Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.4 views

CVE-2025-49630

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in modproxyhttp2. Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with...

7.5CVSS7AI score0.01149EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.3 views

CVE-2024-43204

SSRF in Apache HTTP Server with modproxy loaded allows an attacker to send outbound proxy requests to a URL controlled by the attacker. Requires an unlikely configuration where modheaders is configured to modify the Content-Type request or response header with a value provided in the HTTP request...

7.5CVSS6.8AI score0.00772EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.10 views

CVE-2025-23048

In some modssl configurations on Apache HTTP Server 2.4.35 through to 2.4.63, an access control bypass by trusted clients is possible using TLS 1.3 session resumption. Configurations are affected when modssl is configured for multiple virtual hosts, with each restricted to a different set of...

9.1CVSS7.3AI score0.0097EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.4 views

CVE-2024-47252

Insufficient escaping of user-supplied data in modssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%varnamex" or "%varnamec" to log variables...

7.5CVSS7.1AI score0.00669EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.6 views

CVE-2024-42516

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP response. This vulnerability was described as CVE-2023-38709 but the patch included in Apache HTTP...

7.5CVSS6.8AI score0.00679EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.13 views

CVE-2025-53020

Late Release of Memory after Effective Lifetime vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: from 2.4.17 up to 2.4.63. Users are recommended to upgrade to version 2.4.64, which fixes the issue...

7.5CVSS6.7AI score0.04409EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/07/10 5:15 p.m.11 views

CVE-2025-49812

In some modssl configurations on Apache HTTP Server versions through to 2.4.63, an HTTP desynchronisation attack allows a man-in-the-middle attacker to hijack an HTTP session via a TLS upgrade. Only configurations using "SSLEngine optional" to enable TLS upgrades are affected. Users are recommend...

7.4CVSS7AI score0.00516EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/07/10 4:15 p.m.3 views

CVE-2025-6395

A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...

6.5CVSS6.7AI score0.00619EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/07/10 3:15 p.m.3 views

CVE-2025-7370

Rejected reason: Upon investigtion upstream maintainers discovered this was not a real issue. See the references for more details. See: https://gitlab.gnome.org/GNOME/libsoup/-/issues/430note2494090...

5.8AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/07/10 2:15 p.m.7 views

CVE-2025-7425

A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may acce...

7.8CVSS6.7AI score0.00339EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/07/10 2:15 p.m.6 views

CVE-2025-7424

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of...

7.5CVSS6.7AI score0.012EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/07/10 10:15 a.m.2 views

CVE-2025-32990

A heap-buffer-overflow off-by-one flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds OOB NULL pointer write, resulting in memory corruption and a...

8.2CVSS6.8AI score0.0072EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.4 views

CVE-2025-38329

In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Fix OOB memory read access in KUnit test wmfw info KASAN reported out of bounds access - csdspmockwmfwaddinfo, because the source string length was rounded up to the allocation size...

7.1CVSS6.5AI score0.00156EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38342

In the Linux kernel, the following vulnerability has been resolved: software node: Correct a OOB check in softwarenodegetreferenceargs softwarenodegetreferenceargs wants to get @index-th element, so the property value requires at least 'index + 1 sizeofref' bytes but that can not be guaranteed by...

7.1CVSS6.2AI score0.00163EPSS
Exploits0References40
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.5 views

CVE-2025-38334

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.2 views

CVE-2025-38320

In the Linux kernel, the following vulnerability has been resolved: arm64/ptrace: Fix stack-out-of-bounds read in regsgetkernelstacknth KASAN reports a stack-out-of-bounds read in regsgetkernelstacknth. Call Trace: 97.283505 BUG: KASAN: stack-out-of-bounds in regsgetkernelstacknth+0xa8/0xc8...

7.1CVSS6.6AI score0.00174EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38335

In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...

5.5CVSS6.2AI score0.00114EPSS
Exploits0References35
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38328

In the Linux kernel, the following vulnerability has been resolved: jffs2: check jffs2preallocrawnoderefs result in few other places Fuzzing hit another invalid pointer dereference due to the lack of checking whether jffs2preallocrawnoderefs completed successfully. Subsequent logic implies that t...

5.5CVSS6.4AI score0.00178EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38326

In the Linux kernel, the following vulnerability has been resolved: aoe: clean device rqlist in aoedevdowndev An aoe device's rqlist contains accepted block requests that are waiting to be transmitted to the aoe target. This queue was added as part of the conversion to blkmq. However, the queue w...

5.5CVSS6.3AI score0.00179EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38340

In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Fix OOB memory read access in KUnit test KASAN reported out of bounds access - csdspmockbinaddnameorinfo, because the source string length was rounded up to the allocation size...

7.1CVSS6.5AI score0.00139EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38347

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on ino and xnid syzbot reported a f2fs bug as below: INFO: task syz-executor140:5308 blocked for more than 143 seconds. Not tainted 6.14.0-rc7-syzkaller-00069-g81e4f8d68c66 0 "echo 0...

5.5CVSS5.9AI score0.00159EPSS
Exploits0References37
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38322

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix crash in iclupdatetopdownevent The perffuzzer found a hard-lockup crash on a RaptorLake machine: Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000 CPU: 23 UID: 0 PID: 0 Comm: swapper/23...

5.5CVSS5.9AI score0.00155EPSS
Exploits0References26
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.11 views

CVE-2025-38344

In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi parse and parseext cache leaks ACPICA commit 8829e70e1360c81e7a5a901b5d4f48330e021ea5 I'm Seunghun Han, and I work for National Security Research Institute of South Korea. I have been doing a research on ACPI and...

5.5CVSS6.3AI score0.0016EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.5 views

CVE-2025-38336

In the Linux kernel, the following vulnerability has been resolved: ata: patavia: Force PIO for ATAPI devices on VT6415/VT6330 The controller has a hardware bug that can hard hang the system when doing ATAPI DMAs without any trace of what happened. Depending on the device attached, it can also...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.4 views

CVE-2025-6948

An issue has been discovered in GitLab CE/EE affecting all versions from 17.11 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.1.2 that, under certain conditions, could have allowed a successful attacker to execute actions on behalf of users by injecting malicious content...

8.7CVSS7.3AI score0.00492EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38323

In the Linux kernel, the following vulnerability has been resolved: net: atm: add lecmutex syzbot found its way in net/atm/lec.c, and found an error path in lecdattach could leave a dangling pointer in devlec. Add a mutex to protect devlecp uses from lecdattach, lecvccattach and lecmcastattach...

7.8CVSS6.3AI score0.00177EPSS
Exploits0References27
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38348

In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54rxeepromreadback Robert Morris reported: |If a malicious USB device pretends to be an Intersil p54 wifi |interface and generates an eepromreadback message with a large |eeprom-v1.len,...

7.8CVSS6.3AI score0.00167EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38338

In the Linux kernel, the following vulnerability has been resolved: fs/nfs/read: fix double-unlock bug in nfsreturnemptyfolio Sometimes, when a file was read while it was being truncated by another NFS client, the kernel could deadlock because foliounlock was called twice, and the second call wou...

7.8CVSS6.3AI score0.00153EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38343

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA IEEE 802.11 fragmentation can only be applied to unicast frames. Therefore, drop fragments with multicast or broadcast RA. This patch addresses vulnerabilities suc...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.2 views

CVE-2025-38321

In the Linux kernel, the following vulnerability has been resolved: smb: Log an error when closeallcacheddirs fails Under low-memory conditions, closeallcacheddirs can't move the dentries to a separate list to dput them once the locks are dropped. This will result in a "Dentry still in use" error...

5.5CVSS5.9AI score0.00164EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.2 views

CVE-2025-38331

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: cortina: Use TOE/TSO on all TCP It is desireable to push the hardware accelerator to also process non-segmented TCP frames: we pass the skb-len to the "TOE/TSO" offloader and it will handle them. Without this quirk...

5.5CVSS6AI score0.00145EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38333

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to bail out in getnewsegment ------------ cut here ------------ WARNING: CPU: 3 PID: 579 at fs/f2fs/segment.c:2832 newcurseg+0x5e8/0x6dc pc : newcurseg+0x5e8/0x6dc Call trace: newcurseg+0x5e8/0x6dc...

5.5CVSS5.9AI score0.00144EPSS
Exploits0References27
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.2 views

CVE-2025-38325

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add freetransport ops in ksmbd connection freetransport function for tcp connection can be called from smbdirect. It will cause kernel oops. This patch add freetransport ops in ksmbd connection, and add each freetransports...

5.5CVSS5.9AI score0.00155EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.2 views

CVE-2025-38327

In the Linux kernel, the following vulnerability has been resolved: fgraph: Do not enable functiongraph tracer when setting funcgraph-args When setting the funcgraph-args option when function graph tracer is net enabled, it incorrectly enables it. Worse, it unregisters itself when it was never...

5.5CVSS5.9AI score0.00156EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38330

In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Fix OOB memory read access in KUnit test ctl cache KASAN reported out of bounds access - csdspctlcacheinitmultipleoffsets. The code uses mockcoefftemplate.lengthbytes 4 bytes for register value allocations. But...

7.1CVSS6.6AI score0.00145EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38339

In the Linux kernel, the following vulnerability has been resolved: powerpc/bpf: fix JIT code size calculation of bpf trampoline archbpftrampolinesize provides JIT size of the BPF trampoline before the buffer for JIT'ing it is allocated. The total number of instructions emitted for BPF trampoline...

5.5CVSS6.2AI score0.00127EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.2 views

CVE-2025-38341

In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: avoid double free when failing to DMA-map FW msg The semantics are that caller of fbnicmbxmapmsg retains the ownership of the message on error. All existing callers dutifully free the page...

7.8CVSS6.6AI score0.00151EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.4 views

CVE-2025-38346

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix UAF when lookup kallsym after ftrace disabled The following issue happens with a buggy module: BUG: unable to handle page fault for address: ffffffffc05d0218 PGD 1bd66f067 P4D 1bd66f067 PUD 1bd671067 PMD 101808067 PTE...

7.8CVSS6.6AI score0.00168EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.8 views

CVE-2025-38337

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix data-race and null-ptr-deref in jbd2journaldirtymetadata Since handle-htransaction may be a NULL pointer, so we should change it to call ishandleabortedhandle first before dereferencing it. And the following data-race w...

5.5CVSS6.2AI score0.00159EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.4 views

CVE-2025-38324

In the Linux kernel, the following vulnerability has been resolved: mpls: Use rcudereferencertnl in mplsrouteinputrcu. As syzbot reported 0, mplsrouteinputrcu can be called from mplsgetroute, where is under RTNL. net-mpls.platformlabel is only updated under RTNL. Let's use rcudereferencertnl in...

5.5CVSS6.3AI score0.00178EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.4 views

CVE-2025-38332

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy for BIOS version The strlcat with FORTIFY support is triggering a panic because it thinks the target buffer will overflow although the correct target buffer size is passed in. Anyway, instead of memset with...

5.5CVSS6.5AI score0.00167EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 9:15 a.m.3 views

CVE-2025-38345

In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi operand cache leak in dswstate.c ACPICA commit 987a3b5cf7175916e2a4b6ea5b8e70f830dfe732 I found an ACPI cache leak in ACPI early termination and boot continuing case. When early termination occurs due to maliciou...

5.5CVSS6.2AI score0.00163EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.2 views

CVE-2025-38299

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8195: Set ETDM1/2 IN/OUT to COMPDUMMY ETDM2INBE and ETDM1OUTBE are defined as COMPEMPTY, in the case the codec dainame will be null. Avoid a crash if the device tree is not assigning a codec to these links...

5.5CVSS6.2AI score0.00143EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.3 views

CVE-2025-38283

In the Linux kernel, the following vulnerability has been resolved: hisiaccvfiopci: bugfix live migration function without VF device driver If the VF device driver is not loaded in the Guest OS and we attempt to perform device data migration, the address of the migrated data will be NULL. The liv...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.3 views

CVE-2025-38292

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12kdprxmsducoalesce, rxcb is fetched from skb and boolean iscontinuation is part of rxcb. Currently, after freeing the skb, the rxcb-iscontinuation accessed again which is wrong...

7.1CVSS6.3AI score0.00153EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.1 views

CVE-2025-38275

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-usb: Fix an NULL vs ISERR bug The qmpusbiomap helper function currently returns the raw result of devmioremap for non-exclusive mappings. Since devmioremap may return a NULL pointer and the caller only checks error...

5.5CVSS6.2AI score0.00169EPSS
Exploits0References30
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.2 views

CVE-2025-38303

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix possible crashes on eircreateadvdata eircreateadvdata may attempt to add EIRFLAGS and EIRTXPOWER without checking if that would fit...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.10 views

CVE-2025-32988

A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name SAN entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS will call asn1deletestructure on an ASN.1 node it do...

8.2CVSS6.9AI score0.01185EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.4 views

CVE-2025-38285

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix WARN in getbpfrawtpregs syzkaller reported an issue: WARNING: CPU: 3 PID: 5971 at kernel/trace/bpftrace.c:1861 getbpfrawtpregs+0xa4/0x100 kernel/trace/bpftrace.c:1861 Modules linked in: CPU: 3 UID: 0 PID: 5971 Comm:...

5.5CVSS6.2AI score0.0017EPSS
Exploits0References42
UbuntuCve
UbuntuCve
added 2025/07/10 8:15 a.m.2 views

CVE-2025-38269

In the Linux kernel, the following vulnerability has been resolved: btrfs: exit after state insertion failure at btrfsconvertextentbit If insertstate state failed it returns an error pointer and we call extentiotreepanic which will trigger a BUG call. However if CONFIGBUG is disabled, which is an...

5.5CVSS6AI score0.00154EPSS
Exploits0References28
Total number of security vulnerabilities68528