68528 matches found
CVE-2026-45852
RDMA/rxe: Fix double free in rxesrqfrominit...
CVE-2026-46098
net: caif: clear client service pointer on teardown...
CVE-2026-45934
btrfs: fix EEXIST abort due to non-consecutive gaps in chunk allocation...
CVE-2026-46065
fbdev: defio: Disconnect deferred I/O from the lifetime of struct fbinfo...
CVE-2026-46073
hwmon: powerz Fix missing usbkillurb on signal interrupt...
CVE-2026-45988
rxrpc: Fix re-decryption of RESPONSE packets...
CVE-2026-45841
netfilter: nfnetlinkosf: fix divide-by-zero in OSFWSSMODULO...
CVE-2026-45960
hfsplus: return error when node already exists in hfsbnodecreate...
CVE-2026-45940
net: stmmac: fix oops when split header is enabled...
CVE-2026-46082
KVM: SVM: Inject UD for INVLPGA if EFER.SVME=0...
CVE-2026-45917
ipvs: do not keep destdst if dev is going down...
CVE-2026-45892
ext4: drop extent cache after doing PARTIALVALID1 zeroout...
CVE-2026-45894
iommu/vt-d: Clear Present bit before tearing down PASID entry...
CVE-2026-45964
SUNRPC: fix gssauth kref leak in gssallocmsg error path...
CVE-2026-45838
bpf: fix end-of-list detection in cgroupstoragegetnextkey...
CVE-2026-45840
openvswitch: cap upcall PID array size and pre-size vport replies...
CVE-2026-45948
ext4: fix memory leak in ext4extshiftextents...
CVE-2026-45974
btrfs: fix invalid leaf access in btrfsquotaenable if ref key not found...
CVE-2026-46076
KVM: nSVM: Raise UD if unhandled VMMCALL isnt intercepted by L1...
CVE-2026-46063
x86/shstk: Prevent deadlock during shstk sigreturn...
CVE-2026-46069
wifi: mwifiex: fix use-after-free in mwifiexadaptercleanup...
CVE-2026-46072
ntfs3: add buffer boundary checks to rununpack...
CVE-2026-46067
mm/damon/core: validate damosquotagoal-nid for nodememcgused,freebp...
CVE-2026-46644
insecure equivalence in symfony/polyfill-intl-idn for ASCII-only xn-- labels...
CVE-2026-46086
net: bridge: use a stable FDB dst snapshot in RCU readers...
CVE-2026-45970
bonding: alb: fix UAF in rlbarprecv during bond up/down...
CVE-2026-46090
ALSA: aloop: Fix peer runtime UAF during format-change stop...
CVE-2026-46039
rxgk: Fix potential integer overflow in length check...
CVE-2026-46043
RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv...
CVE-2026-45898
RDMA/iwcm: Fix workqueue list corruption by removing worklist...
CVE-2026-46071
KVM: nSVM: Avoid clearing VMCBLBR in vmcb12...
CVE-2026-45864
fs/ntfs3: prevent infinite loops caused by the next valid being the same...
CVE-2026-46084
RDMA/manaib: Disable RX steering on RSS QP destroy...
CVE-2026-44983
smallbitvec is a growable bit-vector for Rust, optimized for size. From 1.0.1 to 2.6.0, an integer overflow in the internal capacity calculation of smallbitvec can lead to an undersized heap allocation, resulting in a heap buffer overflow through safe APIs only. This allows memory corruption...
CVE-2026-44903
Prometheus is an open-source monitoring system and time series database. From 2.49.0 to before 3.5.3 and 3.11.3, in the Prometheus server's legacy web UI enabled via the command-line flag --enable-feature=old-ui, the histogram heatmap chart view does not escape le label values when inserting them...
CVE-2026-44708
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the mistune math plugin renders inline math $...$ and block math $$...$$ by concatenating the raw user-supplied content directly into the HTML output without any HTML escaping. This occurs even when the parser is...
CVE-2026-44896
Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and realier, in src/mistune/directives/image.py, the renderfigure function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and XSS even when...
CVE-2026-44897
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, HTMLRenderer.heading builds the opening tag by string-concatenating the id attribute value directly into the HTML — with no call to escape, safeentity, or any other sanitisation function. A double-quote character " in...
CVE-2026-44899
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the Image directive plugin validates the :width: and :height: options with a regex compiled as numre = re.compiler"^\d+?:.\d?". When the validated value is not a plain integer, renderblockimage inserts it directly int...
CVE-2026-44898
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, rendertocul builds a table-of-contents tree from a list of level, id, text tuples. Both the id value used as href="" and the text value used as the visible link label are inserted into tags via a plain Python format...
CVE-2026-9572
A security vulnerability has been detected in GPAC up to 2.4.0. Affected by this issue is the function MediaGetSample of the file src/isomedia/media.c of the component MP4Box. Such manipulation of the argument cat leads to memory leak. The attack can only be performed from a local environment. Th...
CVE-2026-48689
FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamicbinarybuffert class src/dynamicbinarybuffer.hpp. Five methods appenddynamicbuffer, appenddataaspointer, appenddataasobjectptr, memcpyfromptr, memcpyfromobjectptr use an incorrect bounds chec...
CVE-2026-24192
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, da...
CVE-2026-24196
NVIDIA Display Driver for Linux contains a vulnerability where a user could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to denial of service and information disclosure...
CVE-2026-24198
NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of...
CVE-2026-24190
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, a...
CVE-2026-9567
A security flaw has been discovered in GPAC up to 2.4.0. Affected is the function MergeFragment of the file src/isomedia/isomintern.c of the component MP4Box. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit has been released to the publ...
CVE-2026-24194
NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission handling. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code...
CVE-2026-24187
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution...
CVE-2026-24195
NVIDIA Display Driver for Linux contains a vulnerability in UVM, where a user could cause improper input validation. A successful exploit of this vulnerability might lead to denial of service...