Lucene search
+L
UbuntucveRecent

71772 matches found

UbuntuCve
UbuntuCve
added 2026/06/29 12:0 a.m.3 views

CVE-2026-48915

Unknown description...

6.1AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/06/29 12:0 a.m.3 views

CVE-2026-48752

security update...

6.1AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/28 4:16 p.m.2 views

CVE-2026-13503

A vulnerability was detected in antlr ANTLR4 up to 4.13.2. Affected by this issue is the function getImportedVocabFile of the file tool/src/org/antlr/v4/parse/TokenVocabParser.java of the component tokenVocab Grammar Option Handler. The manipulation results in path traversal. The attack can be...

6.9CVSS5.9AI score0.0055EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/06/28 3:16 p.m.2 views

CVE-2026-13500

A weakness has been identified in antlr ANTLR4 up to 4.13.2. Affected is an unknown function of the file tool/src/org/antlr/v4/codegen/model/OutputFile.java of the component Grammar Action Block Handler. Executing a manipulation can lead to code injection. The attack may be launched remotely. The...

7.5CVSS6.7AI score0.00311EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/06/28 3:16 p.m.2 views

CVE-2026-13501

A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this vulnerability is the function GoTarget of the file tool/src/org/antlr/v4/codegen/target/GoTarget.java of the component gofmt. The manipulation leads to command injection. The attack can only be performed fro...

5.3CVSS5.7AI score0.00678EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/06/28 3:16 p.m.2 views

CVE-2026-13502

A flaw has been found in antlr ANTLR4 up to 4.13.2. This affects the function ObjectInputStream.readObject of the file antlr4-maven-plugin/src/main/java/org/antlr/mojo/antlr4/GrammarDependencies.java of the component Maven Plugin. This manipulation causes time-of-check time-of-use. The attack is...

4.5CVSS5.5AI score0.00091EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/06/28 12:17 p.m.3 views

CVE-2026-13490

A security vulnerability has been detected in glpi-project glpi 11.0.5/11.0.6/11.0.7. This affects the function Document::canViewFile of the file front/document.send.php of the component Document Handler. Such manipulation of the argument docid leads to authorization bypass. The attack can be...

6.3CVSS5.8AI score0.00309EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/28 2:16 a.m.2 views

CVE-2026-58058

Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in ipv6getdataprimitive libnetutil/netutil.cc, so the pointer advances past the buffer and the remaining-length computation underflows to a large value. A scanned target or on-path attacker returning a craft...

6.9CVSS6.7AI score0.00278EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/28 2:16 a.m.3 views

CVE-2026-58055

nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that resolves the resulting...

6.3CVSS6.2AI score0.00202EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/28 2:16 a.m.3 views

CVE-2026-58049

FFmpeg's RASC video decoder decodedlta in libavcodec/rasc.c performs 32-bit reads and writes at the row cursor before the NEXTLINE row-boundary check and validates the DLTA region in pixel rather than byte units, so a DLTA run on a PAL8 frame can access several bytes past the row allocation. A...

8.8CVSS7AI score0.00217EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/28 2:16 a.m.3 views

CVE-2026-58051

libssh2 through 1.11.1 grows its publickey list with SSH2REALLOC but does not zero-initialize new entries before parsing populates them, so a parse failure reaching the cleanup path leaves libssh2publickeylistfree operating on an uninitialized entry. A malicious SSH server offering the publickey...

8.3CVSS6.6AI score0.0028EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/06/28 2:16 a.m.3 views

CVE-2026-58050

libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation numattrs sizeoflibssh2publickeyattribute without bounds checking, so on 32-bit platforms the multiplication overflows to an undersized buffer. A malicious S...

8.3CVSS7AI score0.00333EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/06/28 2:16 a.m.3 views

CVE-2026-58052

7-Zip for Windows through 26.01 fails to preserve the Mark-of-the-Web when extracting a crafted RAR5 archive, because its guard that suppresses an archive-supplied Zone.Identifier stream matches the exact name 'Zone.Identifier' while a RAR5 STM record named ':Zone.Identifier:$DATA' is not matched...

4.8CVSS6.1AI score0.00119EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 9:16 p.m.2 views

CVE-2026-46604

The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset...

7.5CVSS6.1AI score0.00346EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.2 views

CVE-2026-53311

In the Linux kernel, the following vulnerability has been resolved: fuse: fix uninit-value in fusedentryrevalidate fusedentryrevalidate may be called with a dentry that didn't had -dtime initialised. The issue was found with KMSAN, where lookupopen calls dalloc, followed by drevalidate, as shown...

5.5CVSS5.9AI score0.00112EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53296

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on probe error On probe error, free the previously obtained channels. This not only prevents a leak, but also UAF scenarios because the client structure will be removed nonetheless because it...

7.8CVSS6AI score0.00129EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53284

In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tree after successful writes WARNING With extra warning on dirty extent buffers at umount aka, the next patch in the series, test case generic/388 can trigger the following warning about dir...

7.5CVSS6AI score0.00432EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53323

In the Linux kernel, the following vulnerability has been resolved: net: dsa: remove redundant netdevlockops from conduit ethtool ops DSA replaces the conduit master device's ethtoolops with its own wrappers that aggregate stats from both the conduit and DSA switch ports. Taking the lock again...

5.5CVSS6AI score0.0009EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53282

In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Push kjump return address even for non-kjump kexec The version of purgatory code shipped by kexec-tools attempts to look above the top of its stack to find a return address for a kjump, even in a non-kjump kexec. After...

5.5CVSS6AI score0.00121EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53310

In the Linux kernel, the following vulnerability has been resolved: soc/tegra: cbb: Fix cross-fabric target timeout lookup When a fabric receives an error interrupt, the error may have occurred on a different fabric. The target timeout lookup was using the wrong base address cbb-regs with offsets...

5.5CVSS6AI score0.00112EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53301

In the Linux kernel, the following vulnerability has been resolved: reset: amlogic: t7: Fix null reset ops Fix missing reset ops causing kernel null pointer dereference. This SOC's reset is currently not used yet...

5.5CVSS6AI score0.00121EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53319

In the Linux kernel, the following vulnerability has been resolved: blk-wbt: remove WARNONONCE from wbtinitenabledefault wbtinitenabledefault uses WARNONONCE to check for failures from wbtalloc and wbtinit. However, both are expected failure paths: - wbtalloc can return NULL under memory pressure...

5.5CVSS6AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53308

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interface for allocating workqueue to fix two bugs at the same time: 1. Driver leaks the memory on remove, because the workqueue is not destroyed. 2...

5.5CVSS6AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53291

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/conexant: Fix missing error check for jack detection In cxprobe, the return value of sndhdajackdetectenablecallback is ignored. This function returns a pointer, and if it fails e.g., due to memory allocation failure, it...

5.5CVSS6AI score0.00122EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53306

In the Linux kernel, the following vulnerability has been resolved: tty: hvciucv: fix off-by-one in number of supported devices MAXHVCIUCVLINES == HVCALLOCTTYADAPTERS == 8. This is the number of entries in: static struct hvciucvprivate hvciucvtableMAXHVCIUCVLINES; Sometimes hvciucvtable is limite...

5.5CVSS6AI score0.00123EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53279

In the Linux kernel, the following vulnerability has been resolved: drm/gma500/oaktraillvds: fix hang on init failure The LVDS init code looks up an I2C adapter using i2cgetadapter and tries to read the EDID before falling back to allocating and registering its own adapter. The error handling doe...

5.5CVSS6AI score0.00122EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.5CVSS6AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.5CVSS6AI score0.00121EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53293

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPUINFOREADMMRREG There were multiple issues in that code. First of all the order between the reset semaphore and the mmlock was wrong e.g. copytouser was called while holding the lock. Then we allocated memory...

5.5CVSS6AI score0.00095EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.5 views

CVE-2026-53290

In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drmdevput called before stream disable in close In xeeustallstreamclose, drmdevput is called before the stream is disabled and its resources are freed. If this drops the last reference, the device structures...

7.8CVSS6AI score0.00124EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.4 views

CVE-2026-53295

In the Linux kernel, the following vulnerability has been resolved: mailbox: add sanity check for channel array Fail gracefully if there is no channel array attached to the mailbox controller. Otherwise the later dereference will cause an OOPS which might not be seen because mailbox controllers...

5.5CVSS6AI score0.00123EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53317

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: Place upper limit on station AID Any station configured with an AID over 20 causes a firmware crash. This situation occurred in our testing using an AP interface on 7922 hardware, with a modified hostapd,...

5.5CVSS6AI score0.00114EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53307

In the Linux kernel, the following vulnerability has been resolved: pinctrl: pinconf-generic: Fully validate 'pinmux' property The pinconfgenericparsedtpinmux assumes that the 'pinmux' property is not empty when present. This might be not true. With that, the allocator will give a special value i...

5.5CVSS6AI score0.00112EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53300

In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potential DMA use-after-free issue 1. If netcxmitntmpcmd times out and returns an error, the pending command is not explicitly aborted, while...

7.8CVSS6AI score0.00124EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.4 views

CVE-2026-53315

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in rascoregetutcsecondtimestamp rascoregetutcsecondtimestamp retrieves the current UTC timestamp in seconds since the Unix epoch through a platform-specific RAS system callback and is used for...

5.5CVSS6AI score0.00102EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53286

In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free in aux device error paths When auxiliarydeviceadd fails in idpfplugvportauxdev or idpfplugcoreauxdev, the errauxdevadd label calls auxiliarydeviceuninit and falls through to errauxdevinit...

7.8CVSS6AI score0.00126EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53303

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extensionlist reading with sblock in f2fssbishow In f2fssbishow, the extensionlist, extensioncount and hotextcount are read without holding sbi-sblock. If a concurrent sysfs store modifies the extension list via...

7.1CVSS6AI score0.00126EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53298

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airohaqdmainitrxqueue If queue entry or DMA descriptor list allocation fails in airohaqdmainitrxqueue routine, airohaqdmacleanup will trigger a NULL pointer dereference running...

5.5CVSS6AI score0.00122EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53316

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in rascorerasinterruptdetected Fixes a NULL pointer dereference when rascore is NULL and rascore-dev is accessed in the error path. Reported by: Dan Carpenter...

5.5CVSS6AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53285

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wrap DCN32 phantom-plane allocation in DCRUNWITHPREEMPTIONENABLED Why dcn32validatebandwidth wraps dcn32internalvalidatebw with DCFPSTART/DCFPEND. In x86 non-RT, DCFPSTART takes fpregslock, which disables local...

5.5CVSS6AI score0.00107EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53312

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.5CVSS6AI score0.00112EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53320

In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject zero bdoblocknr in nilfsioctlmarkblocksdirty nilfsioctlmarkblocksdirty uses bdoblocknr to detect dead blocks by comparing it with the current block number bdblocknr. If they differ, the block is considered dead and...

5.5CVSS6AI score0.00121EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53289

In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceresetallvfs iceresetallvfs ignores the return value of icevfrebuildvsi. When the VSI rebuild fails e.g. during NVM firmware update via nvmupdate64e, icevsirebuild tears down the VSI on its...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53292

In the Linux kernel, the following vulnerability has been resolved: net: phonet: do not BUGON in pnsocketautobind on failed bind syzbot reported a kernel BUG triggered from pnsocketsendmsg via pnsocketautobind: kernel BUG at net/phonet/socket.c:213! RIP: 0010:pnsocketautobind...

5.5CVSS6AI score0.00107EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.4 views

CVE-2026-53278

In the Linux kernel, the following vulnerability has been resolved: armmpam: Check whether the config array is allocated before destroying it destroycomponentcfg is called to free the configuration array. It uses the embedded 'garbage' structure, which means the array has to be allocated. If...

5.5CVSS6AI score0.00107EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53322

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disabling function On device shutdown, make vfiopcicoreclosedevice call vfiopcidmabufcleanup before the function is disabled via vfiopcicoredisable. This ensures that all access via DMABUFs is...

8.8CVSS6AI score0.00182EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53283

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each. The inlined checkdevice path computes the device's sbdf, calls...

5.5CVSS6AI score0.00121EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53304

In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Resolve soft lockup issue when opening /dev/sgX The parameter defreservedsize defines the default buffer size reserved for each Sgfd and should be restricted to a range between 0 and 1,048,576 see...

5.5CVSS6AI score0.00101EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.3 views

CVE-2026-53294

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reused channel The RX channel can be aliased to the TX channel if it has a different MMIO. This special case needs to be handled when freeing the channels otherwise a double-free occurs...

7.8CVSS6AI score0.00129EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/06/26 8:17 p.m.4 views

CVE-2026-53287

In the Linux kernel, the following vulnerability has been resolved: audit: fix incorrect inheritable capability in CAPSET records auditlogcapset records the effective capability set into the inheritable field due to a copy-paste error. Every CAPSET audit record therefore reports cappi process...

5.5CVSS6AI score0.00122EPSS
Exploits0References10
Total number of security vulnerabilities71772