68528 matches found
CVE-2026-45933
bpf: Preserve id of register in synclinkedregs...
CVE-2026-45844
netfilter: arptables: fix IEEE1394 ARP payload parsing...
CVE-2026-46035
mm/pagealloc: return NULL early from allocfrozenpagesnolock in NMI on UP...
CVE-2026-46016
remoteproc: xlnx: Only access buffer information if IPI is buffered...
CVE-2026-46028
crypto: algifaead - snapshot IV for async AEAD requests...
CVE-2026-45940
net: stmmac: fix oops when split header is enabled...
CVE-2026-45877
HID: intel-ish-hid: fix NULL-ptr-deref in ishtpbusremoveallclients...
CVE-2026-45878
drm/amdkfd: Fix watchid bounds checking in debug address watch v2...
CVE-2026-45867
power: supply: act8945a: Fix use-after-free in powersupplychanged...
CVE-2026-45934
btrfs: fix EEXIST abort due to non-consecutive gaps in chunk allocation...
CVE-2026-45944
iommu/vt-d: Clear Present bit before tearing down context entry...
CVE-2026-46094
ext4: fix bounds check in checkxattrs to prevent out-of-bounds access...
CVE-2026-46084
RDMA/manaib: Disable RX steering on RSS QP destroy...
CVE-2026-45874
phy: freescale: imx8qm-hsio: fix NULL pointer dereference...
CVE-2026-45927
bpf: Require frozen map for calculating map hash...
CVE-2026-45837
bpf: Fix use-after-free in arenavmclose on fork...
CVE-2026-45876
arm64/gcs: Fix error handling in archsetshadowstackstatus...
CVE-2026-45865
mctp i2c: initialise event handler read bytes...
CVE-2026-45913
net: bridge: mcast: always update mdbnentries for vlan contexts...
CVE-2026-45842
slip: reject VJ receive packets on instances with no rstate array...
CVE-2026-45975
ublk: use READONCE to read struct ublksrvctrlcmd...
CVE-2026-45917
ipvs: do not keep destdst if dev is going down...
CVE-2026-46079
rbd: fix null-ptr-deref when deviceadddisk fails...
CVE-2026-45901
netfilter: nftables: revert commitmutex usage in reset path...
CVE-2026-46005
xfs: fix a resource leak in xfsallocbuftarg...
CVE-2026-46054
selinux: fix overlayfs mmap and mprotect access checks...
CVE-2026-45936
power: supply: goldfish: Fix use-after-free in powersupplychanged...
CVE-2026-46037
ipv4: icmp: validate reply type before using icmppointers...
CVE-2026-45970
bonding: alb: fix UAF in rlbarprecv during bond up/down...
CVE-2026-45886
bpf: Fix bpfxdpstorebytes proto for read-only arg...
CVE-2026-46021
thermal: core: Fix thermal zone governor cleanup issues...
CVE-2026-45984
gfs2: Fix use-after-free in iomap inline data write path...
CVE-2026-47770
Unknown description...
CVE-2026-44983
smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption...
CVE-2026-44903
Prometheus is an open-source monitoring system and time series database. From 2.49.0 to before 3.5.3 and 3.11.3, in the Prometheus server's legacy web UI enabled via the command-line flag --enable-feature=old-ui, the histogram heatmap chart view does not escape le label values when inserting them...
CVE-2026-44897
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, HTMLRenderer.heading builds the opening tag by string-concatenating the id attribute value directly into the HTML — with no call to escape, safeentity, or any other sanitisation function. A double-quote character " in...
CVE-2026-44898
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, rendertocul builds a table-of-contents tree from a list of level, id, text tuples. Both the id value used as href="" and the text value used as the visible link label are inserted into tags via a plain Python format...
CVE-2026-44708
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the mistune math plugin renders inline math $...$ and block math $$...$$ by concatenating the raw user-supplied content directly into the HTML output without any HTML escaping. This occurs even when the parser is...
CVE-2026-44899
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the Image directive plugin validates the :width: and :height: options with a regex compiled as numre = re.compiler"^\d+?:.\d?". When the validated value is not a plain integer, renderblockimage inserts it directly int...
CVE-2026-44896
Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and realier, in src/mistune/directives/image.py, the renderfigure function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and XSS even when...
CVE-2026-48689
FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamicbinarybuffert class src/dynamicbinarybuffer.hpp. Five methods appenddynamicbuffer, appenddataaspointer, appenddataasobjectptr, memcpyfromptr, memcpyfromobjectptr use an incorrect bounds chec...
CVE-2026-9572
A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...
CVE-2026-48695
FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the MikroTik router integration plugin. The log function in src/mikrotikplugin/fastnetmonmikrotik.php lines 107-108 constructs shell commands by concatenating the $msg parameter directly into exec calls:...
CVE-2026-48696
FastNetMon Community Edition through 1.2.9 has a buffer overflow, a different vulnerability than CVE-2026-48686 and CVE-2026-48689...
CVE-2026-24182
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could leak held driver locks. A successful exploit of this vulnerability might lead to denial of service...
CVE-2026-24192
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, da...
CVE-2026-24187
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution...
CVE-2026-24190
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, a...
CVE-2026-24198
NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of...
CVE-2026-24195
NVIDIA Display Driver for Linux contains a vulnerability in UVM, where a user could cause improper input validation. A successful exploit of this vulnerability might lead to denial of service...