Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40077

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid overflow while left shift operation Should cast type of folio-index from pgofft to lofft to avoid overflow while left shift operation...

5.8AI score0.00183EPSS
Exploits0References19
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40052

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix crypto buffers in non-linear memory The crypto API, through the scatterlist API, expects input buffers to be in linear memory. We handle this with the cifssgsetbuf helper that converts vmalloc'd memory to their...

5.9AI score0.00197EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40035

In the Linux kernel, the following vulnerability has been resolved: Input: uinput - zero-initialize uinputffuploadcompat to avoid info leak Struct ffeffectcompat is embedded twice inside uinputffuploadcompat, contains internal padding. In particular, there is a hole after struct ffreplay to satis...

5.7AI score0.00211EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40033

In the Linux kernel, the following vulnerability has been resolved: remoteproc: pru: Fix potential NULL pointer dereference in prurprocsetctable prurprocsetctable accessed rproc-priv before the ISERRORNULL check, which could lead to a null pointer dereference. Move the pru assignment, ensuring we...

5.7AI score0.00197EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.3 views

CVE-2025-40072

In the Linux kernel, the following vulnerability has been resolved: fanotify: Validate the return value of mntnsfromdentry before dereferencing The function dofanotifymark does not validate if mntnsfromdentry returns NULL before dereferencing mntns-userns. This causes a NULL pointer dereference i...

5.7AI score0.0017EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40066

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Check phy before init mstalink in mt7996macstaaddlinks In order to avoid a possible NULL pointer dereference in mt7996macstainitlink routine, move the phy pointer check before running mt7996macstainitlink in...

5.7AI score0.0017EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40081

In the Linux kernel, the following vulnerability has been resolved: perf: armspe: Prevent overflow in PERFIDX2OFF Cast nrpages to unsigned long to avoid overflow when handling large AUX buffer sizes = 2 GiB...

5.9AI score0.00193EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40054

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF issue in f2fsmergepagebio As JY reported in bugzilla 1, Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 pc : 0xffffffe51d249484 f2fsiscpguaranteed+0x70/0x98 lr : 0xffffffe51d24ad...

5.7AI score0.00182EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40061

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race in dotask when draining When dotask exhausts its iteration budget !ret, it sets the state to TASKSTATEIDLE to reschedule, without a secondary check on the current task-state. This can overwrite the...

5.7AI score0.00183EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.3 views

CVE-2025-40048

In the Linux kernel, the following vulnerability has been resolved: uiohvgeneric: Let userspace take care of interrupt mask Remove the logic to set interrupt mask by default in uiohvgeneric driver as the interrupt mask value is supposed to be controlled completely by the user space. If the mask b...

5.9AI score0.00207EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/10/28 12:15 p.m.2 views

CVE-2025-40042

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference There is a critical race condition in kprobe initialization that can lead to NULL pointer dereference and kernel crash. 1135630.084782 Unable t...

5.8AI score0.00207EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.1 views

CVE-2025-40028

In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees the old bitmap via dbitmapfree. However, the driver calls dbitmapfree...

5.7AI score0.00183EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.2 views

CVE-2025-62229

A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension notifications. Improper error handling during notification creation can leave dangling pointers that lead to a use-after-free condition. This can cause memory corruption or a crash, potentially allowing an...

7.3CVSS7.4AI score0.00481EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.1 views

CVE-2025-40026

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Don't recheck L1 intercepts when completing userspace I/O When completing emulation of instruction that generated a userspace exit for I/O, don't recheck L1 intercepts as KVM has already finished that phase of instructi...

5.8AI score0.00241EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.2 views

CVE-2025-40025

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer for non inode dnode As syzbot reported below: ------------ cut here ------------ kernel BUG at fs/f2fs/file.c:1243! Oops: invalid opcode: 0000 1 SMP KASAN NOPTI CPU: 0 UID: 0 PID: 5354...

5.7AI score0.00168EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.1 views

CVE-2025-40027

In the Linux kernel, the following vulnerability has been resolved: net/9p: fix double req put in p9fdcancelled Syzkaller reports a KASAN issue as below: general protection fault, probably for non-canonical address 0xfbd59c0000000021: 0000 1 PREEMPT SMP KASAN NOPTI KASAN: maybe wild-memory-access...

5.7AI score0.00213EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.1 views

CVE-2025-62231

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

7.3CVSS7.2AI score0.00281EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/10/28 12:0 a.m.2 views

CVE-2025-62230

A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...

7.3CVSS7.1AI score0.00267EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/10/27 9:15 p.m.4 views

CVE-2025-62725

Docker Compose trusts the path information embedded in remote OCI compose artifacts. When a layer includes the annotations com.docker.compose.extends or com.docker.compose.envfile, Compose joins the attacker‑supplied value from com.docker.compose.file/com.docker.compose.envfile with its local cac...

8.9CVSS7.4AI score0.13848EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.4 views

CVE-2025-61105

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtylinkinfo function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.5 views

CVE-2025-61101

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinkrmtitfaddr function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.1 views

CVE-2025-62594

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

5.5CVSS5.9AI score0.00334EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.5 views

CVE-2025-61102

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinkadjsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 7:16 p.m.5 views

CVE-2025-61099

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaqueinfodetail function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LS Update packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 7:16 p.m.4 views

CVE-2025-61100

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospfopaquelsadump function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS under specific malformed LSA conditions...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 6:15 p.m.2 views

CVE-2025-55754

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an...

9.6CVSS6.9AI score0.09917EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/10/27 6:15 p.m.7 views

CVE-2025-55752

Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite rules that rewrite query parameters to the URL, an attacker could manipulate the...

7.5CVSS7.2AI score0.66535EPSS
Exploits4References5
UbuntuCve
UbuntuCve
added 2025/10/27 6:15 p.m.2 views

CVE-2025-61795

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

5.3CVSS6.7AI score0.01139EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 p.m.2 views

CVE-2025-62291

In the eap-mschapv2 plugin client-side in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow...

8.1CVSS6.3AI score0.00879EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/10/27 12:15 a.m.3 views

CVE-2025-11971

GitLab has remediated an issue in GitLab EE affecting all versions from 10.6 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an authenticated attacker to trigger unauthorized pipeline executions by manipulating commits...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/27 12:15 a.m.4 views

CVE-2025-11447

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.0 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an unauthenticated attacker to cause a denial of service condition by sending GraphQL requests with crafted JSON payloads...

7.5CVSS7.3AI score0.00773EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/27 12:15 a.m.5 views

CVE-2025-6601

GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.3, and 18.5 before 18.5.1 that under certain conditions could have allowed authenticated users to gain unauthorized project access by exploiting the access request approval workflow...

6.5CVSS5.9AI score0.00292EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/27 12:15 a.m.3 views

CVE-2025-11974

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.7 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an unauthenticated attacker to create a denial of service condition by uploading large files to specific API endpoints...

6.5CVSS5.9AI score0.00351EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/27 12:15 a.m.3 views

CVE-2025-11989

GitLab has remediated an issue in GitLab EE affecting all versions from 17.6.0 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an authenticated attacker to execute unauthorized quick actions by including malicious commands in specific descriptions...

8.1CVSS6AI score0.00163EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/27 12:15 a.m.3 views

CVE-2025-10497

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an unauthenticated attacker to cause a denial of service condition by sending specially crafted payloads...

7.5CVSS7.3AI score0.00588EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.1 views

CVE-2025-12207

A vulnerability has been found in Kamailio 5.5. This affects the function yyerrorat of the file src/core/cfg.y of the component Grammar Rule Handler. Such manipulation leads to null pointer dereference. The attack needs to be performed locally. The exploit has been disclosed to the public and may...

5.5CVSS5.2AI score0.00211EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.6 views

CVE-2025-12198

Last updated 29 October 2025 Notes mdeslaur This issue requires replacing the root-owned configuration file. See https://www.openwall.com/lists/oss-security/2025/10/27/1 This CVE is likely to be rejected. Marking as deferred for now...

8.5CVSS7.4AI score0.00012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.3 views

CVE-2025-12204

A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration File Handler. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

7.8CVSS5.5AI score0.0028EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.2 views

CVE-2025-12206

A flaw has been found in Kamailio 5.5. The impacted element is the function rveisconstant of the file src/core/rvalue.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been published and may be used. It is still unclear if this...

5.5CVSS5.4AI score0.00219EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.3 views

CVE-2025-12205

A vulnerability was detected in Kamailio 5.5. The affected element is the function srpushyystate of the file src/core/cfg.lex of the component Configuration File Handler. The manipulation results in use after free. The attack must be initiated from a local position. The exploit is now public and...

7.8CVSS5.8AI score0.00207EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.2 views

CVE-2025-12199

Last updated 29 October 2025 Notes mdeslaur This issue requires replacing the root-owned configuration file. See https://www.openwall.com/lists/oss-security/2025/10/27/1 This CVE is likely to be rejected. Marking as deferred for now...

4.8CVSS4.1AI score0.00012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/10/27 12:0 a.m.2 views

CVE-2025-12200

Last updated 29 October 2025 Notes mdeslaur This issue requires replacing the root-owned configuration file. See https://www.openwall.com/lists/oss-security/2025/10/27/1 This CVE is likely to be rejected. Marking as deferred for now...

4.8CVSS6.5AI score0.00012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/10/24 11:15 p.m.1 views

CVE-2025-12194

Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All API modules, Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All API modules allows Excessive Allocation. This vulnerability is associated wi...

5.9CVSS7.2AI score0.00142EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/10/24 10:15 p.m.3 views

CVE-2025-62711

Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a...

3.1CVSS5.7AI score0.00405EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/10/24 9:15 p.m.2 views

CVE-2025-52099

Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2025-29088. Reason: This record is a duplicate of CVE-2025-29088. Notes: All CVE users should reference CVE-2025-29088 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

5.8AI score0.00047EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/10/24 1:15 p.m.1 views

CVE-2025-40020

In the Linux kernel, the following vulnerability has been resolved: can: peakusb: fix shift-out-of-bounds issue Explicitly uses a 64-bit constant when the number of bits used for its shifting is 32 which is the case for PC CAN FD interfaces supported by this driver. mkl: update subject, apply...

6.7AI score0.00193EPSS
Exploits0References34
UbuntuCve
UbuntuCve
added 2025/10/24 1:15 p.m.1 views

CVE-2025-40022

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Fix incorrect boolean values in afalgctx Commit 1b34cbbf4f01 "crypto: afalg - Disallow concurrent writes in afalgsendmsg" changed some fields from bool to 1-bit bitfields of type u32. However, some assignments to...

5.9AI score0.00193EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/10/24 1:15 p.m.1 views

CVE-2025-40021

In the Linux kernel, the following vulnerability has been resolved: tracing: dynevent: Add a missing lockdown check on dynevent Since dynamicevents interface on tracefs is compatible with kprobeevents and uprobeevents, it should also check the lockdown status and reject if it is set...

6.7AI score0.00188EPSS
Exploits0References33
UbuntuCve
UbuntuCve
added 2025/10/24 1:15 p.m.1 views

CVE-2025-40024

In the Linux kernel, the following vulnerability has been resolved: vhost: Take a reference on the task in struct vhosttask. vhosttaskcreate creates a task and keeps a reference to its taskstruct. That task may exit early via a signal and its taskstruct will be released. A pending vhosttaskwake...

5.7AI score0.00183EPSS
Exploits0References16
UbuntuCve
UbuntuCve
added 2025/10/24 1:15 p.m.1 views

CVE-2025-40023

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vf: Don't expose sysfs attributes not applicable for VFs VFs can't read BMGPCIECAP0x138340 register nor access PCODE already guarded by the info.skippcode flag so we shouldn't expose attributes that require any of them to...

5.7AI score0.00168EPSS
Exploits0References4
Total number of security vulnerabilities68528