Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
added 2026/03/17 2:0 p.m.5 views

CVE-2026-3888

Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private /tmp directory when systemd-tmpfiles is configured to automatically clean up this directory. This issue affects Ubuntu 16.04 LTS, 18.04 LTS, 20.04 LTS, 22.04 LTS, and 24.04 LTS...

7.8CVSS7.3AI score0.00383EPSS
Exploits6References4
UbuntuCve
UbuntuCve
added 2026/03/17 12:16 p.m.2 views

CVE-2026-4271

A flaw was found in libsoup, a library for handling HTTP requests. This vulnerability, known as a Use-After-Free, occurs in the HTTP/2 server implementation. A remote attacker can exploit this by sending specially crafted HTTP/2 requests that cause authentication failures. This can lead to the...

7.5CVSS5.9AI score0.00829EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/17 10:16 a.m.1 views

CVE-2026-3634

A flaw was found in libsoup. An attacker controlling the value used to set the Content-Type header can inject a Carriage Return Line Feed CRLF sequence due to improper input sanitization in the soupmessageheaderssetcontenttype function. This vulnerability allows for the injection of arbitrary...

6.5CVSS5.9AI score0.00184EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/17 10:16 a.m.2 views

CVE-2026-3633

A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the soupmessagenew function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF Carriage Return Line Feed injection, occurs because the method value is not properly...

6.5CVSS5.9AI score0.00223EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/17 10:16 a.m.1 views

CVE-2026-3632

A flaw was found in libsoup, a library used by applications to send network requests. This vulnerability occurs because libsoup does not properly validate hostnames, allowing special characters to be injected into HTTP headers. A remote attacker could exploit this to perform HTTP smuggling, where...

5.5CVSS7.2AI score0.00207EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/17 12:0 a.m.1 views

CVE-2026-23241

In the Linux kernel, the following vulnerability has been resolved: audit: add missing syscalls to read class The "at" variant of getxattr and listxattr are missing from the audit read class. Calling getxattrat or listxattrat on a file to read its extended attributes will bypass audit rules such...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/17 12:0 a.m.4 views

CVE-2025-71239

In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2 to change attributes class fchmodat2, introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2 to change a file attribute in the same fashion than chmod or fchmodat...

5.5CVSS5.7AI score0.00124EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 11:16 p.m.4 views

CVE-2026-4177

YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter. The heap overflow occurs when class names exceed the initial 512-byte allocation. The base64 decoder could read past the buffer end on...

9.1CVSS6.1AI score0.00429EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 10:16 p.m.2 views

CVE-2026-21991

A DTrace component, dtprobed, allows arbitrary file creation through crafted USDT provider names...

5.5CVSS6AI score0.00181EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/16 8:16 p.m.4 views

CVE-2025-69693

Out-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder libavcodec/rv60dec.c. The quantization parameter qp validation at line 2267 only checks the lower bound qp 0 but is missing upper bound validation. The qp value can reach 65 base value 63 from 6-bit frame header + offset +2 from...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/16 6:16 p.m.3 views

CVE-2026-4224

When an Expat parser with a registered ElementDeclHandler parses an inline document type definition containing a deeply nested content model a C stack overflow occurs...

6CVSS5.8AI score0.00621EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/16 6:16 p.m.6 views

CVE-2026-28490

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a cryptographic padding oracle vulnerability was identified in the Authlib Python library concerning the implementation of the JSON Web Encryption JWE RSA15 key management algorithm. Authlib registe...

8.3CVSS5.8AI score0.00142EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 6:16 p.m.4 views

CVE-2026-28498

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a library-level vulnerability was identified in the Authlib Python library concerning the validation of OpenID Connect OIDC ID Tokens. Specifically, the internal hash verification logic verifyhash...

8.2CVSS7.2AI score0.00226EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 6:16 p.m.3 views

CVE-2026-27962

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a JWK Header Injection vulnerability in authlib's JWS implementation allows an unauthenticated attacker to forge arbitrary JWT tokens that pass signature verification. When key=None is passed to any...

9.1CVSS7.1AI score0.00548EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 6:16 p.m.4 views

CVE-2026-3644

The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. The Morsel.update, |= operator, and unpickling paths were not patched, allowing control characters to bypass input validation. Additionally, BaseCookie.jsoutput lacked the output validation applie...

6CVSS5.9AI score0.00401EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/16 5:16 p.m.2 views

CVE-2026-30405

An issue in GoBGP gobgpd v.4.2.0 allows a remote attacker to cause a denial of service via the NEXTHOP path attribute...

7.5CVSS5.9AI score0.00333EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.1 views

CVE-2026-3083

GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependin...

8.8CVSS7.4AI score0.00806EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.2 views

CVE-2026-2921

GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending o...

7.8CVSS7.4AI score0.00867EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.1 views

CVE-2026-2922

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.4AI score0.00431EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.1 views

CVE-2026-2920

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.4AI score0.00773EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.4 views

CVE-2026-4174

A vulnerability has been found in Radare2 5.9.9. This issue affects the function walkexportstrie of the file libr/bin/format/mach0/mach0.c of the component Mach-O File Parser. Such manipulation leads to resource consumption. The attack can only be performed from a local environment. The exploit h...

4.8CVSS5.2AI score0.00115EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.4 views

CVE-2026-32775

libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exifmnotedatagetvalue function gets passed in a 0 size, the passed in-buffer would be overwritten due to an integer underflow...

7.8CVSS5.8AI score0.00193EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.4 views

CVE-2026-32635

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-next.3, 21.2.4, 20.3.18, and 19.2.20, a Cross-Site Scripting XSS vulnerability has been identified in the Angular runtime and compiler. It occurs whe...

9CVSS6AI score0.00339EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.4 views

CVE-2026-32777

libexpat before 2.7.5 allows an infinite loop while parsing DTD content...

5.5CVSS5.8AI score0.00216EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.2 views

CVE-2026-32778

libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.4 views

CVE-2026-32776

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...

5.5CVSS5.8AI score0.00144EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.3 views

CVE-2026-32314

Yamux is a stream multiplexer over reliable, ordered connections such as TCP/IP. Prior to 0.13.10, the Rust implementation of Yamux can panic when processing a crafted inbound Data frame that sets SYN and uses a body length greater than DEFAULTCREDIT e.g. 262145. On the first packet of a new...

8.7CVSS5.9AI score0.00451EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.6 views

CVE-2026-32772

telnet in GNU inetutils through 2.7 allows servers to read arbitrary environment variables from clients via NEWENVIRON SEND USERVAR...

4.7CVSS5.9AI score0.00187EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.8 views

CVE-2026-4185

A vulnerability was found in GPAC up to 2.5-DEV-rev2167-gcc9d617c0-master. This vulnerability affects the function swfdefbitsjpeg of the file src/scenemanager/swfparse.c of the component MP4Box. The manipulation of the argument szName results in stack-based buffer overflow. It is possible to laun...

6.5CVSS6.8AI score0.00252EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.0 views

CVE-2026-3441

A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this...

7.1CVSS5.9AI score0.00168EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.3 views

CVE-2026-32627

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.37.2, when a cpp-httplib client is configured with a proxy and setfollowlocationtrue, any HTTPS redirect it follows will have TLS certificate and hostname verification silently disabled on the new...

8.7CVSS5.7AI score0.00179EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.2 views

CVE-2026-3442

A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in the bfd linker component. An attacker could exploit this by convincing a user to process a specially crafted malicious XCOFF object file. Successful exploitation may...

7.1CVSS5.8AI score0.00227EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.2 views

CVE-2026-2923

GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependi...

7.8CVSS7.4AI score0.00729EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.2 views

CVE-2026-32640

SimpleEval is a library for adding evaluatable expressions into python projects. Prior to 1.0.5, objects including modules can leak dangerous modules through to direct access inside the sandbox. If the objects you've passed in as names to SimpleEval have modules or other disallowed / dangerous...

9.8CVSS5.9AI score0.00512EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.3 views

CVE-2026-3086

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.4AI score0.00421EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.1 views

CVE-2026-3081

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.8CVSS7.5AI score0.00425EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.2 views

CVE-2026-3082

GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.4AI score0.00787EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.4 views

CVE-2026-3085

GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.8CVSS7.5AI score0.00828EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:19 p.m.0 views

CVE-2026-3084

GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.4AI score0.00421EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/16 2:18 p.m.2 views

CVE-2025-71264

Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service client crash...

5.3CVSS5.9AI score0.00282EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/13 7:55 p.m.3 views

CVE-2026-4105

A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulnerability due to insufficient validation of the class parameter in the RegisterMachine D-Bus Desktop Bus method. A local unprivileged user can exploit this by attempting to register a machine with a...

6.7CVSS6AI score0.00142EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/13 7:55 p.m.3 views

CVE-2026-4111

A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archivereaddata processing path. When a specially crafted RAR5 archive is processed, the decompression routine may enter a state where internal logic prevents forward progress. This...

7.5CVSS5.9AI score0.00693EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/03/13 7:55 p.m.5 views

CVE-2026-32746

telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC Set Local Characters suboption handler because addslc does not check whether the buffer is full...

9.8CVSS7.5AI score0.23674EPSS
Exploits8References3
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.2 views

CVE-2026-31814

Yamux is a stream multiplexer over reliable, ordered connections such as TCP/IP. From 0.13.0 to before 0.13.9, a specially crafted WindowUpdate can cause arithmetic overflow in send-window accounting, which triggers a panic in the connection state machine. This is remotely reachable over a normal...

8.7CVSS5.9AI score0.00462EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.4 views

CVE-2026-29079

Lexbor is a web browser engine library. Prior to 2.7.0, a type‑confusion vulnerability exists in Lexbor’s HTML fragment parser. When ns = UNDEF, a comment is created using the “unknown element” constructor. The comment’s data are written into the element’s fields via an unsafe cast, corrupting th...

8.2CVSS5.9AI score0.00263EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.2 views

CVE-2026-24097

Improper permission enforcement in Checkmk versions 2.4.0 before 2.4.0p23, 2.3.0 before 2.3.0p43, and 2.2.0 EOL allows authenticated users to enumerate existing hosts by observing different HTTP response codes in agent-receiver/registerexisting endpoint, which could lead to information disclosure...

5.3CVSS5.9AI score0.00237EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.3 views

CVE-2026-30853

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to 9.5.0, a path traversal vulnerability in the RocketBook .rb input plugin src/calibre/ebooks/rb/reader.py allows an attacker to write arbitrary files to any path writable by the calibre...

8.2CVSS5.9AI score0.00179EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.5 views

CVE-2026-2859

Improper permission enforcement in Checkmk versions 2.4.0 before 2.4.0p23, 2.3.0 before 2.3.0p43, and 2.2.0 EOL allows unauthenticated users to enumerate existing hosts by observing different HTTP response codes in deployagent endpoint, which could lead to information disclosure...

6.3CVSS5.9AI score0.0019EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.2 views

CVE-2026-31899

CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to Kozea/CairoSVG has exponential denial of service via recursive element amplification in cairosvg/defs.py. This causes CPU exhaustion from a small input...

7.5CVSS5.9AI score0.0049EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.3 views

CVE-2026-29775

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP's bitmap cache subsystem due to an off-by-one boundary check in bitmapcacheput. A malicious server can send a CACHEBITMAPORDER Rev1 with cacheId equal to...

8.2CVSS5.9AI score0.00309EPSS
Exploits1References3
Total number of security vulnerabilities68528