Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•2 views

CVE-2025-38483

In the Linux kernel, the following vulnerability has been resolved: comedi: das16m1: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: / only irqs 2, 3, 4, 5, 6, 7, 10, 11, 12, 14, and 15 are valid / if 1 options1 & 0xdcfc However, it-optionsi is an...

7.1CVSS6.3AI score0.00159EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•10 views

CVE-2025-38488

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cryptmessage when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from cryptmessage, assuming all crypto operations are synchronous. However, when hardware crypto...

7.8CVSS6.5AI score0.00278EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•9 views

CVE-2025-38471

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.3AI score0.00152EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•2 views

CVE-2025-38482

In the Linux kernel, the following vulnerability has been resolved: comedi: das6402: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: / IRQs 2,3,5,6,7, 10,11,15 are valid for "enhanced" mode / if 1 options1 & 0x8cec However, it-optionsi is an...

7.1CVSS6.3AI score0.00159EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•4 views

CVE-2025-38497

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...

7.1CVSS6.4AI score0.00153EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•2 views

CVE-2025-38484

In the Linux kernel, the following vulnerability has been resolved: iio: backend: fix out-of-bound write The buffer is set to 80 character. If a caller write more characters, count is truncated to the max available space in "simplewritetobuffer". But afterwards a string terminator is written to t...

7.8CVSS6.7AI score0.00153EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/07/28 12:15 p.m.•3 views

CVE-2025-38494

In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hidhwrawrequest hidhwrawrequest is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those checks and allowed invalid...

7.8CVSS6.3AI score0.002EPSS
Exploits0References38
UbuntuCve
UbuntuCve
•added 2025/07/28 12:0 a.m.•3 views

CVE-2022-50237

The ed25519-dalek crate before 2 for Rust allows a double public key signing function oracle attack. The Keypair implementation leads to a simple computation for extracting a private key...

5.9CVSS5.8AI score0.00183EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/07/28 12:0 a.m.•3 views

CVE-2023-53161

The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic...

5.3CVSS5.8AI score0.00332EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2025/07/28 12:0 a.m.•3 views

CVE-2023-53159

The openssl crate before 0.10.55 for Rust allows an out-of-bounds read via an empty string to X509VerifyParamRef::sethost...

9.1CVSS7.1AI score0.00329EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2025/07/28 12:0 a.m.•2 views

CVE-2023-53160

The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds array access and a panic...

5.3CVSS5.8AI score0.00274EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/07/28 12:0 a.m.•3 views

CVE-2023-53158

The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone 'ssh://-oProxyCommand=open$IFS" substring. NOTE: this was discovered before CVE-2024-32884, a similar vulnerability involving a username field that is more difficult to exploit...

4.1CVSS6.1AI score0.00171EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/07/28 12:0 a.m.•2 views

CVE-2025-8262

A vulnerability was found in yarnpkg Yarn up to 1.22.22. It has been classified as problematic. Affected is the function explodeHostedGitFragment of the file src/resolvers/exotics/hosted-git-resolver.js. The manipulation leads to inefficient regular expression complexity. It is possible to launch...

7.5CVSS4.9AI score0.007EPSS
Exploits1References6
UbuntuCve
UbuntuCve
•added 2025/07/27 10:15 p.m.•5 views

CVE-2024-58265

The snow crate before 0.9.5 for Rust, when stateful TransportState is used, allows incrementing a nonce and thereby denying message delivery...

4.3CVSS5.8AI score0.00387EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/07/27 10:15 p.m.•5 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.8AI score0.0078EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/07/27 9:15 p.m.•2 views

CVE-2023-53156

The transpose crate before 0.2.3 for Rust allows an integer overflow via inputwidth and inputheight arguments...

5.3CVSS5.9AI score0.00291EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2025/07/27 8:15 p.m.•1 views

CVE-2024-58261

The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infinite loop of "Reading a cert: Invalid operation: Not a Key packet" messages for RawCertParser operations that encounter an unsupported primary key type...

7.5CVSS5.8AI score0.00361EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2025/07/27 8:15 p.m.•4 views

CVE-2024-58262

The curve25519-dalek crate before 4.1.3 for Rust has a constant-time operation on elliptic curve scalars that is removed by LLVM...

5.1CVSS5.9AI score0.00152EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/07/27 8:15 a.m.•3 views

CVE-2025-8225

A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function processdebuginfo of the file binutils/dwarf.c of the component DWARF Section Handler. The manipulation leads to memory leak. Attacking locally is a requirement. The identifier of the patc...

4.8CVSS6.1AI score0.00223EPSS
Exploits1References8
UbuntuCve
UbuntuCve
•added 2025/07/27 6:15 a.m.•2 views

CVE-2025-8224

A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function bfdelfgetstrsection of the file bfd/elf.c of the component BFD Library. The manipulation leads to null pointer dereference. Local access is required to approach this attack...

5.5CVSS5.2AI score0.00225EPSS
Exploits1References9
UbuntuCve
UbuntuCve
•added 2025/07/26 4:16 a.m.•5 views

CVE-2025-8176

A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as critical. This vulnerability affects the function gethistogram of the file tools/tiffmedian.c. The manipulation leads to use after free. The attack needs to be approached locally. The exploit has been disclosed to the publi...

7.8CVSS5.5AI score0.00238EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2025/07/26 4:16 a.m.•7 views

CVE-2025-8177

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It...

7.8CVSS6.1AI score0.00271EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2025/07/25 8:15 p.m.•3 views

CVE-2025-8197

Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465...

5.8AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38467

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: exynos7drmdecon: add vblank check in IRQ handling If there's support for another console device such as a TTY serial, the kernel occasionally panics during boot. The panic message and a relevant snippet of the call...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38454

In the Linux kernel, the following vulnerability has been resolved: ALSA: ad1816a: Fix potential NULL pointer deref in sndcardad1816apnp Use prwarn instead of devwarn when 'pdev' is NULL to avoid a potential NULL pointer dereference...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38441

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: account for Ethernet header in nfflowpppoeproto syzbot found a potential access to uninit-value in nfflowpppoeproto Blamed commit forgot the Ethernet header. BUG: KMSAN: uninit-value in...

5.5CVSS6.3AI score0.00156EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38447

In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix potential out-of-bounds page table access during batched unmap As pointed out by David1, the batched unmap logic in trytounmapone may read past the end of a PTE table when a large folio's PTE mappings are not fully...

7.1CVSS6.5AI score0.00156EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•1 views

CVE-2025-38437

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potential use-after-free in oplock/lease break ack If ksmbdiovpinrsp return error, use-after-free can happen by accessing opinfo-state and opinfoput and ksmbdfdput could called twice...

7.8CVSS6.6AI score0.00151EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38450

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925stasetdecapoffload Add a NULL check for msta-vif before accessing its members to prevent a kernel panic in AP mode deployment. This also fix the issue reported in 1. T...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38445

In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix stack memory use after return in raid1reshape In the raid1reshape function, newpool is allocated on the stack and assigned to conf-r1biopool. This results in conf-r1biopool.wait.head pointing to a stack address...

7.1CVSS6.6AI score0.00165EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38444

In the Linux kernel, the following vulnerability has been resolved: raid10: cleanup memleak at raid10makerequest If raid10readrequest or raid10writerequest registers a new request and the REQNOWAIT flag is set, the code does not free the malloc from the mempool. unreferenced object...

5.5CVSS6.4AI score0.00147EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•1 views

CVE-2025-38438

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda: Use devmkstrdup to avoid memleak. sofpdata-tplgfilename can have address allocated by kstrdup and can be overwritten. Memory leak was detected with kmemleak: unreferenced object 0xffff88812391ff60 size 16:...

5.5CVSS5.9AI score0.00154EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38451

In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: fix GPF in bitmapgetstats The commit message of commit 6ec1f0239485 "md/md-bitmap: fix stats collection for external bitmaps" states: Remove the external bitmap check as the statistics should be available regardless...

5.5CVSS5.9AI score0.00147EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38440

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix race between DIM disable and netdim There's a race between disabling DIM and NAPI callbacks using the dim pointer on the RQ or SQ. If NAPI checks the DIM state bit and sees it still set, it assumes rq-dim or sq-dim...

4.7CVSS5.7AI score0.0011EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38442

In the Linux kernel, the following vulnerability has been resolved: block: reject bs ps block devices when THP is disabled If THP is disabled and when a block device with logical block size page size is present, the following null ptr deref panic happens during boot: 13.2 mK AOSAN: null-ptr-deref...

5.5CVSS5.9AI score0.00137EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38452

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: rtsn: Fix a null pointer dereference in rtsnprobe Add check for the return value of rcargen4ptpalloc to prevent potential null pointer dereference...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•1 views

CVE-2025-38453

In the Linux kernel, the following vulnerability has been resolved: iouring/msgring: ensure iokiocb freeing is deferred for RCU syzbot reports that defer/local taskwork adding via msgring can hit a request that has been freed: CPU: 1 UID: 0 PID: 19356 Comm: iou-wrk-19354 Not tainted...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•4 views

CVE-2025-38463

In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation Syzkaller reported a bug 1 where sk-skforwardalloc can overflow. When we send data, if an skb exists at the tail of the write queue, the kernel will attempt to append the...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•5 views

CVE-2025-38465

In the Linux kernel, the following vulnerability has been resolved: netlink: Fix wraparounds of sk-skrmemalloc. Netlink has this pattern in some places if atomicread&sk-skrmemalloc sk-skrcvbuf atomicaddskb-truesize, &sk-skrmemalloc; , which has the same problem fixed by commit 5a465a0da13e "udp:...

5.5CVSS6.3AI score0.00165EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38443

In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbdgenlconnect error path There is a use-after-free issue in nbd: block nbd6: Receive control failed result -104 block nbd6: shutting down sockets ==================================================================...

7.8CVSS6.3AI score0.00151EPSS
Exploits0References39
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•0 views

CVE-2025-38456

In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmicreateuser The "intf" list iterator is an invalid pointer if the correct "intf-intfnum" is not found. Calling atomicdec&intf-nrusers on and invalid pointer will lead to memo...

7.8CVSS6.6AI score0.00155EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38457

In the Linux kernel, the following vulnerability has been resolved: net/sched: Abort tcmodifyqdisc if parent class does not exist Lion's patch 1 revealed an ancient bug in the qdisc API. Whenever a user creates/modifies a qdisc specifying as a parent another qdisc, the qdisc API will, during...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•1 views

CVE-2025-38455

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Reject SEV-ES intra host migration if vCPU creation is in-flight Reject migration of SEV-ES state if either the source or destination VM is actively creating a vCPU, i.e. if kvmvmioctlcreatevcpu is in the section betwee...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References29
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38460

In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix potential null-ptr-deref in toatmarpd. atmarpd is protected by RTNL since commit f3a0592b37b8 "ATM: clip causes unregister hang". However, it is not enough because toatmarpd is called without RTNL, especially...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•3 views

CVE-2025-38439

In the Linux kernel, the following vulnerability has been resolved: bnxten: Set DMA unmap len correctly for XDPREDIRECT When transmitting an XDPREDIRECT packet, call dmaunmaplenset with the proper length instead of 0. This bug triggers this warning on a system with IOMMU enabled: WARNING: CPU: 36...

5.5CVSS6.3AI score0.0017EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•5 views

CVE-2025-38449

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer object, if any. 1...

5.5CVSS6.4AI score0.00148EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•4 views

CVE-2025-38448

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Fix race condition in TTY wakeup A race condition occurs when gsstartio calls either gsstartrx or gsstarttx, as those functions briefly drop the portlock for usbepqueue. This allows gsclose and...

4.7CVSS6.3AI score0.00115EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•1 views

CVE-2025-38458

In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix NULL pointer dereference in vccsendmsg atmarpddevops does not implement the send method, which may cause crash as bellow. BUG: kernel NULL pointer dereference, address: 0000000000000000 PGD 0 P4D 0 Oops: Oops: 0010...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References41
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•2 views

CVE-2025-38466

In the Linux kernel, the following vulnerability has been resolved: perf: Revert to requiring CAPSYSADMIN for uprobes Jann reports that uprobes can be used destructively when used in the middle of an instruction. The kernel only verifies there is a valid instruction at the requested offset, but d...

5.5CVSS6.3AI score0.0017EPSS
Exploits0References40
UbuntuCve
UbuntuCve
•added 2025/07/25 4:15 p.m.•4 views

CVE-2025-38464

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

7.8CVSS6.4AI score0.00169EPSS
Exploits0References41
Total number of security vulnerabilities68528