Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2023-53325

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: Change logging to dev for mtkdpauxtransfer Change logging from drmerr,info to deverr,info in functions mtkdpauxtransfer and mtkdpauxdotransfer: this will be essential to avoid getting NULL pointer kernel panics ...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2023-53321

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: drop short frames While technically some control frames like ACK are shorter and end after Address 1, such frames shouldn't be forwarded through wmediumd or similar userspace, so require the full 3-address...

7.1CVSS6.2AI score0.0014EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2023-53326

In the Linux kernel, the following vulnerability has been resolved: powerpc: Don't try to copy PPR for task with NULL ptregs powerpc sets up PFKTHREAD and PFIOWORKER with a NULL ptregs, which from my arguably very short checking is not commonly done for other archs. This is fine, except when...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•2 views

CVE-2023-53332

In the Linux kernel, the following vulnerability has been resolved: genirq/ipi: Fix NULL pointer deref in irqdatagetaffinitymask If ipisendmask|single is called with an invalid interrupt number, all the local variables there will be NULL. ipisendverify which is invoked from these functions does...

5.5CVSS5.7AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2023-53306

In the Linux kernel, the following vulnerability has been resolved: fsdax: force clear dirty mark if CoW XFS allows CoW on non-shared extents to combat fragmentation1. The old non-shared extent could be mwrited before, its dax entry is marked dirty. This results in a WARNing: 28.512349 ----------...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2025-58174

LDAP Account Manager LAM is a webfrontend for managing entries stored in an LDAP directory. LAM before 9.3 allows stored cross-site scripting in the Profile section via the profile name field, which renders untrusted input as HTML and executes a supplied script for example a script element. An...

4.6CVSS5.8AI score0.00162EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•2 views

CVE-2022-50344

In the Linux kernel, the following vulnerability has been resolved: ext4: fix null-ptr-deref in ext4writeinfo I caught a null-ptr-deref bug as follows: ================================================================== KASAN: null-ptr-deref in range 0x0000000000000068-0x000000000000006f CPU: 1 PI...

5.5CVSS6.1AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•2 views

CVE-2023-53308

In the Linux kernel, the following vulnerability has been resolved: net: fec: Better handle pmruntimeget failing in .remove In the unlikely event that pmruntimeget disguised as pmruntimeresumeandget fails, the remove callback returned an error early. The problem with this is that the driver core...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2023-53318

In the Linux kernel, the following vulnerability has been resolved: recordmcount: Fix memory leaks in the uwrite function Common realloc mistake: 'fileappend' nulled but not freed upon failure...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•2 views

CVE-2023-53333

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet says: nfconntrackdccppacket has an unique: dh = skbheaderpointerskb, dataoff, sizeofdh, &dh; And nothing more is 'pulled' from the...

7.1CVSS6.3AI score0.00139EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/09/16 5:15 p.m.•1 views

CVE-2023-53322

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Wait for io return on terminate rport System crash due to use after free. Current code allows terminaterportio to exit before making sure all IOs has returned. For FCP-2 device, IO's can hang on in HW because drive...

7.8CVSS6.3AI score0.0014EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 3:15 p.m.•2 views

CVE-2025-4953

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS7AI score0.00596EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•1 views

CVE-2025-39833

In the Linux kernel, the following vulnerability has been resolved: mISDN: hfcpci: Fix warning when deleting uninitialized timer With CONFIGDEBUGOBJECTSTIMERS unloading hfcpci module leads to the following splat: 250.215892 ODEBUG: assertinit not available active state 0 object: ffffffffc01a3dc0...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•2 views

CVE-2025-39832

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix lockdep assertion on sync reset unload event Fix lockdep assertion triggered during sync reset unload event. When the sync reset flow is initiated using the devlink reload fwactivate option, the PF already holds the...

5.5CVSS5.9AI score0.00107EPSS
Exploits0References16
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•1 views

CVE-2025-39831

In the Linux kernel, the following vulnerability has been resolved: fbnic: Move phylink resume out of servicetask and into open/close The fbnic driver was presenting with the following locking assert coming out of a PM resume: 42.208116 T164 RTNL: assertion failed at drivers/net/phy/phylink.c 261...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•2 views

CVE-2025-39830

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, Fix memory leak in hwspoolbuddyinit error path In the error path of hwspoolbuddyinit, the buddy allocator cleanup doesn't free the allocator structure itself, causing a memory leak. Add the missing kfree to properl...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•1 views

CVE-2025-39836

In the Linux kernel, the following vulnerability has been resolved: efi: stmm: Fix incorrect buffer allocation method The communication buffer allocated by setupmmhdr is later on passed to teeshmregisterkernelbuf. The latter expects those buffers to be contiguous pages, but setupmmhdr just uses...

7.8CVSS6.7AI score0.00142EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•1 views

CVE-2025-39835

In the Linux kernel, the following vulnerability has been resolved: xfs: do not propagate ENODATA disk errors into xattr code ENODATA aka ENOATTR has a very specific meaning in the xfs xattr code; namely, that the requested attribute name could not be found. However, a medium error from disk may...

7.8CVSS6.6AI score0.00157EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/09/16 2:15 p.m.•1 views

CVE-2025-39834

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, Fix memory leak in hwsactiongetsharedstcnic error flow When an invalid stctype is provided, the function allocates memory for sharedstc but jumps to unlockandout without freeing it, causing a memory leak. Fix by...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•1 views

CVE-2025-39827

In the Linux kernel, the following vulnerability has been resolved: net: rose: include node references in roseneigh refcount Current implementation maintains two separate reference counting mechanisms: the 'count' field in struct roseneigh tracks references from rosenode structures, while the 'us...

5.5CVSS5.9AI score0.00133EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•1 views

CVE-2025-39823

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use arrayindexnospec with indices that come from guest min and destid are guest-controlled indices. Using arrayindexnospec after the bounds checks clamps these values to mitigate speculative execution side-channels...

7.8CVSS6.6AI score0.00165EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•1 views

CVE-2025-39829

In the Linux kernel, the following vulnerability has been resolved: trace/fgraph: Fix the warning caused by missing unregister notifier This warning was triggered during testing on v6.16: notifier callback ftracesuspendnotifiercall already registered WARNING: CPU: 2 PID: 86 at kernel/notifier.c:2...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•8 views

CVE-2025-39825

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix race with concurrent opens in rename2 Besides sending the rename request to the server, the rename process also involves closing any deferred close, waiting for outstanding I/O to complete as well as marking all...

4.7CVSS5.9AI score0.00101EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•2 views

CVE-2025-39824

In the Linux kernel, the following vulnerability has been resolved: HID: asus: fix UAF via HIDCLAIMEDINPUT validation After hidhwstart is called hidinputconnect will eventually be called to set up the device with the input layer since the HIDCONNECTDEFAULT connect mask is used. During...

7.8CVSS6.4AI score0.00152EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•3 views

CVE-2025-39826

In the Linux kernel, the following vulnerability has been resolved: net: rose: convert 'use' field to refcountt The 'use' field in struct roseneigh is used as a reference counter but lacks atomicity. This can lead to race conditions where a roseneigh structure is freed while still being reference...

7CVSS6.5AI score0.00132EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/09/16 1:16 p.m.•6 views

CVE-2025-39828

In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary write in atmtcprecvcontrol. syzbot reported the splat below. 0 When atmtcpvopen or atmtcpvclose is called via connect or close, atmtcpsendcontrol is called to send an in-kernel special message. The...

7.8CVSS6.7AI score0.00157EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39810

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix memory corruption when FW resources change during ifdown bnxtsetdfltrings assumes that it is always called before any TC has been created. So it doesn't take bp-numtc into account and assumes that it is always 0 or 1...

7.8CVSS6.3AI score0.00152EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-39819

In the Linux kernel, the following vulnerability has been resolved: fs/smb: Fix inconsistent refcnt update A possible inconsistent update of refcount was identified in smb2compoundop. Such inconsistent update could lead to possible resource leaks. Why it is a possible bug: 1. In the comment secti...

5.5CVSS5.9AI score0.00137EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39821

In the Linux kernel, the following vulnerability has been resolved: perf: Avoid undefined behavior from stopping/starting inactive events Calling pmu-start/stop on perf events in PERFEVENTSTATEOFF can leave event-hw.idx at -1. When PMU drivers later attempt to use this negative index as a shift...

7.8CVSS6.5AI score0.00148EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•2 views

CVE-2025-39805

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix unregisternetdev call order in macbremove When removing a macb device, the driver calls phyexit before unregisternetdev. This leads to a WARN from kernfs: ------------ cut here ------------ kernfs: can not remove...

5.5CVSS5.8AI score0.00146EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•2 views

CVE-2025-39815

In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: fix stack overrun when loading vlenb The userspace load can put up to 2048 bits into an xlen bit stack buffer. We want only xlen bits, so check the size beforehand...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39818

In the Linux kernel, the following vulnerability has been resolved: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save Improper use of secondary pointer &dev-i2csubipregs caused kernel crash and out-of-bounds error: BUG: KASAN: slab-out-of-bounds in...

7.8CVSS6.6AI score0.00134EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•2 views

CVE-2025-39809

In the Linux kernel, the following vulnerability has been resolved: HID: intel-thc-hid: intel-quicki2c: Fix ACPI dsd ICRS/ISUB length The QuickI2C ACPI DSD methods return ICRS and ISUB data with a trailing byte, making the actual length is one more byte than the structs defined. It caused...

7.8CVSS6.6AI score0.00143EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-10531

Mitigation bypass in the Web Compatibility: Tooling component. This vulnerability was fixed in Firefox 143 and Thunderbird 143...

5.4CVSS6AI score0.00255EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-39817

In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-bounds in efivarfsdcompare Observed on kernel 6.6 present on master as well: BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0 Call trace: kasancheckrange+0xe8/0x190 asanloadN+0x1c/0x28 memcmp+0x98/0xd0...

7.1CVSS6.3AI score0.00152EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39812

In the Linux kernel, the following vulnerability has been resolved: sctp: initialize more fields in sctpv6fromsk syzbot found that sin6scopeid was not properly initialized, leading to undefined behavior. Clear sin6scopeid and sin6flowinfo. BUG: KMSAN: uninit-value in sctpv6cmpaddr+0x887/0x8c0...

5.5CVSS5.9AI score0.0016EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-39806

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: fix slab out-of-bounds access in mtreportfixup A malicious HID device can trigger a slab out-of-bounds during mtreportfixup by passing in report descriptor smaller than 607 bytes. mtreportfixup attempts to patch...

7.1CVSS6.6AI score0.0015EPSS
Exploits0References27
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39813

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix potential warning in traceprintkseq during ftracedump When calling ftracedumpone concurrently with reading tracepipe, a WARNONONCE in traceprintkseq can be triggered due to a race condition. The issue occurs because:...

4.7CVSS5.8AI score0.0011EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-39814

In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceunplugauxdev on reset Issuing a reset when the driver is loaded without RDMA support, will results in a crash as it attempts to remove RDMA's non-existent auxbus device: echo 1...

5.5CVSS5.9AI score0.0012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39807

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add error handling for old state CRTC in atomicdisable Introduce error handling to address an issue where, after a hotplug event, the cursor continues to update. This situation can lead to a kernel panic due to...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39820

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add a null ptr check for dpuencoderneedsmodeset The drmatomicgetnewconnectorstate can return NULL if the connector is not part of the atomic state. Add a check to prevent a NULL pointer dereference. This follows the...

5.5CVSS5.9AI score0.00121EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•1 views

CVE-2025-39811

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: Clear the scratchpt pointer on error Avoid triggering a dereference of an error pointer on cleanup in xevmfreescratch by clearing any scratchpt error pointer. cherry picked from commit...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-10532

Incorrect boundary conditions in the JavaScript: GC component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.5CVSS6.6AI score0.00291EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•4 views

CVE-2025-10534

Spoofing issue in the Site Permissions component. This vulnerability was fixed in Firefox 143 and Thunderbird 143...

8.1CVSS7.2AI score0.00328EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•4 views

CVE-2025-10536

Information disclosure in the Networking: Cache component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.2CVSS6.4AI score0.00154EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•3 views

CVE-2025-10533

Integer overflow in the SVG component. This vulnerability was fixed in Firefox 143, Firefox ESR 115.28, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

8.8CVSS7.3AI score0.00687EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•2 views

CVE-2025-10527

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

7.1CVSS7AI score0.00258EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•4 views

CVE-2025-10528

Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

7.3CVSS7.1AI score0.00329EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•4 views

CVE-2025-10529

Same-origin policy bypass in the Layout component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.5CVSS6.6AI score0.00281EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/09/16 1:15 p.m.•4 views

CVE-2025-39822

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: fix signedness in thislen calculation When importing and using buffers, buf-len is considered unsigned. However, buf-len is converted to signed int when committing. This can lead to unexpected behavior if the buffer...

5.5CVSS6AI score0.0012EPSS
Exploits0References4
Total number of security vulnerabilities68528