot for VFs. The previous approach had two issues: 1. pcislotname...

5.8AI score0.00158EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•6 views

SUSE CVE-2026-6658

A vulnerability in jupyter/nbconvert versions tag. This vulnerability impacts any server using nbconvert to render notebooks as HTML, allowing attackers to execute arbitrary JavaScript in the context of users viewing the HTML export...

5.4CVSS6.3AI score0.00134EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•4 views

SUSE CVE-2026-10517

A flaw was found in Clair. The fetcher component makes outbound HTTP requests to attacker-supplied URIs from manifest layer descriptors without IP or scheme filtering. When PSK authentication is not configured opt-in, not enforced by default, an unauthenticated attacker can submit a manifest with...

5.8CVSS5.7AI score0.00292EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•6 views

SUSE CVE-2026-11625

Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when the functional interface is used, then the internal state for the PRNG is shared across processes and identical random streams will be produced...

7.5CVSS5.7AI score0.00309EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-11702

Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. When an object is initialised before forking, then the internal state for the PRNG is shared across processes and identical random streams will be produced. Secrets generated in multiprocess...

7.5CVSS5.8AI score0.00292EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•6 views

SUSE CVE-2026-13006

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

6CVSS6.1AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-13218

A flaw was found in KubeVirt's virt-handler network cache handling. The WriteToCachedFile function writes data to a launcher-rooted path using os.WriteFile and os.Chown without symlink protection. A user with access to the virt-launcher container can plant a symlink at the cache file path, causin...

4.2CVSS5.9AI score0.00105EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-13281

Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS5.9AI score0.00177EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•4 views

SUSE CVE-2026-13282

Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical access to the device. Chromium security severity: High...

6.8CVSS5.8AI score0.00115EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-13283

Use after free in AdFilter in Google Chrome on Android prior to 149.0.7827.201 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.2AI score0.00229EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-13311

shell-quote prior to 1.8.5 finalizes parsed tokens in parse using Array.prototype.concat as a reduce accumulator, which reallocates and copies the entire growing array on every iteration. As a result parse runs in On^2 time relative to the number of input tokens. An attacker who can supply an...

8.7CVSS6.3AI score0.0036EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•6 views

SUSE CVE-2026-13318

A server-side request forgery SSRF flaw was found in KubeVirt's virt-api port-forward handler. When processing a port-forward request to a VirtualMachineInstance VMI, virt-api reads the target IP from vmi.Status.Interfaces0.IP and passes it directly to net.Dial without validation. For VMIs using...

6.4CVSS5.9AI score0.00164EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•4 views

SUSE CVE-2026-13322

A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine, which buffers input indefinitely until a newline character is received, with no length limit or read deadline. A user with access to a VM guest that has the...

3.8CVSS5.7AI score0.00098EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-13325

A flaw was found in KubeVirt's migration proxy. When spec.configuration.migrations.disableTLS is set to true on the KubeVirt custom resource, the target virt-handler binds a plain TCP listener on all interfaces 0.0.0.0/:: on a random port with no authentication, peer allow-list, or handshake toke...

8.5CVSS5.8AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•4 views

SUSE CVE-2026-13412

unknown...

5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•4 views

SUSE CVE-2026-22879

vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability...

8.1CVSS6AI score0.0032EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-40012

ECS zero scoped answers are stored in the packet cache while they should not. This impacts only configurations that have ECS enabled;...

5.3CVSS5.8AI score0.00305EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-42387

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation...

5.9CVSS5.7AI score0.004EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•6 views

SUSE CVE-2026-42388

Incomplete validation of the SOA record present in a catalog zone might lead to a crash...

5.9CVSS5.8AI score0.004EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-42389

This fix provides extra hardening for the 5.4.x branch by doing extra validation of incoming answers from authoritative servers...

5.3CVSS5.8AI score0.00175EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-42390

An invalid zone might pass ZONEMD validation while it should not. This is only relevant if ZoneToCache is configured with ZONEMD validation...

5.3CVSS5.8AI score0.00213EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-45808

unknown...

6.5CVSS5.7AI score0.00046EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•8 views

SUSE CVE-2026-47770

jq is a command-line JSON processor. Prior to 1.8.2, comparing two sufficiently deeply nested arrays with the == operator exhausts the C stack on jq's ordinary command-line surface, resulting in denial of service via stack exhaustion uncontrolled recursion. The crash occurs in jq's recursive...

5.5CVSS5.8AI score0.00111EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-48504

unknown...

5.7AI score0.00096EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•5 views

SUSE CVE-2026-48702

unknown...

5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 5 days ago•6 views

SUSE CVE-2026-49839

jq is a command-line JSON processor. Prior to 1.8.2, jq --rawfile can turn a handled oversized-string error into invalid-state reuse and a real heap out-of-bounds write in assertion-disabled builds. When jvloadfileraw=1 reads an attacker-controlled file, it repeatedly appends file chunks to the...

7.1CVSS5.8AI score0.00165EPSS
Exploits1References3
Total number of security vulnerabilities59178