Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40158

In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6output Use RCU in ip6output in order to use dstdevrcu to prevent possible UAF. We can remove rcureadlock/rcureadunlock pairs from ip6finishoutput2...

6.7AI score0.00193EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40156

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe The drv-sramreg pointer could be set to ERRPTR-EPROBEDEFER which would lead to a error pointer dereference. Use ISERRORNULL to check that the pointer is vali...

5.7AI score0.00166EPSS
Exploits0References22
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40169

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the checkaluop function validates instructions with ALU operations. The 'offset' field in these instructions is a signed 16-bit integer. The existing check...

5.7AI score0.00166EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.7AI score0.00171EPSS
Exploits0References36
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40176

In the Linux kernel, the following vulnerability has been resolved: tls: wait for pending async decryptions if tlsstrpmsghold fails Async decryption calls tlsstrpmsghold to create a clone of the input skb to hold references to the memory it uses. If we fail to allocate that clone, proceeding with...

5.8AI score0.00166EPSS
Exploits0References21
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40146

In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix potential deadlock while nrrequests grown Allocate and free schedtags while queue is freezed can deadlock1, this is a long term problem, hence allocate memory before freezing queue and free memory after queue is...

5.7AI score0.00201EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•9 views

CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

5.8AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•4 views

CVE-2025-40175

In the Linux kernel, the following vulnerability has been resolved: idpf: cleanup remaining SKBs in PTP flows When the driver requests Tx timestamp value, one of the first steps is to clone SKB using skbget. It increases the reference counter for that SKB to prevent unexpected freeing by another...

5.7AI score0.00154EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40113

In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcom: pas: Shutdown lite ADSP DTB on X1E The ADSP firmware on X1E has separate firmware binaries for the main firmware and the DTB. The same applies for the "lite" firmware loaded by the boot firmware. When preparing ...

5.8AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40139

In the Linux kernel, the following vulnerability has been resolved: smc: Use skdstget and dstdevrcu in in smcclcprfxset. smcclcprfxset is called during connect and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and devdstrcu under rcureadlock after...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40155

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

5.7AI score0.00196EPSS
Exploits0References20
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40136

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - request reserved interrupt for virtual function The device interrupt vector 3 is an error interrupt for physical function and a reserved interrupt for virtual function. However, the driver has not registere...

5.7AI score0.00165EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•5 views

CVE-2025-40124

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC III Anthony Yznaga tracked down that a BUGON in ext4 code with large folios enabled resulted from copyfromuser returning impossibly large values greater tha...

5.8AI score0.00188EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40121

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5651: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver just ignores and leaves as is, which may lead to unepxected results like OOB access. This...

5.7AI score0.00192EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•2 views

CVE-2025-40166

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Check GuC running state before deregistering exec queue In normal operation, a registered exec queue is disabled and deregistered through the GuC, and freed only after the GuC confirms completion. However, if the driv...

5.7AI score0.00164EPSS
Exploits0References19
UbuntuCve
UbuntuCve
•added 2025/11/12 11:15 a.m.•3 views

CVE-2025-40143

In the Linux kernel, the following vulnerability has been resolved: bpf: dont report verifier bug for missing bpfsccvisit on speculative path Syzbot generated a program that triggers a verifierbug call in maybeexitscc. maybeexitscc assumes that, when called for a state with insnidx in some SCC,...

5.9AI score0.0022EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/11/12 2:15 a.m.•1 views

CVE-2025-40111

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix Use-after-free in validation Nodes stored in the validation duplicates hashtable come from an arena allocator that is cleared at the end of vmwexecbufprocess. All nodes are expected to be cleared in...

5.7AI score0.00175EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/11/12 2:15 a.m.•1 views

CVE-2025-40110

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a null-ptr access in the cursor snooper Check that the resource which is converted to a surface exists before trying to use the cursor snooper on it. vmwcmdrescheck allows explicit invalid SVGA3DINVALIDID...

5.9AI score0.00171EPSS
Exploits0References31
UbuntuCve
UbuntuCve
•added 2025/11/12 12:0 a.m.•4 views

CVE-2025-13042

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.166 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00231EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/12 12:0 a.m.•1 views

CVE-2025-57812

CUPS is a standards-based, open-source printing system, and libcupsfilters contains the code of the filters of the former cups-filters package as library functions to be used for the data format conversion tasks needed in Printer Applications. In CUPS-Filters versions up to and including 1.28.17...

3.7CVSS6AI score0.00391EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2025/11/12 12:0 a.m.•2 views

CVE-2025-64503

cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In cups-filters prior to 1.28.18, by crafting a PDF file with a large MediaBox value, an attacker can cause CUPS-Filter 1.x’s pdftoraster tool to...

4CVSS6AI score0.00186EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•2 views

CVE-2025-12748

A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL checks. A malicious user with limited permissions could exploit this flaw by submitting a specially crafted XML file, causing libvirt to allocate too...

5.5CVSS6.7AI score0.00185EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13013

Mitigation bypass in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Firefox ESR 115.30, Thunderbird 145, and Thunderbird 140.5...

6.1CVSS6.4AI score0.00175EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13025

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

7.5CVSS7.1AI score0.00246EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•4 views

CVE-2025-13027

Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

8.1CVSS7.2AI score0.00297EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•1 views

CVE-2025-13021

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•4 views

CVE-2025-13016

Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

7.5CVSS7.3AI score0.0041EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13022

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•2 views

CVE-2025-13024

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•5 views

CVE-2025-13019

Same-origin policy bypass in the DOM: Workers component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.1CVSS7.2AI score0.00222EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•2 views

CVE-2025-13020

Use-after-free in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.8CVSS7.3AI score0.00247EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•4 views

CVE-2025-13026

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13014

Use-after-free in the Audio/Video component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Firefox ESR 115.30, Thunderbird 145, and Thunderbird 140.5...

8.8CVSS7.3AI score0.00255EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13018

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.1CVSS7.2AI score0.00222EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•6 views

CVE-2025-13017

Same-origin policy bypass in the DOM: Notifications component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Thunderbird 145, and Thunderbird 140.5...

8.1CVSS7.2AI score0.00222EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•5 views

CVE-2025-13015

Spoofing issue in Firefox. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, and Firefox ESR 115.30...

3.4CVSS5.8AI score0.00226EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/11 12:0 a.m.•3 views

CVE-2025-13012

Race condition in the Graphics component. This vulnerability was fixed in Firefox 145, Firefox ESR 140.5, Firefox ESR 115.30, Thunderbird 145, and Thunderbird 140.5...

7.5CVSS7.1AI score0.00206EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/11/10 10:15 p.m.•1 views

CVE-2025-64182

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, a memory safety bug in the legacy OpenEXR Python adapter the deprecated...

7.8CVSS7.5AI score0.0021EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/11/10 10:15 p.m.•2 views

CVE-2025-64512

Pdfminer.six is a community maintained fork of the original PDFMiner, a tool for extracting information from PDF documents. Prior to version 20251107, pdfminer.six will execute arbitrary code from a malicious pickle file if provided with a malicious PDF file. The CMapDB.loaddata function in...

8.6CVSS7.3AI score0.00281EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2025/11/10 10:15 p.m.•2 views

CVE-2025-64183

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.2.0 through 3.2.4, 3.3.0 through 3.3.5, and 3.4.0 through 3.4.2, there is a use-after-free in PyObjectStealAttrString of pyOpenEXRold.cpp...

7.5CVSS7.1AI score0.00266EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2025/11/10 10:15 p.m.•2 views

CVE-2025-64181

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.0 through 3.3.5 and 3.4.0 through 3.4.2, while fuzzing openexrexrcheckfuzzer, Valgrind reports a conditional branch depending on...

7.5CVSS7.1AI score0.00339EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2025/11/10 10:15 p.m.•1 views

CVE-2025-64507

Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true...

8.6CVSS5.8AI score0.00148EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•3 views

CVE-2025-12432

Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00207EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•2 views

CVE-2025-12433

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•2 views

CVE-2025-12434

Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.9AI score0.0016EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•2 views

CVE-2025-12447

Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.9AI score0.00156EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•2 views

CVE-2025-12446

Incorrect security UI in SplitView in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. Chromium security severity: Low...

4.2CVSS5.9AI score0.00144EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•3 views

CVE-2025-12430

Object lifecycle issue in Media in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

7.5CVSS7.1AI score0.00282EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/11/10 8:15 p.m.•3 views

CVE-2025-12431

Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: High...

6.5CVSS6.6AI score0.0017EPSS
Exploits0References1
Total number of security vulnerabilities68528