Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•4 views

CVE-2025-40262

In the Linux kernel, the following vulnerability has been resolved: Input: imxsckey - fix memory corruption on unload This is supposed to be "priv" but we accidentally pass "&priv" which is an address in the stack and so it will lead to memory corruption when the imxsckeyaction function is called...

5.7AI score0.00171EPSS
Exploits0References32
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40228

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: catch commit test ctx alloc failure Patch series "mm/damon/sysfs: fix commit test damonctx deallocation". DAMON sysfs interface dynamically allocates and uses a damonctx object for testing if given inputs for onli...

5.7AI score0.00161EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40224

In the Linux kernel, the following vulnerability has been resolved: hwmon: cgbc-hwmon Add missing NULL check after devmkzalloc The driver allocates memory for sensor data using devmkzalloc, but did not check if the allocation succeeded. In case of memory allocation failure, dereferencing the NULL...

5.7AI score0.00162EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40223

In the Linux kernel, the following vulnerability has been resolved: most: usb: Fix use-after-free in hdmdisconnect hdmdisconnect calls mostderegisterinterface, which eventually unregisters the MOST interface device with deviceunregisteriface-dev. If that drops the last reference, the device core...

5.8AI score0.00179EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40227

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc commit test ctx always The damonctx for testing online DAMON parameters commit inputs is deallocated only when the test fails. This means memory is leaked for every successful online DAMON parameters commi...

5.7AI score0.00162EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•4 views

CVE-2025-40229

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: fix potential memory leak by cleaning opsfilter in damondestroyscheme Currently, damondestroyscheme only cleans up the filter list but leaves opsfilter untouched, which could lead to memory leaks when a scheme is...

5.7AI score0.00162EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•3 views

CVE-2025-40239

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: always set shared-phydev for LAN8814 Currently, during the LAN8814 PTP probe shared-phydev is only set if PTP clock gets actually set, otherwise the function will return before setting it. This is an issue as...

5.7AI score0.00172EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•2 views

CVE-2025-40264

In the Linux kernel, the following vulnerability has been resolved: be2net: pass wrbparams in case of OS2BMC beinsertvlaninpkt is called with the wrbparams argument being NULL at besendpkttobmc call site. This may lead to dereferencing a NULL pointer when processing a workaround for specific...

5.9AI score0.00189EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40254

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: remove never-working support for setting nsh fields The validation of the setnsh... action is completely wrong. It runs through the nshkeyputfromnlattr function that is the same function that validates NSH keys...

5.9AI score0.00207EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40247

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix pgtable prealloc error path The following splat was reported: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010 Mem abort info: ESR = 0x0000000096000004 EC = 0x25: DABT current EL, ...

5.7AI score0.00162EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•9 views

CVE-2025-40240

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

5.8AI score0.00184EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40244

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix KMSAN uninit-value issue in hfsplusextcacheextent The syzbot reported issue in hfsplusextcacheextent: 70.194323 T9350 BUG: KMSAN: uninit-value in hfsplusextcacheextent+0x7d0/0x990 70.195022 T9350...

5.7AI score0.00184EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40258

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race condition in mptcpschedulework syzbot reported use-after-free in mptcpschedulework 1 Issue here is that mptcpschedulework schedules a work, then gets a refcount on sk-skrefcnt if the work was scheduled. This...

6.2AI score0.00171EPSS
Exploits0References32
UbuntuCve
UbuntuCve
•added 2025/12/04 3:15 p.m.•2 views

CVE-2025-40216

In the Linux kernel, the following vulnerability has been resolved: iouring/rsrc: don't rely on user vaddr alignment There is no guaranteed alignment for user pointers, however the calculation of an offset of the first page into a folio after coalescing uses some weird bit mask logic, get rid of ...

5.7AI score0.00161EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/04 3:15 p.m.•2 views

CVE-2025-40221

In the Linux kernel, the following vulnerability has been resolved: media: pci: mg4b: fix uninitialized iio scan data Fix potential leak of uninitialized stack data to userspace by ensuring that the scan structure is zeroed before use...

5.7AI score0.00161EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/12/04 3:15 p.m.•3 views

CVE-2025-40217

In the Linux kernel, the following vulnerability has been resolved: pidfs: validate extensible ioctls Validate extensible ioctls stricter than we do now...

5.7AI score0.0015EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/12/04 3:15 p.m.•0 views

CVE-2025-40218

In the Linux kernel, the following vulnerability has been resolved: mm/damon/vaddr: do not repeat pteoffsetmaplock until success DAMON's virtual address space operation set implementation vaddr calls pteoffsetmaplock inside the page table walk callback function. This is for reading and writing pa...

5.7AI score0.00162EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/12/04 3:15 p.m.•1 views

CVE-2025-40220

In the Linux kernel, the following vulnerability has been resolved: fuse: fix livelock in synchronous file put from fuseblk workers I observed a hang when running generic/323 against a fuseblk server. This test opens a file, initiates a lot of AIO writes to that file descriptor, and closes the fi...

5.7AI score0.00167EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/12/04 3:15 p.m.•2 views

CVE-2025-40219

In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Fix race between SR-IOV enable/disable and hotplug Commit 05703271c3cd "PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV" tried to fix a race between the VF removal inside sriovdelvfs and concurrent...

5.7AI score0.00171EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/12/04 1:15 p.m.•3 views

CVE-2025-40214

In the Linux kernel, the following vulnerability has been resolved: afunix: Initialise sccindex in unixaddedge. Quang Le reported that the AFUNIX GC could garbage-collect a receive queue of an alive in-flight socket, with a nice repro. The repro consists of three stages. 1 1-a. Create a single...

5.7AI score0.00171EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/12/04 1:15 p.m.•1 views

CVE-2025-40215

In the Linux kernel, the following vulnerability has been resolved: xfrm: delete x-tunnel as we delete x The ipcomp fallback tunnels currently get deleted from the various lists and hashtables as the last user state that needed that fallback is destroyed not deleted. If a reference to that user...

5.9AI score0.00167EPSS
Exploits0References54
UbuntuCve
UbuntuCve
•added 2025/12/04 10:16 a.m.•2 views

CVE-2025-14010

A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure IE of sensitive credentials, specifically plaintext passwords, via verbose output when running Ansible with debug modes. Attackers with access to logs could retrieve these secrets and...

5.5CVSS7AI score0.00117EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/12/03 9:15 p.m.•6 views

CVE-2025-66293

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to 1.6.52, an out-of-bounds read vulnerability in libpng's simplified API allows reading up to 1012 bytes beyond the pngsRGBbase512 array when processing...

7.1CVSS6.4AI score0.00299EPSS
Exploits2References7
UbuntuCve
UbuntuCve
•added 2025/12/03 8:16 p.m.•3 views

CVE-2025-12385

Allocation of Resources Without Limits or Throttling, Improper Validation of Specified Quantity in Input vulnerability in The Qt Company Qt on Windows, MacOS, Linux, iOS, Android, x86, ARM, 64 bit, 32 bit allows Excessive Allocation. This issue affects users of the Text component in Qt Quick...

8.7CVSS5.9AI score0.00273EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/03 8:16 p.m.•1 views

CVE-2025-66453

Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed function, it might lead to high CPU consumption and a potential Denial of Service. Small...

7.5CVSS6.7AI score0.00235EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/12/03 7:15 p.m.•3 views

CVE-2024-3884

A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParseStreamSourceChannel method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows...

7.5CVSS5.9AI score0.01256EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/03 7:15 p.m.•3 views

CVE-2025-12819

Untrusted search path in authquery connection handler in PgBouncer before 1.25.1 allows an unauthenticated attacker to execute arbitrary SQL during authentication via a malicious searchpath parameter in the StartupMessage...

8.1CVSS7.4AI score0.00327EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/12/03 7:15 p.m.•2 views

CVE-2025-12084

When building nested elements using xml.dom.minidom methods such as appendChild that have a dependency on clearidcache the algorithm is quadratic. Availability can be impacted when building excessively nested documents...

6.3CVSS7.1AI score0.00708EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/03 7:15 p.m.•5 views

CVE-2025-13992

Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.7CVSS5.8AI score0.00168EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/03 10:15 a.m.•2 views

CVE-2025-39665

User enumeration in Nagvis' Checkmk MultisiteAuth before version 1.9.48 allows an unauthenticated attacker to enumerate Checkmk usernames...

6.9CVSS5.9AI score0.00223EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/03 10:15 a.m.•2 views

CVE-2025-13947

A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser...

7.4CVSS7AI score0.00282EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/03 12:0 a.m.•3 views

CVE-2025-13946

MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service...

5.5CVSS5.9AI score0.00126EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/12/03 12:0 a.m.•3 views

CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

5.5CVSS5.8AI score0.00132EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/12/03 12:0 a.m.•2 views

CVE-2025-61727

An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN .example.com...

6.5CVSS6.8AI score0.00274EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 11:15 p.m.•1 views

CVE-2025-65955

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls...

6.1CVSS5.9AI score0.00142EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/12/02 10:16 p.m.•4 views

CVE-2025-66476

Vim is an open source, command line text editor. Prior to version 9.1.1947, an uncontrolled search path vulnerability on Windows allows Vim to execute malicious executables placed in the current working directory for the current edited file. On Windows, when using cmd.exe as a shell, Vim resolves...

7.8CVSS7.2AI score0.00439EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•1 views

CVE-2025-13634

Inappropriate implementation in Downloads in Google Chrome on Windows prior to 143.0.7499.41 allowed a local attacker to bypass mark of the web via a crafted HTML page. Chromium security severity: Medium...

4.4CVSS5.9AI score0.00141EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•2 views

CVE-2025-13632

Inappropriate implementation in DevTools in Google Chrome prior to 143.0.7499.41 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Chromium security severity: High...

5.4CVSS6.1AI score0.00206EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•2 views

CVE-2025-13633

Use after free in Digital Credentials in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00393EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•2 views

CVE-2025-13636

Inappropriate implementation in Split View in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. Chromium security severity: Low...

4.3CVSS5.9AI score0.00174EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•3 views

CVE-2025-61729

Within HostnameError.Error, when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can...

7.5CVSS6.8AI score0.00459EPSS
Exploits2References7
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•3 views

CVE-2025-13721

Race in v8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS7.1AI score0.00187EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•1 views

CVE-2025-13638

Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Low...

8.8CVSS7.2AI score0.0023EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•2 views

CVE-2025-13630

Type Confusion in V8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00386EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•2 views

CVE-2025-13637

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.9AI score0.00181EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•4 views

CVE-2025-13720

Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.2AI score0.0024EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•3 views

CVE-2025-13640

Inappropriate implementation in Passwords in Google Chrome prior to 143.0.7499.41 allowed a local attacker to bypass authentication via physical access to the device. Chromium security severity: Low...

3.5CVSS5.9AI score0.00163EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•2 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS7.2AI score0.00225EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•4 views

CVE-2025-13635

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a local attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.4CVSS5.9AI score0.00133EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/12/02 7:15 p.m.•3 views

CVE-2025-13631

Inappropriate implementation in Google Updater in Google Chrome on Mac prior to 143.0.7499.41 allowed a remote attacker to perform privilege escalation via a crafted file. Chromium security severity: High...

8.8CVSS5.9AI score0.00303EPSS
Exploits0References3
Total number of security vulnerabilities68528