Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-23250

In the Linux kernel, the following vulnerability has been resolved: xfs: check return value of xchkscrubcreatesubord Fix this function to return NULL instead of a mangled ENOMEM, then fix the callers to actually check for a null pointer and return ENOMEM. Most of the corrections here are for code...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-23257

In the Linux kernel, the following vulnerability has been resolved: net: liquidio: Fix off-by-one error in PF setupnicdevices cleanup In setupnicdevices, the initialization loop jumps to the label setupnicdevfree on failure. The current cleanup loop whilei-- skip the failing index i, causing a...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-23267

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix ISCHECKPOINTED flag inconsistency issue caused by concurrent atomic commit and checkpoint writes During SPO tests, when mounting F2FS, an -EINVAL error was returned from f2fsrecoverinodepage. The issue occurred under th...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•7 views

CVE-2026-23262

In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue count change The driver and the NIC share a region in memory for stats reporting. The NIC calculates its offset into this region based on the total size of the stats region and the size o...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•5 views

CVE-2026-23258

In the Linux kernel, the following vulnerability has been resolved: net: liquidio: Initialize netdev pointer before queue setup In setupnicdevices, the netdev is allocated using allocetherdevmq. However, the pointer to this structure is stored in oct-propsi.netdev only after the calls to...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References15
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•4 views

CVE-2026-32634

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, in Central Browser mode, Glances stores both the Zeroconf-advertised server name and the discovered IP address for dynamic servers, but later builds connection URIs from the untrusted advertised name instead ...

8.1CVSS5.9AI score0.00282EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-23266

In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•5 views

CVE-2026-23265

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer in read,writeendio ----------- cut here ------------ kernel BUG at fs/f2fs/data.c:358! Call Trace: blkupdaterequest+0x5eb/0xe70 block/blk-mq.c:987 blkmqendrequest+0x3e/0x70...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•5 views

CVE-2026-23264

In the Linux kernel, the following vulnerability has been resolved: Revert "drm/amd: Check if ASPM is enabled from PCIe subsystem" This reverts commit 7294863a6f01248d72b61d38478978d638641bee. This commit was erroneously applied again after commit 0ab5d711ec74 "drm/amd: Refactor amdgpuaspm to be...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•4 views

CVE-2026-26740

Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validating its allocated size...

8.2CVSS5.9AI score0.00467EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-23270

In the Linux kernel, the following vulnerability has been resolved: net/sched: Only allow actct to bind to clsact/ingress qdiscs and shared blocks As Paolo said earlier 1: "Since the blamed commit below, classify can return TCACTCONSUMED while the current skb being held by the defragmentation...

7.8CVSS5.7AI score0.00123EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2026/03/18 5:16 p.m.•2 views

CVE-2026-32610

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, the Glances REST API web server ships with a default CORS configuration that sets alloworigins="" combined with allowcredentials=True. When both of these options are enabled together, Starlette's CORSMiddlewa...

8.1CVSS5.8AI score0.00339EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/03/18 3:16 p.m.•2 views

CVE-2026-32609

Glances is an open-source system cross-platform monitoring tool. The GHSA-gh4x fix commit 5d3de60 addressed unauthenticated configuration secrets exposure on the /api/v4/config endpoints by introducing asdictsecure redaction. However, the /api/v4/args and /api/v4/args/item endpoints were not...

7.5CVSS5.9AI score0.00499EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/03/18 2:16 p.m.•2 views

CVE-2026-32694

In Juju from version 3.0.0 through 3.6.18, when a secret owner grants permissions to a secret to a grantee, the secret owner relies exclusively on a predictable XID of the secret to verify ownership. This allows a malicious grantee which can request secrets to predict past secrets granted by the...

6.6CVSS6.4AI score0.00269EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/18 1:16 p.m.•2 views

CVE-2026-32693

In Juju from version 3.0.0 through 3.6.18, the authorization of the "secret-set" tool is not performed correctly, which allows a grantee to update the secret content, and can lead to reading or updating other secrets. When the "secret-set" tool logs an error in an exploitation attempt, the secret...

8.8CVSS6.3AI score0.00303EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/18 1:16 p.m.•2 views

CVE-2026-32692

An authorization bypass vulnerability in the Vault secrets back-end implementation of Juju versions 3.1.6 through 3.6.18 allows an authenticated unit agent to perform unauthorized updates to secret revisions. With sufficient information, an attacker can poison any existing secret revision within...

7.6CVSS6.4AI score0.00166EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/03/18 1:16 p.m.•4 views

CVE-2026-32691

A race condition in the secrets management subsystem of Juju versions 3.0.0 through 3.6.18 allows an authenticated unit agent to claim ownership of a newly initialized secret. Between generating a Juju Secret ID and creating the secret's first revision, an attacker authenticated as another unit...

5.3CVSS6.3AI score0.00233EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•1 views

CVE-2025-71267

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTRLIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite loop when an...

5.5CVSS5.8AI score0.00118EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•5 views

CVE-2026-23246

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: bounds-check linkid in ieee80211mlreconfiguration linkid is taken from the ML Reconfiguration element control & 0x000f, so it can be 0..15. linkremovaltimeout has IEEE80211MLDMAXNUMLINKS 15 elements, so index 15 i...

8.8CVSS5.7AI score0.0029EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•4 views

CVE-2025-71265

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop in attrloadrunsrange on inconsistent metadata We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite lo...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•6 views

CVE-2026-23243

In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative datalen in ibumadwrite ibumadwrite computes datalen from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and RMPP header length, datalen can become negative and...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•3 views

CVE-2026-23244

In the Linux kernel, the following vulnerability has been resolved: nvme: fix memory allocation in nvmeprreadkeys nvmeprreadkeys takes numkeys from userspace and uses it to calculate the allocation size for rse via structsize. The upper limit is PRKEYSMAX 64K. A malicious or buggy userspace can...

7.1CVSS5.7AI score0.00121EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•6 views

CVE-2026-23242

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer dereference in header processing If siwgethdr returns -EINVAL before setrxfpducontext, qp-rxfpdu can be NULL. The error path in siwtcprxdata dereferences qp-rxfpdu-moreddpsegs without checking...

7.5CVSS5.7AI score0.00389EPSS
Exploits0References10
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•3 views

CVE-2025-71266

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: check return value of indxfind to avoid infinite loop We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed dentry in the ntfs3 filesystem can cause the...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References9
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•6 views

CVE-2026-23245

In the Linux kernel, the following vulnerability has been resolved: net/sched: actgate: snapshot parameters with RCU on replace The gate action can be replaced while the hrtimer callback or dump path is walking the schedule list. Convert the parameters to an RCU-protected snapshot and swap update...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•4 views

CVE-2026-23248

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix refcount bug and potential UAF in perfmmap Syzkaller reported a refcountt: addition on 0; use-after-free warning in perfmmap. The issue is caused by a race condition between a failing mmap setup and a concurrent mm...

7.8CVSS5.9AI score0.0012EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/03/18 11:16 a.m.•5 views

CVE-2026-23247

In the Linux kernel, the following vulnerability has been resolved: tcp: secureseq: add back ports to TS offset This reverts 28ee1b746f49 "secureseq: downgrade to per-host timestamp offsets" tcptwrecycle went away in 2017. Zhouyan Deng reported off-path TCP source port leakage via SYN cookie...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•3 views

CVE-2026-33058

Kanboard is project management software focused on Kanban methodology. Versions prior to 1.2.51 have an authenticated SQL injection vulnerability. Attackers with the permission to add users to a project can leverage this vulnerability to dump the entirety of the kanboard database. Version 1.2.51...

8.4CVSS6AI score0.00281EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•2 views

CVE-2026-28500

Open Neural Network Exchange ONNX is an open standard for machine learning interoperability. In versions up to and including 1.20.1, a security control bypass exists in onnx.hub.load due to improper logic in the repository trust verification mechanism. While the function is designed to warn users...

9.1CVSS5.9AI score0.00318EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•9 views

CVE-2026-3312

Unknown description...

5.8AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•2 views

CVE-2026-27895

LDAP Account Manager LAM is a webfrontend for managing entries e.g. users, groups, DHCP settings stored in an LDAP directory. Prior to version 9.5, the PDF export component does not correctly validate uploaded file extensions. This way any file type including .php files can be uploaded. With...

8.8CVSS6.4AI score0.00419EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•4 views

CVE-2026-23269

In the Linux kernel, the following vulnerability has been resolved: apparmor: validate DFA start states are in bounds in unpackpdb Start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in unpackpdb will access dfa-tablesYYTDIDBASEstar...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•4 views

CVE-2026-27894

LDAP Account Manager LAM is a webfrontend for managing entries e.g. users, groups, DHCP settings stored in an LDAP directory. Prior to version 9.5, a local file inclusion was detected in the PDF export that allows users to include local PHP files and this way execute code. In combination with...

8.8CVSS6.1AI score0.00371EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•2 views

CVE-2026-30922

pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the pyasn1 library is vulnerable to a Denial of Service DoS attack caused by uncontrolled recursion when decoding ASN.1 data with deeply nested structures. An attacker can supply a crafted payload containing thousands of nested SEQUENC...

7.5CVSS6.9AI score0.0058EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•3 views

CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

6.3CVSS5.9AI score0.00241EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•2 views

CVE-2026-29056

Kanboard is project management software focused on Kanban methodology. Prior to 1.2.51, Kanboard's user invite registration endpoint UserInviteController::register accepts all POST parameters and passes them to UserModel::create without filtering out the role field. An attacker who receives an...

8.8CVSS5.9AI score0.00371EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•4 views

CVE-2026-32596

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.2, Glances web server runs without authentication by default when started with glances -w, exposing REST API with sensitive system information including process command-lines containing credentials passwords, API keys,...

8.7CVSS7.2AI score0.0155EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•7 views

CVE-2026-25937

GLPI is a free Asset and IT management software package. Starting in version 11.0.0 and prior to version 11.0.6, a malicious actor with knowledge of a user's credentials can bypass MFA and steal their account. Version 11.0.6 fixes the issue...

6.5CVSS5.9AI score0.00292EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•4 views

CVE-2026-23268

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix unprivileged local user can do privileged policy management An unprivileged local user can load, replace, and remove profiles by opening the apparmorfs interfaces, via a confused deputy attack, by passing the opened...

7.8CVSS5.7AI score0.00134EPSS
Exploits0References17
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•2 views

CVE-2026-31891

Cockpit is a headless content management system. Any Cockpit CMS instance running version 2.13.4 or earlier with API access enabled is potentially affected by a a SQL Injection vulnerability in the MongoLite Aggregation Optimizer. Any deployment where the /api/content/aggregate/model endpoint is...

7.7CVSS6.1AI score0.00397EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•2 views

CVE-2026-32608

Glances is an open-source system cross-platform monitoring tool. The Glances action system allows administrators to configure shell commands that execute when monitoring thresholds are exceeded. These commands support Mustache template variables e.g., name, key that are populated with runtime...

7CVSS6.1AI score0.00243EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/03/18 12:0 a.m.•5 views

CVE-2026-27459

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to setcookiegeneratecallback returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0....

9.8CVSS5.9AI score0.00704EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/03/17 11:16 p.m.•0 views

CVE-2026-20643

A cross-origin issue in the Navigation API was addressed with improved input validation. This issue is fixed in Background Security Improvements for iOS, iPadOS, and macOS, Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously...

5.4CVSS6AI score0.00354EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2026/03/17 11:16 p.m.•3 views

CVE-2026-3856

IBM Db2 Recovery Expert for Linux, UNIX and Windows 5.5 IF 2 could allow an attacker to modify or corrupt data due to an insecure mechanism used for verifying the integrity of the data during transmission...

9.1CVSS5.8AI score0.00152EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/03/17 8:16 p.m.•8 views

CVE-2026-25936

GLPI is a free Asset and IT management software package. Starting in version 11.0.0 and prior to version 11.0.6, an authenticated user can perfom a SQL injection. Version 11.0.6 fixes the issue...

8.8CVSS5.9AI score0.00339EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/03/17 8:16 p.m.•4 views

CVE-2026-4358

A specially crafted aggregation query with $lookup by an authenticated user with write privileges can cause a double-free or use-after-free memory issue in the slot-based execution SBE engine when an in-memory hash table is spilled to disk...

7.5CVSS6.1AI score0.00342EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/17 8:16 p.m.•3 views

CVE-2026-4359

A compromised third party cloud server or man-in-the-middle attacker could send a malformed HTTP response and cause a crash in applications using the MongoDB C driver...

3.7CVSS5.8AI score0.00187EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/03/17 8:16 p.m.•5 views

CVE-2026-32837

miniaudio version 0.11.25 and earlier fixed in commits 1df46ae and 1df46ae contain a heap out-of-bounds read vulnerability in the WAV BEXT metadata parser that allows attackers to trigger memory access violations by processing crafted WAV files. Attackers can exploit improper null-termination...

5.5CVSS5.8AI score0.00231EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/03/17 4:16 p.m.•4 views

CVE-2026-4147

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

7.1CVSS5.8AI score0.00215EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/03/17 4:16 p.m.•4 views

CVE-2026-4148

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

8.8CVSS5.8AI score0.00323EPSS
Exploits0References2
Total number of security vulnerabilities68528