Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2025/08/20 10:15 p.m.3 views

CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

9.1CVSS6.8AI score0.00651EPSS
Exploits2References5
UbuntuCve
UbuntuCve
added 2025/08/20 10:15 p.m.1 views

CVE-2025-9287

Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...

9.1CVSS7.1AI score0.0047EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/08/20 8:15 p.m.1 views

CVE-2025-5115

In Eclipse Jetty, versions =9.4.57, =10.0.25, =11.0.25, =12.0.21, =12.1.0.alpha2, an HTTP/2 client may trigger the server to send RSTSTREAM frames, for example by sending frames that are malformed or that should not be sent in a particular stream state, therefore forcing the server to consume...

7.7CVSS6.8AI score0.01567EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/08/20 8:15 p.m.4 views

CVE-2025-54988

Critical XXE in Apache Tika tika-parser-pdf-module in Apache Tika 1.13 through and including 3.2.1 on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF. An attacker may be able to read sensitive data or trigger malicious requests to...

9.8CVSS7.2AI score0.02962EPSS
Exploits4References5
UbuntuCve
UbuntuCve
added 2025/08/20 12:0 a.m.0 views

CVE-2025-9132

Out of bounds write in V8 in Google Chrome prior to 139.0.7258.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.02954EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/08/20 12:0 a.m.0 views

CVE-2025-54363

Microsoft Knack 0.12.0 allows Regular expression Denial of Service ReDoS in the knack.introspection module. extractfullsummaryfromsignature employs an inefficient regular expression pattern: "\s:param\s+.+?\s:." that is susceptible to catastrophic backtracking when processing crafted docstrings...

6.9CVSS5.9AI score0.00372EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/08/20 12:0 a.m.1 views

CVE-2025-54364

Microsoft Knack 0.12.0 allows Regular expression Denial of Service ReDoS in the knack.introspection module. optiondescriptions employs an inefficient regular expression pattern: "\s:param\s+.+?\s:." that is susceptible to catastrophic backtracking when processing crafted docstrings containing a...

6.9CVSS5.9AI score0.00333EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.3 views

CVE-2025-54144

The URL scheme used by Firefox to facilitate searching of text queries could incorrectly allow attackers to open arbitrary website URLs or internal pages if a user was tricked into clicking a link. This vulnerability was fixed in Firefox for iOS 141...

5.4CVSS5.9AI score0.0021EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.3 views

CVE-2025-9184

Memory safety bugs present in Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

8.1CVSS7.4AI score0.00343EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.2 views

CVE-2025-9186

Spoofing issue in the Address Bar component of Firefox Focus for Android. This vulnerability was fixed in Firefox 142...

6.5CVSS5.8AI score0.00197EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.3 views

CVE-2025-9181

Uninitialized memory in the JavaScript Engine component. This vulnerability was fixed in Firefox 142, Firefox ESR 128.14, Firefox ESR 140.2, Thunderbird 142, Thunderbird 128.14, and Thunderbird 140.2...

6.5CVSS6.6AI score0.00337EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.4 views

CVE-2025-54143

Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the expected sandbox restrictions declared on the parent page. This vulnerability was fixed in Firefox for iOS 141...

9.8CVSS5.8AI score0.00449EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.4 views

CVE-2025-9179

An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process. This vulnerability was fixed in Firefox 142, Firefox ESR 115.27, Firefox ESR 128.14,...

9.8CVSS7.3AI score0.0053EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.5 views

CVE-2025-8041

In the address bar, Firefox for Android truncated the display of URLs from the end instead of prioritizing the origin. This vulnerability was fixed in Firefox 141...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.4 views

CVE-2025-9182

Denial-of-service due to out-of-memory in the Graphics: WebRender component. This vulnerability was fixed in Firefox 142, Firefox ESR 140.2, Thunderbird 142, and Thunderbird 140.2...

7.5CVSS7.1AI score0.00351EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.4 views

CVE-2025-9187

Memory safety bugs present in Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 142 and Thunderbird 142...

9.8CVSS5.8AI score0.00424EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.5 views

CVE-2025-8042

Firefox for Android allowed a sandboxed iframe without the allow-downloads attribute to start downloads. This vulnerability was fixed in Firefox 141...

9.8CVSS5.8AI score0.00423EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.3 views

CVE-2025-9185

Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...

8.1CVSS7.4AI score0.0044EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.3 views

CVE-2025-9180

Same-origin policy bypass in the Graphics: Canvas2D component. This vulnerability was fixed in Firefox 142, Firefox ESR 115.27, Firefox ESR 128.14, Firefox ESR 140.2, Thunderbird 142, Thunderbird 128.14, and Thunderbird 140.2...

8.1CVSS7.2AI score0.00231EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.4 views

CVE-2025-9183

Spoofing issue in the Address Bar component. This vulnerability was fixed in Firefox 142 and Firefox ESR 140.2...

6.5CVSS6.6AI score0.00231EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.8 views

CVE-2025-54145

The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme. This vulnerability was fixed in Firefox for iOS 141...

9.1CVSS5.9AI score0.00367EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/08/19 8:15 p.m.1 views

CVE-2025-9157

A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untruncpacket of the file src/tcpedit/editpacket.c of the component tcprewrite. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The...

5.3CVSS5.8AI score0.00133EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/08/19 8:15 p.m.3 views

CVE-2025-9165

A flaw has been found in LibTIFF 4.7.0. This affects the function TIFFmallocExt/TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulation can lead to memory leak. The attack is restricted to local execution. This attack is...

2.5CVSS5.7AI score0.00196EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38574

In the Linux kernel, the following vulnerability has been resolved: pptp: ensure minimal skb length in pptpxmit Commit aabc6596ffb3 "net: ppp: Add bound checking for skb data on pppsynctxmung" fixed pppsynctxmunge We need a similar fix in pptpxmit, otherwise we might read uninit data as reported ...

7.8CVSS6.6AI score0.00167EPSS
Exploits0References39
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38561

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix PreauhHashValue race condition If client send multiple session setup requests to ksmbd, PreauhHashValue race condition could happen. There is no need to free sess-PreauhHashValue at session setup phase. It can be freed...

8.5CVSS6.3AI score0.00391EPSS
Exploits1References27
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.7 views

CVE-2025-38588

In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent infinite loop in rt6nlmsgsize While testing prior patch, I was able to trigger an infinite loop in rt6nlmsgsize in the following place: listforeachentryrcusibling, &f6i-fib6siblings, fib6siblings...

5.5CVSS5.9AI score0.00147EPSS
Exploits0References30
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38558

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Initialize frame-based format color matching descriptor Fix NULL pointer crash in uvcgframebasedmake due to uninitialized color matching descriptor for frame-based format which was added in commit f5e7bdd34aca...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38586

In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix fp initialization for exception boundary In the ARM64 BPF JIT when prog-aux-exceptionboundary is set for a BPF program, findusedcalleeregs is not called because for a program acting as exception boundary, all call...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38603

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38571

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

5.5CVSS6AI score0.00146EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.0 views

CVE-2025-38568

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

7.8CVSS6.5AI score0.00154EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38590

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Remove skb secpath if xfrm state is not found Hardware returns a unique identifier for a decrypted packet's xfrm state, this state is looked up in an xarray. However, the state might have been freed by the time of this...

5.5CVSS5.8AI score0.00146EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38592

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...

7.1CVSS6.5AI score0.00154EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.3 views

CVE-2025-38614

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EPMAXNESTS+1 links. Currently, eploopcheckproc ensures that the graph is loop-free and does some recursion depth checks, but...

5.5CVSS5.9AI score0.00153EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38595

In the Linux kernel, the following vulnerability has been resolved: xen: fix UAF in dmabufexpfrompages dmabuffd fixes; no preferences regarding the tree it goes through - up to xen folks As soon as we'd inserted a file reference into descriptor table, another thread could close it. That's fine fo...

7.8CVSS6.6AI score0.00164EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38569

In the Linux kernel, the following vulnerability has been resolved: benet: fix BUG when creating VFs benet crashes as soon as SRIOV VFs are created: kernel BUG at mm/vmalloc.c:3457! Oops: invalid opcode: 0000 1 SMP KASAN NOPTI CPU: 4 UID: 0 PID: 7408 Comm: test.sh Kdump: loaded Not tainted 6.16.0...

5.5CVSS5.9AI score0.0016EPSS
Exploits0References43
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38570

In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: unlink NAPIs from queues on error to open CI hit a UaF in fbnic in the AFXDP portion of the queues.py test. The UaF is in the skmarknapiidonce call in xskbind, NAPI has been freed. Looks like the device failed to open...

7.8CVSS6.6AI score0.00151EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.0 views

CVE-2025-38589

In the Linux kernel, the following vulnerability has been resolved: neighbour: Fix null-ptr-deref in neighflushdev. kernel test robot reported null-ptr-deref in neighflushdev. 0 The cited commit introduced per-netdev neighbour list and converted neighflushdev to use it instead of the global hash...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38573

In the Linux kernel, the following vulnerability has been resolved: spi: cs42l43: Property entry should be a null-terminated array The software node does not specify a count of property entries, so the array must be null-terminated. When unterminated, this can lead to a fault in the downstream...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38593

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix double free in 'hcidiscoveryfilterclear' Function 'hcidiscoveryfilterclear' frees 'uuids' array and then sets it to NULL. There is a tiny chance of the following race: 'hcicmdsyncwork'...

7.8CVSS6.6AI score0.00155EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38607

In the Linux kernel, the following vulnerability has been resolved: bpf: handle jset if a & b ... as a jump in CFG computation BPFJSET is a conditional jump and currently verifier.c:canjump does not know about that. This can lead to incorrect live registers and SCC computation. E.g. in the...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38615

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: cancle set bad inode after removing name fails The reproducer uses a file0 on a ntfs3 file system with a corrupted ilink. When renaming, the file0's inode is marked as a bad inode because the file name cannot be deleted...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38559

In the Linux kernel, the following vulnerability has been resolved: platform/x86/intel/pmt: fix a crashlog NULL pointer access Usage of the intelpmtread for binary sysfs, requires a pcidev. The current use of the endpoint value is only valid for telemetry endpoint usage. Without the ep, the...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38596

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF in panthorgemcreatewithhandle debugfs code The object is potentially already gone after the drmgemobjectput. In general the object should be fully constructed before calling drmgemhandlecreate, except the...

7.8CVSS6.6AI score0.00143EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38579

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix KMSAN uninit-value in extentinfo usage KMSAN reported a use of uninitialized value in isextentmergeable and isbackmergeable via the read extent tree path. The root cause is that getreadextentinfo only initializes three...

7.8CVSS6.6AI score0.00153EPSS
Exploits0References39
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38580

In the Linux kernel, the following vulnerability has been resolved: ext4: fix inode use after free in ext4endiorsvwork In ext4ioenddefercompletion, check if ioend-listvec is empty to avoid adding an ioend that requires no conversion to the irsvconversionlist, which in turn prevents starting an...

7.8CVSS6.6AI score0.00147EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.1 views

CVE-2025-38582

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix double destruction of rsvqp rsvqp may be double destroyed in error flow, first in freemrinit, and then in hnsroceexit. Fix it by moving the freemrinit call into hnsrocev2init. listdel corruption, ffff589732eb9b50-ne...

7.8CVSS6.5AI score0.00153EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.0 views

CVE-2025-38585

In the Linux kernel, the following vulnerability has been resolved: staging: media: atomisp: Fix stack buffer overflow in gmingetvarint When gmingetconfigvar calls efi.getvariable and the EFI variable is larger than the expected buffer size, two behaviors combine to create a stack buffer overflow...

7.8CVSS6.8AI score0.00191EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.0 views

CVE-2025-38557

In the Linux kernel, the following vulnerability has been resolved: HID: apple: validate feature-report field count to prevent NULL pointer dereference A malicious HID device with quirk APPLEMAGICBACKLIGHT can trigger a NULL pointer dereference whilst the power feature-report is toggled and sent ...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/08/19 5:15 p.m.2 views

CVE-2025-38564

In the Linux kernel, the following vulnerability has been resolved: perf/core: Handle buffer mapping fail correctly in perfmmap After successful allocation of a buffer or a successful attachment to an existing buffer perfmmap tries to map the buffer read only into the page table. If that fails, t...

5.5CVSS6.1AI score0.00143EPSS
Exploits0References5
Total number of security vulnerabilities68528