Lucene search
K
SusecveRecent

59380 matches found

SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•9 views

SUSE CVE-2026-31645

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966xfdmarxalloc creates a page pool but does not destroy it if the subsequent fdmaalloccoherent call fails, leaking the pool. Similarly, lan966xfdmainit frees the coherent DMA...

3.3CVSS5.4AI score0.00122EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•5 views

SUSE CVE-2026-31646

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix pagepool error handling in lan966xfdmarxallocpagepool pagepoolcreate can return an ERRPTR on failure. The return value is used unconditionally in the loop that follows, passing the error pointer through...

5.5CVSS5.5AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•8 views

SUSE CVE-2026-31647

In the Linux kernel, the following vulnerability has been resolved: idpf: fix PREEMPTRT raw/bh spinlock nesting for async VC handling Switch from using the completion's raw spinlock to a local lock in the idpfvcxn struct. The conversion is safe because complete/all are called outside the lock and...

5.5CVSS5.5AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•6 views

SUSE CVE-2026-31648

In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nrpages calculation overflow in filemapmappages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very strange crash issues showing up as "Bad page state": " 734.496287 BUG: Bad...

7.8CVSS5.6AI score0.0012EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•7 views

SUSE CVE-2026-31649

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chain mode The jumbofrm chain-mode implementation unconditionally computes len = nopagedlen - bmax; where nopagedlen = skbheadlenskb linear bytes only and bmax is BUFSIZE8KiB or BUFSIZE2KiB...

7.5CVSS6.1AI score0.00406EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•6 views

SUSE CVE-2026-31650

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix use-after-free on disconnect The vub300 driver maintains an explicit reference count for the controller and its driver data and the last reference can in theory be dropped after the driver has been unbound. This...

7.8CVSS5.6AI score0.00115EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:37 a.m.•5 views

SUSE CVE-2026-31651

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix NULL-deref on disconnect Make sure to deregister the controller before dropping the reference to the driver data on disconnect to avoid NULL-pointer dereferences or use-after-free...

5.5CVSS5.4AI score0.00111EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•6 views

SUSE CVE-2026-31653

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc repeatcallcontrol if damoncall fails damoncall for repeatcallcontrol of DAMONSYSFS could fail if somehow the kdamond is stopped before the damoncall. It could happen, for example, when te damon context was...

5.5CVSS5.4AI score0.00112EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•5 views

SUSE CVE-2026-31654

In the Linux kernel, the following vulnerability has been resolved: mm/vma: fix memory leak in mmapregion commit 605f6586ecf7 "mm/vma: do not leak memory when .mmapprepare swaps the file" handled the success path by skipping getfile via filedoesntneedget, but missed the error path. When /dev/zero...

5.5CVSS5.5AI score0.00113EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•6 views

SUSE CVE-2026-31655

In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx8mp-blk-ctrl: Keep the NOCHDCP clock enabled Keep the NOCHDCP clock always enabled to fix the potential hang caused by the NoC ADB400 port power down handshake...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•7 views

SUSE CVE-2026-31656

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: fix refcount underflow in intelengineparkheartbeat A use-after-free / refcount underflow is possible when the heartbeat worker and intelengineparkheartbeat race to release the same engine-heartbeat.systole request. T...

7CVSS5.6AI score0.00117EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•7 views

SUSE CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS5.4AI score0.00399EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•8 views

SUSE CVE-2026-31658

In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tsestartxmit When dmamapsingle fails in tsestartxmit, the function returns NETDEVTXOK without freeing the skb. Since NETDEVTXOK tells the stack the packet was consumed, the sk...

4.7CVSS5.4AI score0.00114EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•5 views

SUSE CVE-2026-31659

In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT response buffers batadvttpreparetvlvglobaldata builds the allocation length for a global TT response in 16-bit temporaries. When a remote originator advertises a large enough global TT, the ...

9.8CVSS5.6AI score0.00399EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•6 views

SUSE CVE-2026-31660

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: allocate rx skb before consuming bytes pn532receivebuf reports the number of accepted bytes to the serdev core. The current code consumes bytes into recvskb and may already hand a complete frame to pn533recvframe befo...

5.5CVSS5.5AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•5 views

SUSE CVE-2026-31661

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmsmac: Fix dmafreecoherent size dmaallocconsistent may change the size to align it. The new size is saved in alloced. Change the free size to match the allocation size...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•12 views

SUSE CVE-2026-31662

In the Linux kernel, the following vulnerability has been resolved: tipc: fix bcackers underflow on duplicate GRPACKMSG The GRPACKMSG handler in tipcgroupprotorcv currently decrements bcackers on every inbound group ACK, even when the same member has already acknowledged the current broadcast...

7.5CVSS5.5AI score0.00389EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•12 views

SUSE CVE-2026-31663

In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transportfinish NFHOOK After async crypto completes, xfrminputresume calls devput immediately on re-entry before the skb reaches transportfinish. The skb-dev pointer is then used inside NFHOOK and i...

7.8CVSS5.4AI score0.00208EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•7 views

SUSE CVE-2026-31664

In the Linux kernel, the following vulnerability has been resolved: xfrm: clear trailing padding in buildpolexpire buildexpire clears the trailing padding bytes of struct xfrmuserexpire after setting the hard field via memsetafter, but the analogous function buildpolexpire does not do this for...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•9 views

SUSE CVE-2026-31665

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: fix use-after-free in timeout object destroy nftcttimeoutobjdestroy frees the timeout object with kfree immediately after nfctuntimeout, without waiting for an RCU grace period. Concurrent packet processing on...

6.4CVSS5.6AI score0.00117EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•7 views

SUSE CVE-2026-31666

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix incorrect return value after changing leaf in lookupextentdataref After commit 1618aa3c2e01 "btrfs: simplify return variables in lookupextentdataref", the err and ret variables were merged into a single ret variable...

5.5CVSS5.5AI score0.0012EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•6 views

SUSE CVE-2026-31667

In the Linux kernel, the following vulnerability has been resolved: Input: uinput - fix circular locking dependency with ff-core A lockdep circular locking dependency warning can be triggered reproducibly when using a force-feedback gamepad with uinput for example, playing ELDEN RING under Wine...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•9 views

SUSE CVE-2026-31668

In the Linux kernel, the following vulnerability has been resolved: seg6: separate dstcache for input and output paths in seg6 lwtunnel The seg6 lwtunnel uses a single dstcache per encap route, shared between seg6inputcore and seg6outputcore. These two paths can perform the post-encap SID lookup ...

4.4CVSS5.4AI score0.00443EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•12 views

SUSE CVE-2026-31669

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in inetlookupestablished The ehash table lookups are lockless and rely on SLABTYPESAFEBYRCU to guarantee socket memory stability during RCU read-side critical sections. Both tcpprot and tcpv6prot ha...

7CVSS5.6AI score0.004EPSS
Exploits0References25
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•5 views

SUSE CVE-2026-31670

In the Linux kernel, the following vulnerability has been resolved: net: rfkill: prevent unlimited numbers of rfkill events from being created Userspace can create an unlimited number of rfkill events if the system is so configured, while not consuming them from the rfkill file descriptor, causin...

5.5CVSS5.5AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•8 views

SUSE CVE-2026-31671

In the Linux kernel, the following vulnerability has been resolved: xfrmuser: fix info leak in buildreport struct xfrmuserreport is a u8 proto field followed by a struct xfrmselector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace...

3.3CVSS5.4AI score0.00114EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/04/25 1:36 a.m.•8 views

SUSE CVE-2026-31672

In the Linux kernel, the following vulnerability has been resolved: wifi: rt2x00usb: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:35 a.m.•6 views

SUSE CVE-2026-40254

FreeRDP is a free implementation of the Remote Desktop Protocol. Versions prior to 3.25.0 have an off-by-one in the path traversal filter in channels/drive/client/drivefile.c. The containsdotdot function catches ../ and ..\ mid-path but misses .. when it's the last component with no trailing...

4.2CVSS5.5AI score0.002EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/25 1:35 a.m.•6 views

SUSE CVE-2026-41205

Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.gettemplate is vulnerable to path traversal when a URI starts with // e.g., //../../../secret.txt. The root cause is an inconsistency between two slash-stripping implementations. Any file readable by the process can be...

7.5CVSS5.3AI score0.00361EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/04/24 1:46 a.m.•11 views

SUSE CVE-2008-5091

Buffer overflow in the LDAP Service in Novell eDirectory 8.7.3 before SP10a and 8.8 before SP3 allows attackers to cause a denial of service application crash via vectors involving an "invalid extensibleMatch filter."...

10CVSS5.8AI score0.02123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:44 a.m.•11 views

SUSE CVE-2009-3727

Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.3, 1.6.0.x before 1.6.0.17, and 1.6.1.x before 1.6.1.9; Business Edition A.x.x, B.x.x before B.2.5.12, C.2.x.x before C.2.4.5, and C.3.x.x before C.3.2.2; AsteriskNOW 1.5; and s800i 1.3.x before 1.3.0.5 generate different error message...

5CVSS5.8AI score0.04201EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:38 a.m.•7 views

SUSE CVE-2025-13763

Multiple uses of uninitialized variables were found in libopensc that may lead to information disclosure or application crash. An attack requires a crafted USB device or smart card that would present the system with specially crafted responses to the APDUs...

3.9CVSS5.7AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:36 a.m.•11 views

SUSE CVE-2025-53000

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions of nbconvert up to and including 7.16.6 on Windows have a vulnerability in which converting a notebook containing SVG output to a PDF results in unauthorized code execution...

7.8CVSS5.9AI score0.00233EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/04/24 1:34 a.m.•11 views

SUSE CVE-2026-6019

http.cookies.Morsel.jsoutput returns an inline snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence inside the generated script element. Mitigation base64-encodes the cookie value to disallow escaping using cookie value...

3.8CVSS5.7AI score0.00229EPSS
Exploits1References12
SUSE CVE
SUSE CVE
•added 2026/04/24 1:34 a.m.•4 views

SUSE CVE-2026-6785

Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This...

7.5CVSS6AI score0.00513EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/04/24 1:34 a.m.•6 views

SUSE CVE-2026-6786

Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

7.5CVSS6AI score0.00499EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/04/24 1:34 a.m.•6 views

SUSE CVE-2026-6843

A flaw was found in nano. A local user could exploit a format string vulnerability in the statusline function. By creating a directory with a name containing printf specifiers, the application attempts to display this name, leading to a segmentation fault SEGV. This results in a Denial of Service...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:34 a.m.•7 views

SUSE CVE-2026-6861

A flaw was found in GNU Emacs. This vulnerability, a memory corruption issue, occurs when Emacs processes specially crafted SVG Scalable Vector Graphics CSS Cascading Style Sheets data. A local user could exploit this by convincing a victim to open a malicious SVG file, which may lead to a denial...

6.1CVSS5.7AI score0.00108EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:34 a.m.•6 views

SUSE CVE-2026-6862

A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fails to validate that each node's Length field is at least 4 bytes, which is the minimum size for an EFI Extensible Firmware Interface device path node header. A local user could exploit this...

5.5CVSS5.7AI score0.00104EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:29 a.m.•19 views

SUSE CVE-2026-31531

In the Linux kernel, the following vulnerability has been resolved: ipv4: nexthop: allocate skb dynamically in rtmgetnexthop When querying a nexthop object via RTMGETNEXTHOP, the kernel currently allocates a fixed-size skb using NLMSGGOODSIZE. While sufficient for single nexthops and small...

5.5CVSS5.6AI score0.00164EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:29 a.m.•7 views

SUSE CVE-2026-31532

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

6.4CVSS5.7AI score0.00124EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/04/24 1:29 a.m.•10 views

SUSE CVE-2026-31533

In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY error path of tlsdoencryption The -EBUSY handling in tlsdoencryption, introduced by commit 859054147318 "net: tls: handle backlogging of crypto requests", has a use-after-free due to double...

7CVSS5.7AI score0.00263EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•8 views

SUSE CVE-2026-40517

radare2 prior to 6.1.4 contains a command injection vulnerability in the PDB parser's printgvars function that allows attackers to execute arbitrary commands by crafting a malicious PDB file with newline characters in symbol names. Attackers can inject arbitrary radare2 commands through unsanitiz...

8.4CVSS6.3AI score0.01051EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•12 views

SUSE CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.6AI score0.00297EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•11 views

SUSE CVE-2026-41176

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. The RC endpoint options/set is exposed without AuthRequired: true, but it can mutate global runtime configuration, including the RC option block itself. Starting in version 1.45.0 and pri...

9.8CVSS5.8AI score0.34734EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•10 views

SUSE CVE-2026-41179

Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version 1.73.5, the RC endpoint operations/fsinfo is exposed without AuthRequired: true and accepts attacker-controlled fs input. Because rc.GetFs...

9.8CVSS5.9AI score0.09199EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•14 views

SUSE CVE-2026-41182

LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to version 0.5.19 of the JavaScript SDK and version 0.7.31 of the Python SDK, the LangSmith SDK's output redaction controls hideOutputs in JS, hideoutputs in Python do not apply to streaming token events. When ...

5.3CVSS5.8AI score0.00214EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•8 views

SUSE CVE-2026-41196

Luanti formerly Minetest is an open source voxel game-creation platform. Starting in version 5.0.0 and prior to version 5.15.2, a malicious mod can trivially escape the sandboxed Lua environment to execute arbitrary code and gain full filesystem access on the user's device. This applies to the...

10CVSS6.2AI score0.00374EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•5 views

SUSE CVE-2026-41312

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to the RAM being exhausted. This requires accessing a stream compressed using /FlateDecode with a /Predictor unequal 1 and large predictor...

4.8CVSS5.6AI score0.00226EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/24 1:28 a.m.•5 views

SUSE CVE-2026-41313

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft a PDF which leads to long runtimes. This requires loading a PDF with a large trailer /Size value in incremental mode. This has been fixed in pypdf 6.10.2. As...

4.8CVSS5.6AI score0.00214EPSS
Exploits0References3
Total number of security vulnerabilities59380