Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2025/09/11 12:0 a.m.3 views

CVE-2025-48038

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh sshsftp modules allows Excessive Allocation, Resource Leak Exposure. This vulnerability is associated with program files lib/ssh/src/sshsftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4...

5.3CVSS5.9AI score0.00359EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/10 7:15 a.m.2 views

CVE-2025-9943

An SQL injection vulnerability has been identified in the "ID" attribute of the SAML response when the replay cache of the Shibboleth Service Provider SP is configured to use an SQL database as storage service. An unauthenticated attacker can exploit this issue via blind SQL injection, allowing f...

9.1CVSS5.9AI score0.00368EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/10 7:0 a.m.2 views

CVE-2025-9086

A cookie is set using the secure keyword for https://target 2. curl is redirected to or otherwise made to speak with http://target same hostname, but using clear text HTTP using the same cookie set 3. The same cookie name is set - but with just a slash as path path="/",. Since this site is not...

7.5CVSS6.6AI score0.01301EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/09/10 12:0 a.m.2 views

CVE-2025-10200

Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS7.4AI score0.00589EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/09/10 12:0 a.m.2 views

CVE-2025-10201

Inappropriate implementation in Mojo in Google Chrome on Android, Linux, ChromeOS prior to 140.0.7339.127 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.4AI score0.00258EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/09/09 2:15 p.m.2 views

CVE-2025-9951

A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000...

7.2CVSS7.2AI score0.00372EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/09/09 12:15 p.m.2 views

CVE-2025-8277

A flaw was found in libssh's handling of key exchange KEX processes when a client repeatedly sends incorrect KEX guesses. The library fails to free memory during these rekey operations, which can gradually exhaust system memory. This issue can lead to crashes on the client side, particularly when...

3.1CVSS6.5AI score0.00375EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/08 3:15 p.m.2 views

CVE-2025-40929

Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact...

5.6CVSS6.2AI score0.00405EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/08 3:15 p.m.6 views

CVE-2025-40928

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact...

7.5CVSS7.2AI score0.00603EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/08 3:15 p.m.1 views

CVE-2025-7709

An integer overflow exists in the FTS5 https://sqlite.org/fts5.html extension. It occurs when the size of an array of tombstone pointers is calculated and truncated into a 32-bit integer. A pointer to partially controlled data can then be written out of bounds...

6.9CVSS5.9AI score0.00322EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/09/08 11:15 a.m.2 views

CVE-2014-125128

'sanitize-html' prior to version 1.0.3 is vulnerable to Cross-site Scripting XSS. The function 'naughtyHref' doesn't properly validate the hyperreference href attribute in anchor tags , allowing bypasses that contain different casings, whitespace characters, or hexadecimal encodings...

6.1CVSS5.9AI score0.00256EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2025/09/08 10:15 a.m.2 views

CVE-2019-25225

sanitize-html prior to version 2.0.0-beta is vulnerable to Cross-site Scripting XSS. The sanitizeHtml function in index.js does not sanitize content when using the custom transformTags option, which is intended to convert attribute values into text. As a result, malicious input can be transformed...

6.1CVSS5.8AI score0.00251EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2025/09/08 9:15 a.m.2 views

CVE-2025-58782

Deserialization of Untrusted Data vulnerability in Apache Jackrabbit Core and Apache Jackrabbit JCR Commons. This issue affects Apache Jackrabbit Core: from 1.0.0 through 2.22.1; Apache Jackrabbit JCR Commons: from 1.0.0 through 2.22.1. Deployments that accept JNDI URIs for JCR lookup from...

6.5CVSS6.4AI score0.01286EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.4 views

CVE-2025-39734

In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inodetrylock with inodelock" This reverts commit 69505fe98f198ee813898cbcaf6770949636430b. Initially, conditional lock acquisition was removed to fix an xfstest bug that was observed during internal...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References40
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.1 views

CVE-2025-39727

In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix potential buffer overflow in setupclusters In setupswapmap, we only ensure badpages are in range 0, lastpage. As maxpages might be = maxpages. Only call incclusterinfopage for badpage which is maxpages to fix the...

7.8CVSS6.8AI score0.0016EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.3 views

CVE-2025-39730

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfsfhtodentry The function needs to check the minimal filehandle length before it can access the embedded filehandle...

7.8CVSS6.6AI score0.00181EPSS
Exploits0References42
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.0 views

CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.1 views

CVE-2025-39733

In the Linux kernel, the following vulnerability has been resolved: team: replace team lock with rtnl lock syszbot reports various ordering issues for lower instance locks and team lock. Switch to using rtnl lock for protecting team device, similar to bonding. Based on the patch by Tetsuo Handa...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.3 views

CVE-2025-39731

In the Linux kernel, the following vulnerability has been resolved: f2fs: vmunmapram may be called from an invalid context When testing F2FS with xfstests using UFS backed virtual disks the kernel complains sometimes that f2fsreleasedecompmem calls vmunmapram from an invalid context. Example trac...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References30
UbuntuCve
UbuntuCve
added 2025/09/07 4:15 p.m.2 views

CVE-2025-39729

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix dereferencing uninitialized error pointer Fix below smatch warnings: drivers/crypto/ccp/sev-dev.c:1312 sevplatforminitlocked error: we previously assumed 'error' could be null...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/06 7:15 p.m.2 views

CVE-2025-58438

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS6AI score0.01402EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/06 6:15 p.m.6 views

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

3.2CVSS5.9AI score0.00144EPSS
Exploits0References24
UbuntuCve
UbuntuCve
added 2025/09/05 10:15 p.m.8 views

CVE-2025-58367

DeepDiff is a project focused on Deep Difference and search of any Python data. Versions 5.0.0 through 8.6.0 are vulnerable to class pollution via the Delta class constructor, and when combined with a gadget available in DeltaDiff, it can lead to Denial of Service and Remote Code Execution via...

10CVSS5.9AI score0.01056EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/09/05 10:15 p.m.1 views

CVE-2025-57807

ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob, which permits advancing the stream offset beyond the current end without increasing capacity, and WriteBlob, which then expan...

9.8CVSS5.9AI score0.00274EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2025/09/05 9:15 p.m.0 views

CVE-2025-10061

An authorized user can cause a crash in the MongoDB Server through a specially crafted $group query. This vulnerability is related to the incorrect handling of certain accumulator functions when additional parameters are specified within the $group operation. This vulnerability could lead to deni...

6.5CVSS6.7AI score0.00289EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/09/05 9:15 p.m.1 views

CVE-2025-10059

An improper setting of the lsid field on any sharded query can cause a crash in MongoDB routers. This issue occurs when a generic argument lsid is provided in a case when it is not applicable. This affects MongoDB Server v6.0 versions prior to 6.0.x, MongoDB Server v7.0 versions prior to 7.0.18 a...

6.5CVSS5.9AI score0.00254EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/09/05 9:15 p.m.3 views

CVE-2025-10060

MongoDB Server may allow upsert operations retried within a transaction to violate unique index constraints, potentially causing an invariant failure and server crash during commit. This issue may be triggered by improper WriteUnitOfWork state management. This issue affects MongoDB Server v6.0...

7.5CVSS6.6AI score0.00305EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/09/05 8:15 p.m.3 views

CVE-2025-9566

There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the targ...

8.1CVSS6.8AI score0.01008EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39684

In the Linux kernel, the following vulnerability has been resolved: comedi: Fix use of uninitialized memory in doinsnioctl and doinsnlistioctl syzbot reports a KMSAN kernel-infoleak in doinsnioctl. A kernel buffer is allocated to hold insn-n samples each of which is an unsigned int. For some...

5.5CVSS6AI score0.00162EPSS
Exploits0References33
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.3 views

CVE-2025-38731

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix vmbindioctl double free bug If the argument check during an array bind fails, the bindops are freed twice as seen below. Fix this by setting bindops to NULL after freeing...

7.8CVSS6.6AI score0.00144EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.4 views

CVE-2025-39686

In the Linux kernel, the following vulnerability has been resolved: comedi: Make insnrwemulatebits do insn-n samples The insnrwemulatebits function is used as a default handler for INSNREAD instructions for subdevices that have a handler for INSNBITS but not for INSNREAD. Similarly, it is used as...

7.8CVSS6.6AI score0.00171EPSS
Exploits0References33
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.4 views

CVE-2025-39720

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix refcount leak causing resource not released When ksmbdconnreleasingopinfo-conn returns true,the refcount was not decremented properly, causing a refcount leak that prevents the count from reaching zero and the memory...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References22
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.3 views

CVE-2025-38736

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...

7.1CVSS6.5AI score0.00149EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-39715

In the Linux kernel, the following vulnerability has been resolved: parisc: Revise gateway LWS calls to probe user read access We use load and stbys,e instructions to trigger memory reference interruptions without writing to memory. Because of the way read access support is implemented, read acce...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References23
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.0 views

CVE-2025-39707

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: check if hubbub is NULL in debugfs/amdgpudmcapabilities HUBBUB structure is not initialized on DCE hardware, so check if it is NULL to avoid null dereference while accessing amdgpudmcapabilities file in debugfs...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39704

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack protector issue in sendipidata Function kvmiobusread is called in function sendipidata, buffer size of parameter val should be at least 8 bytes. Since some emulation functions like loongarchipireadl and...

5.5CVSS6.1AI score0.00131EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-39700

In the Linux kernel, the following vulnerability has been resolved: mm/damon/ops-common: ignore migration request to invalid nodes damonmigratepages tries migration even if the target node is invalid. If users mistakenly make such invalid requests via DAMOSMIGRATEHOT,COLD action, the below kernel...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39723

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix unbuffered write error handling If all the subrequests in an unbuffered write stream fail, the subrequest collector doesn't update the stream-transferred value and it retains its initial LONGMAX value. Unfortunately, i...

7.8CVSS6.5AI score0.00141EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.0 views

CVE-2025-39724

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to PSLVERR When the PSLVERRRESPEN parameter is set to 1, the device generates an error response if an attempt is made to read an empty RBR Receive Buffer Register while the FIFO is enabled. In...

5.5CVSS5.9AI score0.00157EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-38737

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix oops due to uninitialised variable Fix smb3inittransformrq to initialise buffer to NULL before calling netfsallocfolioqbuffer as netfs assumes it can append to the buffer it is given. Setting it to NULL means it should...

5.5CVSS6AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-39676

In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Prevent a potential error pointer dereference The qla4xxxgetepfwdb function is supposed to return NULL on error, but qla4xxxepconnect returns error pointers. Propagating the error pointers will lead to an Oops in t...

5.5CVSS5.9AI score0.0016EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39695

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Flush delayed SKBs while releasing RXE resources When skb packets are sent out, these skb packets still depends on the rxe resources, for example, QP, sk, when these packets are destroyed. If these rxe resources are...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-39696

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: tas2781: Fix wrong reference of tasdevicepriv During the conversion to unify the calibration data management, the reference to tasdevicepriv was wrongly set to h-hdapriv instead of h-priv. This resulted in memory...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39714

In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution while streaming When an program is streaming ffplay and another program qv4l2 changes the TV standard from NTSC to PAL, the kernel crashes due to trying to copy to unmapped memory. Changing from NTSC...

5.5CVSS6AI score0.00148EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-39713

In the Linux kernel, the following vulnerability has been resolved: media: rainshadow-cec: fix TOCTOU race condition in raininterrupt In the interrupt handler raininterrupt, the buffer full check on rain-buflen is performed before acquiring rain-buflock. This creates a Time-of-Check to Time-of-Us...

4.7CVSS5.9AI score0.00125EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39718

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Validate length in packet header before skbput When receiving a vsock packet in the guest, only the virtqueue buffer size is validated prior to virtiovsockskbrxput. Unfortunately, virtiovsockskbrxput uses the length...

5.5CVSS6.4AI score0.00137EPSS
Exploits0References23
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39712

In the Linux kernel, the following vulnerability has been resolved: media: mt9m114: Fix deadlock in getframeinterval/setframeinterval Getting / Setting the frame interval using the V4L2 subdev pad ops getframeinterval/setframeinterval causes a deadlock, as the subdev state is locked in the 1 but...

5.5CVSS5.9AI score0.00105EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.1 views

CVE-2025-39708

In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix NULL pointer dereference A warning reported by smatch indicated a possible null pointer dereference where one of the arguments to API "irishfigen2handlesystemerror" could sometimes be null. To fix this, add a che...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.2 views

CVE-2025-39726

In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ismcmd The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of today the s390/ism driv...

4.7CVSS5.9AI score0.00102EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/09/05 6:15 p.m.0 views

CVE-2025-38732

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfreject: don't leak dst refcount for loopback packets recent patches to add a WARN when replacing skb dst entry found an old bug: WARNING: include/linux/skbuff.h:1165 skbdstcheckunset include/linux/skbuff.h:1164 inlin...

5.5CVSS5.9AI score0.0016EPSS
Exploits0References34
Total number of security vulnerabilities68528