Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/12/11 1:16 a.m.•3 views

CVE-2025-67713

Miniflux 2 is an open source feed reader. Versions 2.2.14 and below treat redirecturl as safe when url.Parse....IsAbs is false, enabling phishing flows after login. Protocol-relative URLs like //ikotaslabs.com have an empty scheme and pass that check, allowing post-login redirects to...

6.1CVSS7.1AI score0.00183EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/12/11 12:0 a.m.•8 views

CVE-2025-66004

A Path Traversal vulnerability in usbmuxd allows local users to escalate to the service user.This issue affects usbmuxd: before 3ded00c9985a5108cfc7591a309f9a23d57a8cba...

5.7CVSS5.9AI score0.00132EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/12/10 10:16 p.m.•3 views

CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS6AI score0.00439EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/10 10:16 p.m.•3 views

CVE-2024-58281

Dotclear 2.29 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the media upload functionality. Attackers can exploit the file upload process by crafting a PHP shell with a command execution form to gain system access through...

8.8CVSS6.4AI score0.00793EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2025/12/10 9:16 p.m.•3 views

CVE-2025-24857

Improper access control for volatile memory containing boot code in Universal Boot Loader U-Boot before 2017.11 and Qualcomm chips IPQ4019, IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker to execute arbitrary code...

7.6CVSS7.5AI score0.00239EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/12/10 4:16 p.m.•3 views

CVE-2025-65807

An issue in sd command v1.0.0 and before allows attackers to escalate privileges to root via a crafted command...

8.4CVSS5.9AI score0.0018EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2025/12/10 4:16 p.m.•2 views

CVE-2025-65803

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service DoS via supplying a crafted PSD file...

6.5CVSS5.9AI score0.00246EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/12/10 12:16 a.m.•2 views

CVE-2025-67499

The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftables backend, thus...

6.6CVSS7.1AI score0.00117EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/10 12:0 a.m.•1 views

CVE-2025-14087

A flaw was found in GLib Gnome Lib. This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings...

9.8CVSS6.2AI score0.00754EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:18 p.m.•2 views

CVE-2025-66568

The ruby-saml library implements the client side of an SAML authorization. Versions up to and including 1.12.4, are vulnerable to authentication bypass through the libxml2 canonicalization process used by Nokogiri for document transformation, which allows an attacker to execute a Signature Wrappi...

9.3CVSS6AI score0.00207EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/09 4:18 p.m.•5 views

CVE-2025-66567

The ruby-saml library is for implementing the client side of a SAML authorization. ruby-saml versions up to and including 1.12.4 contain an authentication bypass vulnerability due to an incomplete fix for CVE-2025-25292. ReXML and Nokogiri parse XML differently, generating entirely different...

9.3CVSS7.3AI score0.00383EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53821

In the Linux kernel, the following vulnerability has been resolved: ip6vti: fix slab-use-after-free in decodesession6 When ipv6vti device is set to the qdisc of the sfb type, the cb field of the sent skb may be modified during enqueuing. Then, slab-use-after-free may occur when ipv6vti device sen...

6AI score0.00216EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•3 views

CVE-2025-40344

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Disable periods-elapsed work when closing PCM avsdaifeshutdown handles the shutdown procedure for HOST HDAudio stream while period-elapsed work services its IRQs. As the former frees the DAI's private context,...

5.8AI score0.00184EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2025-40343

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls and then nvmetdisableport. Both functions will eventuall...

5.8AI score0.00197EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•3 views

CVE-2023-53859

In the Linux kernel, the following vulnerability has been resolved: s390/idle: mark archcpuidle noinstr linux-next commit "cpuidle: tracing: Warn about !rcuiswatching" adds a new warning which hits on s390's archcpuidle function: RCU not on for: archcpuidle+0x0/0x28 WARNING: CPU: 2 PID: 0 at...

5.8AI score0.00186EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2025-40335

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq input args This will help on validating the userq input args, and rejecting for the invalid userq request at the IOCTLs first place...

5.7AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53861

In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...

5.7AI score0.00192EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53851

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: Drop aux devices together with DP controller Using devres to depopulate the aux bus made sure that upon a probe deferral the EDP panel device would be destroyed and recreated upon next attempt. But the struct device...

5.8AI score0.00184EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2022-50661

In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copyseccomp to no failure path. Our syzbot instance reported memory leaks in doseccomp 0, similar to the report 1. It shows that we miss freeing struct seccompfilter and some objects included in it. We can reproduce...

5.9AI score0.00206EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2025-14332

Memory safety bugs present in Firefox 145 and Thunderbird 145. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 146 and Thunderbird 146...

7.3CVSS7.1AI score0.00265EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2022-50665

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix failed to find the peer with peerid 0 when disconnected It has a fail log which is ath11kdbg in ath11kdprxprocessmonstatus, as below, it will not print when debugmask is not set ATH11KDBGDATA. ath11kdbgab,...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2025-40327

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix system hang caused by cpu-clock usage cpu-clock usage by the async-profiler tool can trigger a system hang, which got bisected back to the following commit by Octavia Togami: 18dbcbfabfff "perf: Fix the POLLHUP...

5.8AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53866

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcmmutex If paniconwarn is set and compress streamDPCM is started, then kernel panic occurred because card-pcmmutex isn't held appropriately. In the following functions, warning were issued ...

5.7AI score0.00184EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2022-50674

In the Linux kernel, the following vulnerability has been resolved: riscv: vdso: fix NULL deference in vdsojointimens when vfork Testing tools/testing/selftests/timens/vforkexec.c got below kernel log: 6.838454 Unable to handle kernel access to user memory without uaccess routines at virtual...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2022-50672

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynq-ipi: fix error handling while deviceregister fails If deviceregister fails, it has two issues: 1. The name allocated by devsetname is leaked. 2. The parent of device is not NULL, deviceunregister is called in...

5.9AI score0.00206EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53840

In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbcbulkwrite fails, the values in 'buf' can be anything. So the string is not guaranteed to be NULL terminated when xdbctrace is called. Reserve an extra byte,...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2022-50657

In the Linux kernel, the following vulnerability has been resolved: riscv: mm: add missing memcpy in kasaninit Hi Atish, It seems that the panic is due to the missing memcpy during kasaninit. Could you please check whether this patch is helpful? When doing kasanpopulate, the new allocated...

5.7AI score0.00189EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2025-40333

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix infinite loop in insertextenttree When we get wrong extent info data, and look up extentnode in rb tree, it will cause infinite loop CONFIGF2FSCHECKFS=n. Avoiding this by return NULL and print some kernel messages in th...

5.7AI score0.00186EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2022-50670

In the Linux kernel, the following vulnerability has been resolved: mmc: omaphsmmc: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehos...

5.9AI score0.00206EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2025-40336

In the Linux kernel, the following vulnerability has been resolved: drm/gpusvm: fix hmmpfntomaporder usage Handle the case where the hmm range partially covers a huge page like 2M, otherwise we can potentially end up doing something nasty like mapping memory which is outside the range, and maybe...

5.7AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2022-50671

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix "kernel NULL pointer dereference" error When rxequeueinit in the function rxeqpinitreq fails, both qp-req.task.func and qp-req.task.arg are not initialized. Because of creation of qp fails, the function rxecreateqp...

5.9AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•3 views

CVE-2025-40328

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2closecachedfid findorcreatecacheddir could grab a new reference after krefput had seen the refcount drop to zero but before cfidlistlock is acquired in smb2closecachedfid, leading to...

5.7AI score0.00191EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53857

In the Linux kernel, the following vulnerability has been resolved: bpf: bpfskstorage: Fix invalid wait context lockdep report './testprogs -t testlocalstorage' reported a splat: 27.137569 ============================= 27.138122 BUG: Invalid wait context 27.138650 6.5.0-03980-gd11ae1b16b0a 247...

5.7AI score0.00176EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2025-40334

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq buffer virtual address and size It needs to validate the userq object virtual address to determine whether it is residented in a valid vm mapping...

5.8AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2022-50664

In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: fix leak of memory fw...

5.9AI score0.00239EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•4 views

CVE-2023-53860

In the Linux kernel, the following vulnerability has been resolved: dm: don't attempt to queue IO under RCU protection dm looks up the table for IO based on the request type, with an assumption that if the request is marked REQNOWAIT, it's fine to attempt to submit that IO while under RCU read lo...

5.7AI score0.00189EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•3 views

CVE-2023-53864

In the Linux kernel, the following vulnerability has been resolved: drm/mxsfb: Disable overlay plane in mxsfbplaneoverlayatomicdisable When disabling overlay plane in mxsfbplaneoverlayatomicupdate, overlay plane's framebuffer pointer is NULL. So, dereferencing it would cause a kernel OopsNULL...

5.7AI score0.00184EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53865

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix warning when putting transaction with qgroups enabled after abort If we have a transaction abort with qgroups enabled we get a warning triggered when doing the final put on the transaction, like this: 552.6789...

5.9AI score0.00192EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•3 views

CVE-2023-53822

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Ignore frags from uninitialized peer in dp. When max virtual ap interfaces are configured in all the bands with ACS and hostapd restart is done every 60s, a crash is observed at random times. In this certain scenari...

5.7AI score0.00198EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53842

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove The MBHC resources must be released on component probe failure and removal so can not be tied to the lifetime of the component device. This is specifically needed ...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53856

In the Linux kernel, the following vulnerability has been resolved: of: overlay: Call ofchangesetinit early When ofoverlayfdtapply fails, the changeset may be partially applied, and the caller is still expected to call ofoverlayremove to clean up this partial state. However, ofoverlayapply calls...

5.7AI score0.00191EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•0 views

CVE-2023-53825

In the Linux kernel, the following vulnerability has been resolved: kcm: Fix error handling for SOCKDGRAM in kcmsendmsg. syzkaller found a memory leak in kcmsendmsg, and commit c821a88bd720 "kcm: Fix memory leak in error path of kcmsendmsg" suppressed it by updating kcmtxmsghead-lastskb if partia...

5.8AI score0.00216EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53834

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ina2xx: avoid NULL pointer dereference on OF device match The affected lines were resulting in a NULL pointer dereference on our platform because the device tree contained the following list of compatible strings:...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53828

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Avoid use-after-free in dbg for hciaddadvmonitor KSAN reports use-after-free in hciaddadvmonitor. While adding an adv monitor, hciaddadvmonitor calls - msftaddmonitorpattern calls - msftaddmonitorsync calls -...

5.7AI score0.00206EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53847

In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Fix uninit-value in alaudacheckmedia Syzbot got KMSAN to complain about access to an uninitialized value in the alauda subdriver of usb-storage: BUG: KMSAN: uninit-value in alaudatransport+0x462/0x57f0...

6.1AI score0.00201EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53849

In the Linux kernel, the following vulnerability has been resolved: drm/msm: fix workqueue leak on bind errors Make sure to destroy the workqueue also in case of early errors during bind e.g. a subcomponent failing to bind. Since commit c3b790ea07a1 "drm: Manage drmmodeconfiginit with drmm" the...

5.7AI score0.00186EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•3 views

CVE-2023-53854

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8186: Fix use-after-free in driver remove path When devm runs function in the "remove" path for a device it runs them in the reverse order. That means that if you have parts of your driver that aren't using devm...

5.8AI score0.00184EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53843

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: reject negative ifindex Recent changes in net-next commit 759ab1edb56c "net: store netdevs in an xarray" refactored the handling of pre-assigned ifindexes and let syzbot surface a latent problem in ovs. ovs does...

6.3AI score0.00203EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•2 views

CVE-2023-53844

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Don't leak a resource on swapout move error If moving the bo to system for swapout failed, we were leaking a resource. Fix...

5.7AI score0.002EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/09 4:17 p.m.•1 views

CVE-2023-53858

In the Linux kernel, the following vulnerability has been resolved: tty: serial: samsungtty: Fix a memory leak in s3c24xxserialgetclk in case of error If clkgetrate fails, the clk that has just been allocated needs to be freed...

5.9AI score0.00201EPSS
Exploits0References10
Total number of security vulnerabilities68528