Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39940

In the Linux kernel, the following vulnerability has been resolved: dm-stripe: fix a possible integer overflow There's a possible integer overflow in stripeiohints if we have too large chunk size. Test if the overflow happened, and if it did, don't set limits-iomin and limits-ioopt;...

5.5CVSS6.4AI score0.00135EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39952

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: avoid buffer overflow in WID string configuration Fix the following copy overflow warning identified by Smatch checker. drivers/net/wireless/microchip/wilc1000/wlancfg.c:184 wilcwlanparseresponseframe error:...

7.8CVSS6.8AI score0.00158EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39933

In the Linux kernel, the following vulnerability has been resolved: smb: client: let recvdone verify dataoffset, datalength and remainingdatalength This is inspired by the related server fixes...

5.5CVSS6.7AI score0.0012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39935

In the Linux kernel, the following vulnerability has been resolved: ASoC: codec: sma1307: Fix memory corruption in sma1307settingloaded The sma1307-set.headersize is how many integers are in the header there are 8 of them but instead of allocating space of 8 integers we allocate 8 bytes. This lea...

7.8CVSS6.6AI score0.00133EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39932

In the Linux kernel, the following vulnerability has been resolved: smb: client: let smbddestroy call disableworksync&info-postsendcreditswork In smbddestroy we may destroy the memory so we better wait until postsendcreditswork is no longer pending and will never be started again. I actually just...

5.5CVSS6.3AI score0.00135EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39936

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Always pass in an error pointer to sevplatformshutdownlocked When 9770b428b1a2 "crypto: ccp - Move devinfo/err messages for SEV/SNP init and shutdown" moved the error messages dumping so that they don't need to be...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39950

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Fix a NULL pointer dereference when using TCP-AO with TCPREPAIR A NULL pointer dereference can occur in tcpaofinishconnect during a connect system call on a socket with a TCP-AO key added and TCPREPAIR enabled. The...

5.5CVSS5.9AI score0.00138EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39943

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: validate dataoffset and datalength field of smbdirectdatatransfer If dataoffset and datalength of smbdirectdatatransfer struct are invalid, out of bounds issue could happen. This patch validate dataoffset and...

7.1CVSS6.6AI score0.0014EPSS
Exploits0References32
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39948

In the Linux kernel, the following vulnerability has been resolved: ice: fix Rx page leak on multi-buffer frames The iceputrxmbuf function handles calling iceputrxbuf for each buffer in the current frame. This function was introduced as part of handling multi-buffer XDP support in the ice driver...

5.5CVSS6AI score0.00135EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39945

In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnicdeletetask The original code uses canceldelayedwork in cniccmstopbnx2xhw, which does not guarantee that the delayed work item 'deletetask' has fully completed if it was already running...

7.8CVSS6.8AI score0.00148EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•7 views

CVE-2025-39934

In the Linux kernel, the following vulnerability has been resolved: drm: bridge: anx7625: Fix NULL pointer dereference with early IRQ If the interrupt occurs before resource initialization is complete, the interrupt handler/worker may access uninitialized data such as the I2C tcpcclient device,...

5.5CVSS6.4AI score0.00137EPSS
Exploits0References32
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39941

In the Linux kernel, the following vulnerability has been resolved: zram: fix slot write race condition Parallel concurrent writes to the same zram index result in leaked zsmalloc handles. Schematically we can have something like this: CPU0 CPU1 zramslotlock zsfreehandle zramslotlock zramslotlock...

4.7CVSS5.8AI score0.00087EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39937

In the Linux kernel, the following vulnerability has been resolved: net: rfkill: gpio: Fix crash due to dereferencering uninitialized pointer Since commit 7d5e9737efda "net: rfkill: gpio: get the name and type from device property" rfkillfindtype gets called with the possibly uninitialized "const...

5.5CVSS6.4AI score0.00137EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39942

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: verify remainingdatalength respects maxfragmentedrecvsize This is inspired by the check for dataoffset + datalength...

5.5CVSS6.4AI score0.00136EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•3 views

CVE-2025-39946

In the Linux kernel, the following vulnerability has been resolved: tls: make sure to abort the stream if headers are bogus Normally we wait for the socket to buffer up the whole record before we service it. If the socket has a tiny buffer, however, we read out the data sooner, to prevent...

9.8CVSS6.7AI score0.08942EPSS
Exploits1References27
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39947

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Harden uplink netdev access against device unbind The function mlx5uplinknetdevget gets the uplink netdevice pointer from mdev-mlx5eres.uplinknetdev. However, the netdevice can be removed and its pointer cleared when...

5.5CVSS6.4AI score0.00136EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•3 views

CVE-2025-39944

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix use-after-free bugs in otx2synctstamp The original code relies on canceldelayedwork in otx2ptpdestroy, which does not ensure that the delayed work item synctstampwork has fully completed if it was already runnin...

7.8CVSS6.7AI score0.00138EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39951

In the Linux kernel, the following vulnerability has been resolved: um: virtiouml: Fix use-after-free after putdevice in probe When registervirtiodevice fails in virtioumlprobe, the code sets vudev-registered = 1 even though the device was not successfully registered. This can lead to...

7.8CVSS6.7AI score0.0014EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•3 views

CVE-2025-39929

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix smbdirectrecvio leak in smbdnegotiate error path During tests of another unrelated patch I was able to trigger this error: Objects remaining on kmemcacheshutdown...

5.5CVSS6.4AI score0.00137EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39931

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Set merge to zero early in afalgsendmsg If an error causes afalgsendmsg to abort, ctx-merge may contain a garbage value from the previous loop. This may then trigger a crash on the next entry into afalgsendmsg whe...

5.5CVSS6.4AI score0.00137EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39938

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dais: Fix NULL pointer dereference if source graph failed If earlier opening of source graph fails e.g. ADSP rejects due to incorrect audioreach topology, the graph is closed and "daidata-graphdai-id" is...

5.5CVSS6.4AI score0.00136EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39953

In the Linux kernel, the following vulnerability has been resolved: cgroup: split cgroupdestroywq into 3 workqueues A hung task can occur during 1 LTP cgroup testing when repeatedly mounting/unmounting perfevent and netprio controllers with systemd.unifiedcgrouphierarchy=1. The hang manifests in...

5.5CVSS6.4AI score0.00137EPSS
Exploits0References34
UbuntuCve
UbuntuCve
•added 2025/10/04 8:15 a.m.•1 views

CVE-2025-39949

In the Linux kernel, the following vulnerability has been resolved: qed: Don't collect too many protection override GRC elements In the protection override dump path, the firmware can return far too many GRC elements, resulting in attempting to write past the end of the previously-kmalloc'ed dump...

5.5CVSS6.5AI score0.00137EPSS
Exploits0References33
UbuntuCve
UbuntuCve
•added 2025/10/04 3:15 a.m.•4 views

CVE-2025-61962

In fetchmail before 6.5.6, the SMTP client can crash when authenticating upon receiving a 334 status code in a malformed context...

5.9CVSS5.9AI score0.00384EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/03 8:15 p.m.•3 views

CVE-2025-49844

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, trigger a use-after-free and potentially lead to remote code execution. The problem exists in all...

9.9CVSS7AI score0.86767EPSS
Exploits14References11
UbuntuCve
UbuntuCve
•added 2025/10/03 7:15 p.m.•1 views

CVE-2025-46819

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LUA script to read out-of-bound data or crash the server and subsequent denial of service. The problem exists in all versions of Redis with Lua...

7.1CVSS7AI score0.01023EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/03 7:15 p.m.•1 views

CVE-2025-46818

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists in all versions o...

7.3CVSS6.7AI score0.00701EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/10/03 6:15 p.m.•2 views

CVE-2025-46817

Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to cause an integer overflow and potentially lead to remote code execution The problem exists in all versions of Redis with Lua scripting...

8.8CVSS7.2AI score0.03692EPSS
Exploits1References7
UbuntuCve
UbuntuCve
•added 2025/10/03 4:16 p.m.•2 views

CVE-2025-10729

The module will parse a node which is not a child of a structural node. The node will be deleted after creation but might be accessed later leading to a use after free...

9.4CVSS7.2AI score0.00204EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/10/03 4:16 p.m.•2 views

CVE-2025-10728

When the module renders a Svg file that contains a element, it might end up rendering it recursively leading to stack overflow DoS...

9.4CVSS7.2AI score0.00203EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/10/03 12:15 p.m.•1 views

CVE-2025-27236

A regular Zabbix user can search other users in their user group via Zabbix API by select fields the user does not have access to view. This allows data-mining some field values the user does not have access to...

6.5CVSS5.9AI score0.0035EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/10/03 12:15 p.m.•3 views

CVE-2025-27231

The LDAP 'Bind password' value cannot be read after saving, but a Super Admin account can leak it by changing LDAP 'Host' to a rogue LDAP server. To mitigate this, the 'Bind password' value is now reset on 'Host' change...

4.9CVSS5.9AI score0.00387EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/10/03 12:15 p.m.•2 views

CVE-2025-49641

A regular Zabbix user with no permission to the Monitoring - Problems view is still able to call the problem.view.refresh action and therefore still retrieve a list of active problems...

5.1CVSS5.9AI score0.00274EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/10/03 12:15 p.m.•1 views

CVE-2025-27237

In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file is loaded from a path writable by low-privileged users, allowing malicious modification and potential local privilege escalation by injecting a DLL...

7.3CVSS6AI score0.00325EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2025/10/03 11:15 a.m.•3 views

CVE-2025-11234

A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network acces...

7.5CVSS7AI score0.00783EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/10/02 2:15 p.m.•1 views

CVE-2025-53881

A UNIX Symbolic Link Symlink Following vulnerability in logrotate config in the exim package allowed privilege escalation from mail user/group to root.This issue affects Tumbleweed: from ? before 4.98.2-lp156.248.1...

6.9CVSS5.9AI score0.00157EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•2 views

CVE-2025-54293

Path Traversal in the log file retrieval function in Canonical LXD 5.0 LTS on Linux allows authenticated remote attackers to read arbitrary files on the host system via crafted log file names or symbolic links...

7.1CVSS6AI score0.00541EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•2 views

CVE-2025-54289

Privilege Escalation in operations API in Canonical LXD 6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format...

8.1CVSS6.1AI score0.00193EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•2 views

CVE-2025-54287

Template Injection in instance snapshot creation component in Canonical LXD = 4.0 allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates using the Pongo2 template engine...

7.1CVSS6AI score0.00342EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•1 views

CVE-2025-54291

Information disclosure in images API in Canonical LXD before 6.5 and 5.21.4 on all platforms allows unauthenticated remote attackers to determine project existence via differing HTTP status code responses...

6.9CVSS6AI score0.0036EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•3 views

CVE-2025-54290

Information disclosure in image export API in Canonical LXD before 6.5 and 5.21.4 on Linux allows network attackers to determine project existence without authentication via crafted requests using wildcard fingerprints...

6.9CVSS5.9AI score0.00317EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•1 views

CVE-2025-54292

Path traversal in Canonical LXD LXD-UI versions before 6.5 and 5.21.4 on all platforms allows remote authenticated attackers to access or modify unintended resources via crafted resource names embedded in URL paths...

4.8CVSS5.9AI score0.00299EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•4 views

CVE-2025-11230

Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of service via specially crafted JSON requests...

7.5CVSS7AI score0.00469EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•3 views

CVE-2025-43718

Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata such as GTSPDFEVersion of a PDF document, e.g., a regular expression for a long pdfsubver string. This occurs in Dict::lookup, Catalog::getMetadata, and associated...

2.9CVSS6.4AI score0.00124EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•2 views

CVE-2025-54286

Cross-Site Request Forgery CSRF in LXD-UI in Canonical LXD versions = 5.0 on Linux allows an attacker to create and start container instances without user consent via crafted HTML form submissions exploiting client certificate authentication...

8.8CVSS5.9AI score0.00119EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/02 12:0 a.m.•5 views

CVE-2025-54288

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

6.8CVSS5.9AI score0.00326EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2025/10/01 9:16 p.m.•2 views

CVE-2025-59150

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Version 8.0.0's usage of the tls.subjectaltname keyword can lead to a segmentation fault when the decoded subjectaltname contains a NULL byte. This issue is fixed i...

7.5CVSS5.9AI score0.00492EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2025/10/01 8:18 p.m.•2 views

CVE-2025-56588

Dolibarr ERP & CRM v21.0.1 were discovered to contain a remote code execution RCE vulnerability in the User module configuration via the computed field parameter...

8.8CVSS5.9AI score0.00494EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/10/01 8:18 p.m.•1 views

CVE-2025-59148

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Versions 8.0.0 and below incorrectly handle the entropy keyword when not anchored to a "sticky" buffer, which can lead to a segmentation fault. This issue is fixed ...

7.5CVSS5.9AI score0.00404EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2025/10/01 8:18 p.m.•2 views

CVE-2025-59147

Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Versions 7.0.11 and below, as well as 8.0.0, are vulnerable to detection bypass when crafted traffic sends multiple SYN packets with different sequence numbers with...

7.5CVSS5.9AI score0.00344EPSS
Exploits0References7
Total number of security vulnerabilities68528