Lucene search
K
SusecveRecent

59380 matches found

SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•10 views

SUSE CVE-2026-43064

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix not releasing workqueue on .release The workqueue associated with an DSA/IAA device is not released when the object is freed...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•8 views

SUSE CVE-2026-43065

In the Linux kernel, the following vulnerability has been resolved: ext4: always drain queued discard work in ext4mbrelease While reviewing recent ext4 patch1, Sashiko raised the following concern2: If the filesystem is initially mounted with the discard option, deleting files will populate...

3.9CVSS5.8AI score0.00117EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•13 views

SUSE CVE-2026-43066

In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4fcreplayinode error paths During code review, Joseph found that ext4fcreplayinode calls ext4getfcinodeloc to get the inode location, which holds a reference to iloc.bh that must be released via brels...

4.1CVSS5.8AI score0.00117EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•9 views

SUSE CVE-2026-43067

In the Linux kernel, the following vulnerability has been resolved: ext4: handle wraparound when searching for blocks for indirect mapped blocks Commit 4865c768b563 "ext4: always allocate blocks only from groups inode can use" restricts what blocks will be allocated for indirect block based files...

9.8CVSS5.8AI score0.00403EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•11 views

SUSE CVE-2026-43068

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocate block from corrupted group in ext4mbfindbygoal There's issue as follows: ... EXT4-fs mmcblk0p1: Delayed block allocation failed for inode 206 at logical offset 0 with max blocks 1 with error 117 EXT4-fs...

6.3CVSS5.7AI score0.00117EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•7 views

SUSE CVE-2026-43069

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcill: Fix firmware leak on error path Smatch reports: drivers/bluetooth/hcill.c:587 downloadfirmware warn: 'fw' from requestfirmware not released on lines: 544. In downloadfirmware, if requestfirmware succeeds but the...

5.8AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•6 views

SUSE CVE-2026-43070

In the Linux kernel, the following vulnerability has been resolved: bpf: Reset register ID for BPFEND value tracking When a register undergoes a BPFEND byte swap operation, its scalar value is mutated in-place. If this register previously shared a scalar ID with another register e.g., after an r1...

5.8AI score0.00118EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•13 views

SUSE CVE-2026-43071

In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket to two There is an OOB read problem on dentryhashtable when user sets 'dhashentries=1': BUG: unable to handle page fault for address: ffff888b30b774b0 PF: supervisor read access in kerne...

6.1CVSS5.8AI score0.0039EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•12 views

SUSE CVE-2026-43072

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platformgetirqbyname returns an int platformgetirqbyname will return a negative value if an error happens, so it should be checked and not just passed directly into devmrequestthreadedirq hoping all will be ok...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•11 views

SUSE CVE-2026-43073

In the Linux kernel, the following vulnerability has been resolved: x86-64: rename misleadingly named 'copyusernocache' function This function was a masterclass in bad naming, for various historical reasons. It claimed to be a non-cached user copy. It is literally neither of those things. It's a...

6.3CVSS5.7AI score0.00117EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•12 views

SUSE CVE-2026-43964

Postfix before 3.8.16, 3.9 before 3.9.10, and 3.10 before 3.10.9 sometimes allows a buffer over-read and process crash via an enhanced status code that lacks text after the third number...

5.9CVSS6AI score0.00415EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•16 views

SUSE CVE-2026-44028

An issue was discovered in Nix before 2.34.7 and Lix before 2.95.2. Unbounded recursion in the NAR Nix Archive parser could lead to a stack-to-heap overflow when the parser is run on a coroutine stack. The stack is allocated without a guard page, which means that a stack overflow could overwrite...

7.5CVSS6.4AI score0.0018EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/06 1:40 a.m.•8 views

SUSE CVE-2026-44029

An issue was discovered in Nix before 2.34.7. Writing to arbitrary files can occur via "nix-prefetch-url --unpack" or "nix store prefetch-file --unpack" directory traversal. The fixed versions are 2.34.7, 2.33.6, 2.32.8, 2.31.5, 2.30.5, 2.29.4, and 2.28.7 introduced in 2.24.7;...

5.3CVSS5.9AI score0.00573EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:49 a.m.•13 views

SUSE CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

7CVSS5.8AI score0.0034EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:49 a.m.•79 views

SUSE CVE-2025-70069

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and ConvertMeshMultiMaterial method...

7.5CVSS5.8AI score0.00417EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:49 a.m.•9 views

SUSE CVE-2025-70070

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXMeshGeometry.cpp, MeshGeometry::MeshGeometry...

6.5CVSS5.8AI score0.00238EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:49 a.m.•69 views

SUSE CVE-2025-70071

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXParser.cpp, ParseVectorDataArray...

7.5CVSS5.8AI score0.00523EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:49 a.m.•6 views

SUSE CVE-2025-70072

An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial components...

6.5CVSS5.8AI score0.00238EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:48 a.m.•26 views

SUSE CVE-2026-6948

Velociraptor versions prior to 0.76.4 contain a resource exhaustion vulnerability in the server's agent control channel. This allows a compromised or rogue Velociraptor client to crash the server via out-of-memory OOM by sending crafted messages through the normal client communication channel...

4.9CVSS5.8AI score0.00344EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:48 a.m.•5 views

SUSE CVE-2026-7246

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

6.7CVSS5.9AI score0.0081EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/05/05 1:48 a.m.•7 views

SUSE CVE-2026-7482

Ollama before 0.17.1 contains a heap out-of-bounds read vulnerability in the GGUF model loader. The /api/create endpoint accepts an attacker-supplied GGUF file in which the declared tensor offset and size exceed the file's actual length; during quantization in fs/ggml/gguf.go and...

9.1CVSS5.8AI score0.01001EPSS
Exploits3References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:48 a.m.•13 views

SUSE CVE-2026-7598

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name of the patch is...

7.3CVSS6.9AI score0.00466EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•13 views

SUSE CVE-2026-23918

Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. This issue affects Apache HTTP Server: 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

8.1CVSS5.8AI score0.4581EPSS
Exploits16References8
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•11 views

SUSE CVE-2026-24072

An escalation of privilege bug in various modules in Apache HTTP 2.4.66 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

7.3CVSS5.8AI score0.00654EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•5 views

SUSE CVE-2026-28532

FRRouting before 10.5.3 contains an integer overflow vulnerability in seven OSPF Traffic Engineering and Segment Routing TLV parser functions where a uint16t accumulator variable truncates uint32t values returned by the TLVSIZE macro, causing the loop termination condition to fail while pointer...

6.5CVSS5.9AI score0.00225EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•11 views

SUSE CVE-2026-29169

A NULL pointer dereference in moddavlock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.moddavlock is not used internally by moddav or moddavfs. The only known use-case for moddavlock was moddavsvn from Apache Subversion earlier than...

7.5CVSS5.8AI score0.00594EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•14 views

SUSE CVE-2026-31687

In the Linux kernel, the following vulnerability has been resolved: gpio: omap: do not register driver in probe Commit 11a78b794496 "ARM: OMAP: MPUIO wake updates" registers the omapmpuiodriver from omapmpuioinit, which is called from omapgpioprobe. However, it neither makes sense to register...

5.5CVSS5.8AI score0.00096EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•24 views

SUSE CVE-2026-31725

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fecm: Fix netdevice lifecycle with devicemove The netdevice is allocated during function instance creation and registered during the bind phase with the gadget device as its sysfs parent. When the function unbinds, t...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•15 views

SUSE CVE-2026-31726

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: fix NULL pointer dereference during unbind race Commit b81ac4395bbe "usb: gadget: uvc: allow for application to cleanly shutdown" introduced two stages of synchronization waits totaling 1500ms in uvcfunctionunbi...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•11 views

SUSE CVE-2026-31739

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - Add missing CRYPTOALGASYNC The tegra crypto driver failed to set the CRYPTOALGASYNC on its asynchronous algorithms, causing the crypto API to select them for users that request only synchronous algorithms. This...

8.8CVSS5.8AI score0.00415EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•12 views

SUSE CVE-2026-31740

In the Linux kernel, the following vulnerability has been resolved: counter: rz-mtu3-cnt: do not use struct rzmtu3channel's dev member The counter driver can use HW channels 1 and 2, while the PWM driver can use HW channels 0, 1, 2, 3, 4, 6, 7. The dev member is assigned both by the counter drive...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•12 views

SUSE CVE-2026-31778

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: fix stack out-of-bounds read in initcard The loop creates a whitespace-stripped copy of the card shortname where len id is used for the bounds check. Since sizeofcard-id is 16 and the local id buffer is also 16 bytes...

6.1CVSS5.8AI score0.00126EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/05/05 1:46 a.m.•13 views

SUSE CVE-2026-33006

A timing attack against modauthdigest in Apache HTTP Server 2.4.66 allows a bypass of Digest authentication by a remote attacker. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

7.4CVSS5.8AI score0.00557EPSS
Exploits1References9
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•16 views

SUSE CVE-2026-33007

A NULL pointer dereference in the modauthnsocache in Apache HTTP Server 2.4.66 and earlier allows an unauthenticated remote user to crash a child process in a caching forward proxy configuration. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

5.3CVSS5.8AI score0.00514EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•16 views

SUSE CVE-2026-33523

HTTP response splitting vulnerability in multiple Apache HTTP Server modules with untrusted or compromised backend servers. This issue affects Apache HTTP Server: from through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

8.7CVSS5.8AI score0.00436EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•11 views

SUSE CVE-2026-33857

Out-of-bounds Read vulnerability in modproxyajp of Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

5.3CVSS5.8AI score0.00393EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•12 views

SUSE CVE-2026-34032

Improper Null Termination, Out-of-bounds Read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

8.2CVSS5.8AI score0.00485EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•10 views

SUSE CVE-2026-34059

Buffer Over-read vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: through 2.4.66. Users are recommended to upgrade to version 2.4.67, which fixes the issue...

8.2CVSS5.8AI score0.00394EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•6 views

SUSE CVE-2026-35051

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is an authentication bypass vulnerability in Traefik's ForwardAuth middleware when trustForwardHeader=false is configured and Traefik is deployed behind a trusted upstream proxy. This issu...

10CVSS5.7AI score0.00267EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•10 views

SUSE CVE-2026-37457

An off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function bgpd/bgpflowspecutil.c of FRRouting FRR stable/10.0 allows attackers to cause a Denial of Service DoS via supplying a crafted FlowSpec component...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•8 views

SUSE CVE-2026-37458

Missing input validation in the MPREACHNLRI component of FRRouting FRR stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service DoS via supplying a crafted UPDATE message...

6.5CVSS5.8AI score0.00249EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•7 views

SUSE CVE-2026-39858

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's ForwardAuth and snippet-based authentication middleware. Traefik's forwarded-header sanitization logic targets only...

10CVSS5.7AI score0.00479EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•11 views

SUSE CVE-2026-40682

XML External Entity XXE via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The DictionaryEntryPersistor class initializes a static SAXParserFactory at class-load time without enabling FEATURESECUREPROCESSING ...

9.1CVSS5.8AI score0.00515EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•8 views

SUSE CVE-2026-40912

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's StripPrefixRegex middleware when used in combination with ForwardAuth, BasicAuth, or DigestAuth. The middleware matches...

8.2CVSS5.7AI score0.00767EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•14 views

SUSE CVE-2026-41174

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolation enforcement. When providers.kubernetesCRD.allowCrossNamespace=false, Traefik correctly rejects...

6.4CVSS5.7AI score0.00254EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•8 views

SUSE CVE-2026-41263

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a timing side-channel vulnerability in Traefik's BasicAuth middleware that allows an attacker to enumerate valid usernames through response-time differences. The variable intended to ho...

3.7CVSS5.7AI score0.00369EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•6 views

SUSE CVE-2026-42027

Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 1.9.5, before 2.5.9, before 3.0.0-M3 Description: The ExtensionLoader.instantiateExtensionClass, String method loads a class by its fully-qualified name via Class.forName and invokes its...

9.8CVSS6.2AI score0.00692EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•12 views

SUSE CVE-2026-42440

OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected: before 1.9.5 before 2.5.9 before 3.0.0-M3 Description: The AbstractModelReader methods getOutcomes, getOutcomePatterns, and getPredicates each read a 32-bit signed integer count field fro...

7.5CVSS6AI score0.00627EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•13 views

SUSE CVE-2026-42482

A stack-based buffer overflow in mangletohexlower and mangletohexupper in src/rpcpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted rule file, or via the -j or -k rule options used with password candidates of 128 or more...

9.8CVSS6.5AI score0.00404EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/05/05 1:45 a.m.•9 views

SUSE CVE-2026-42483

A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The issue affects modulehashdecode in multiple Kerberos-related modules because accountinfolen is...

9.8CVSS6.4AI score0.00304EPSS
Exploits1References3
Total number of security vulnerabilities59380