Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/11/14 3:15 a.m.•3 views

CVE-2025-9479

Out of bounds read in V8 in Google Chrome prior to 133.0.6943.141 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.9AI score0.00174EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/11/14 3:15 a.m.•6 views

CVE-2024-11919

Inappropriate implementation in Intents in Google Chrome on Android prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.9AI score0.0018EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/11/14 3:15 a.m.•3 views

CVE-2024-7017

Inappropriate implementation in DevTools in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

7.5CVSS7.1AI score0.00176EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/11/13 10:15 p.m.•4 views

CVE-2025-47913

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...

7.5CVSS6.8AI score0.00591EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/11/13 8:15 p.m.•1 views

CVE-2025-59840

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In Vega prior to version 6.2.0, applications meeting 2 conditions are at risk of arbitrary JavaScript code execution, even if "safe mode" expressionInterpreter is used. They...

8.1CVSS7.2AI score0.00342EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/11/13 4:15 p.m.•1 views

CVE-2025-13120

A vulnerability has been found in mruby up to 3.4.0. This vulnerability affects the function sortcmp of the file src/array.c. Such manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The name of the patch is...

5.5CVSS5.4AI score0.00129EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/13 4:15 p.m.•3 views

CVE-2025-64718

js-yaml is a JavaScript YAML parser and dumper. In js-yaml before 4.1.1 and 3.14.2, it's possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution proto. All users who parse untrusted yaml documents may be impacted. The problem is patched in...

5.3CVSS6.6AI score0.00378EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/13 12:0 a.m.•4 views

CVE-2025-12818

Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. This results in a segmentation fault for the application using libpq. Versions...

5.9CVSS6.5AI score0.00307EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/13 12:0 a.m.•8 views

CVE-2025-12817

Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. A later CREATE STATISTICS for the same name, from a user having the CREATE privilege, would then fail. Versions before...

3.1CVSS6.1AI score0.00201EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40180

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent...

5.7AI score0.00176EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40190

In the Linux kernel, the following vulnerability has been resolved: ext4: guard against EA inode refcount underflow in xattr update syzkaller found a path where ext4xattrinodeupdateref reads an EA inode refcount that is already ref underflow: refcount=-1 refchange=-1 EXT4-fs warning: eainode dec...

5.7AI score0.00188EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40198

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid potential buffer over-read in parseapplysbmountoptions Unlike other strings in the ext4 superblock, we rely on tune2fs to make sure smountopts is NUL terminated. Harden parseapplysbmountoptions by treating smountopts ...

5.9AI score0.00171EPSS
Exploits0References24
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40203

In the Linux kernel, the following vulnerability has been resolved: listmount: don't call pathput under namespace semaphore Massage listmount and make sure we don't call pathput under the namespace semaphore. If we put the last reference we're fscked...

5.7AI score0.00164EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-64500

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Symfony's HttpFoundation component defines an object-oriented layer for the HTTP specification. Starting in version 2.0.0 and prior to version 5.4.50, 6.4.29, and 7.3.7, the Request class improperly...

7.3CVSS7AI score0.01326EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•3 views

CVE-2025-40199

In the Linux kernel, the following vulnerability has been resolved: pagepool: Fix PPMAGICMASK to avoid crashing on some 32-bit arches Helge reported that the introduction of PPMAGICMASK let to crashes on boot on his 32-bit parisc machine. The cause of this is the mask is set too wide, so the...

5.8AI score0.00164EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40202

In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. Restructure how this is all done to handle more in the receive messag...

5.8AI score0.00166EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•3 views

CVE-2025-40201

In the Linux kernel, the following vulnerability has been resolved: kernel/sys.c: fix the racy usage of tasklocktsk-groupleader in sysprlimit64 paths The usage of tasklocktsk-groupleader in sysprlimit64-doprlimit path is very broken. sysprlimit64 does gettaskstructtsk but this only protects...

5.7AI score0.00166EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40187

In the Linux kernel, the following vulnerability has been resolved: net/sctp: fix a null dereference in sctpdisposition sctpsfdo51Dce If newasoc-peer.adaptationind=0 and sctpulpeventmakeauthkey=0 and sctpulpeventmakeauthkey returns 0, then the variable aiev remains zero and the zero will be...

5.7AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40194

In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter subsequently calls freqqosupdaterequest that indirectly accesses the policy...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40205

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfsencodefh The function btrfsencodefh does not properly account for the three cases it handles. Before writing to the file handle fh, the function only returns to the user...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40188

In the Linux kernel, the following vulnerability has been resolved: pwm: berlin: Fix wrong register in suspend/resume The 'enable' register should be BERLINPWMEN rather than BERLINPWMENABLE, otherwise, the driver accesses wrong address, there will be cpu exception then kernel panic during...

5.7AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40186

In the Linux kernel, the following vulnerability has been resolved: tcp: Don't call reqskfastopenremove in tcpconnrequest. syzbot reported the splat below in tcpconnrequest. 0 If a listener is closed while a TFO socket is being processed in tcpconnrequest, inetcskreqskqueueadd does not set reqsk-...

5.7AI score0.00188EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40182

In the Linux kernel, the following vulnerability has been resolved: crypto: skcipher - Fix reqsize handling Commit afddce13ce81d "crypto: api - Add reqsize to cryptoalg" introduced crareqsize field in cryptoalg struct to replace type specific reqsize fields. It looks like this was introduced...

5.8AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40208

In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...

5.7AI score0.00154EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•2 views

CVE-2025-40184

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix debug checking for np-guests using huge mappings When running with transparent huge pages and CONFIGNVHEEL2DEBUG then the debug checking in asserthostsharedguest fails on the launch of an np-guest. This WARNON...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40185

In the Linux kernel, the following vulnerability has been resolved: ice: iceadapter: release xa entry on adapter allocation failure When iceadapternew fails, the reserved XArray entry created by xainsert is not released. This causes subsequent insertions at the same index to return -EBUSY,...

5.7AI score0.00176EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•2 views

CVE-2025-40206

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftobjref: validate objref and objrefmap expressions Referencing a synproxy stateful object from OUTPUT hook causes kernel crash due to infinite recursive calls: BUG: TASK stack guard page was hit at 000000008bda5b8c...

5.7AI score0.00166EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40189

In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Fix lost EEPROM read timeout error-ETIMEDOUT in lan78xxreadraweeprom Syzbot reported read of uninitialized variable BUG with following call stack. lan78xx 8-1:1.0 unnamed netdevice uninitialized: EEPROM read...

5.9AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•3 views

CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

5.8AI score0.00166EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40191

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix kfd process ref leaking when userptr unmapping kfdlookupprocessbypid hold the kfd process reference to ensure it doesn't get destroyed while sending the segfault event to user space. Calling kfdlookupprocessbypid ...

5.7AI score0.00154EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•2 views

CVE-2025-40195

In the Linux kernel, the following vulnerability has been resolved: mount: handle NULL values in mntnsrelease When calling in listmount mntnsrelease may be passed a NULL pointer. Handle that case gracefully...

5.7AI score0.00164EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-64345

Wasmtime is a runtime for WebAssembly. Prior to version 38.0.4, 37.0.3, 36.0.3, and 24.0.5, Wasmtime's Rust embedder API contains an unsound interaction where a WebAssembly shared linear memory could be viewed as a type which provides safe access to the host Rust to the contents of the linear...

1.8CVSS5.8AI score0.00096EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•3 views

CVE-2025-40192

In the Linux kernel, the following vulnerability has been resolved: Revert "ipmi: fix msg stack when IPMI is disconnected" This reverts commit c608966f3f9c2dca596967501d00753282b395fc. This patch has a subtle bug that can cause the IPMI driver to go into an infinite loop if the BMC misbehaves in ...

5.7AI score0.00166EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•4 views

CVE-2025-40207

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-subdev: Fix alloc failure check in v4l2subdevcallstatetry v4l2subdevcallstatetry macro allocates a subdev state with v4l2subdevstatealloc, but does not check the returned value. If v4l2subdevstatealloc fails, it retur...

5.7AI score0.00166EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•2 views

CVE-2025-64517

sudo-rs is a memory safe implementation of sudo and su written in Rust. With Defaults targetpw or Defaults rootpw enabled, the password of the target account or root account instead of the invoking user is used for authentication. sudo-rs starting in version 0.2.5 and prior to version 0.2.10...

4.4CVSS5.9AI score0.00154EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•5 views

CVE-2025-40178

In the Linux kernel, the following vulnerability has been resolved: pid: Add a judgment for ns null in pidnrns taskpidnrns ns = taskactivepidnscurrent; pidnrnsrcudereferencetaskpidptrtask, type, ns; if pid && ns-level level Sometimes null is returned for taskactivepidns. Then it will trigger kern...

5.7AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40179

In the Linux kernel, the following vulnerability has been resolved: ext4: verify orphan file size is not too big In principle orphan file can be arbitrarily large. However orphan replay needs to traverse it all and we also pin all its buffers in memory. Thus filesystems with absurdly large orphan...

5.7AI score0.00183EPSS
Exploits0References37
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•2 views

CVE-2025-40197

In the Linux kernel, the following vulnerability has been resolved: media: mc: Clear minor number before put device The device minor should not be cleared after the device is released...

5.7AI score0.00175EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•6 views

CVE-2025-40204

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.7AI score0.0017EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•1 views

CVE-2025-40200

In the Linux kernel, the following vulnerability has been resolved: Squashfs: reject negative file sizes in squashfsreadinode Syskaller reports a "WARNING in ovlcopyupfile" in overlayfs. This warning is ultimately caused because the underlying Squashfs file system returns a file with a negative...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•4 views

CVE-2025-40183

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...

5.7AI score0.00183EPSS
Exploits1References38
UbuntuCve
UbuntuCve
•added 2025/11/12 10:15 p.m.•3 views

CVE-2025-40181

In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP When running as an SNP or TDX guest under KVM, force the legacy PCI hole, i.e. memory between Top of Lower Usable DRAM and 4GiB, to be mapped as UC via a forc...

5.8AI score0.00176EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 9:15 p.m.•4 views

CVE-2025-64170

sudo-rs is a memory safe implementation of sudo and su written in Rust. Starting in version 0.2.7 and prior to version 0.2.10, if a user begins entering a password but does not press return for an extended period, a password timeout may occur. When this happens, the keystrokes that were entered a...

3.8CVSS5.9AI score0.00122EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/12 9:15 p.m.•2 views

CVE-2025-63396

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, leading to a Denial of Service DoS...

3.3CVSS6.4AI score0.00116EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2025/11/12 8:15 p.m.•4 views

CVE-2025-13058

A security flaw has been discovered in soerennb eXtplorer up to 2.1.15. The affected element is an unknown function of the component Filename Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The patch is identified as...

5.4CVSS4.5AI score0.00221EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2025/11/12 7:15 p.m.•3 views

CVE-2024-47866

Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument x-amz-copy-source to put an object and specifying an empty string as its content leads to the RGW daemon crashing, resulting in a DoS attack. As of time of publication, no...

7.5CVSS7AI score0.00399EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2025/11/12 6:15 p.m.•1 views

CVE-2025-63811

An issue was discovered in dvsekhvalnov jose2go 1.5.0 thru 1.7.0 allowing an attacker to cause a Denial-of-Service DoS via crafted JSON Web Encryption JWE token with an exceptionally high compression ratio...

7.5CVSS5.9AI score0.00236EPSS
Exploits1References1
UbuntuCve
UbuntuCve
•added 2025/11/12 5:15 p.m.•1 views

CVE-2025-59089

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS6AI score0.00463EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 5:15 p.m.•2 views

CVE-2025-52331

Cross-site scripting XSS vulnerability in the generate report functionality in Rarlab WinRAR 7.11, allows attackers to disclose user information such as the computer username, generated report directory, and IP address. The generate report command includes archived file names without validation i...

6.1CVSS5.8AI score0.00268EPSS
Exploits0References4
Total number of security vulnerabilities68528