Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•4 views

CVE-2026-23130

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix dead lock while flushing management frames Commit 1 converted the management transmission work item into a wiphy work. Since a wiphy work can only run under wiphy lock protection, a race condition happens in bel...

5.5CVSS5.7AI score0.0008EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•6 views

CVE-2026-23113

In the Linux kernel, the following vulnerability has been resolved: iouring/io-wq: check IOWQBITEXIT inside work run loop Currently this is checked before running the pending work. Normally this is quite fine, as work items either end up blocking which will create a new worker for other items, or...

5.5CVSS5.7AI score0.00115EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•3 views

CVE-2026-23126

In the Linux kernel, the following vulnerability has been resolved: netdevsim: fix a race issue related to the operation on bpfboundprogs list The netdevsim driver lacks a protection mechanism for operations on the bpfboundprogs list. When the nsimbpfcreateprog performs listaddtail, it is possibl...

4.7CVSS5.8AI score0.00086EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•5 views

CVE-2026-23117

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

5.5CVSS5.7AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•6 views

CVE-2026-23124

In the Linux kernel, the following vulnerability has been resolved: ipv6: annotate data-race in ndiscrouterdiscovery syzbot found that ndiscrouterdiscovery could read and write in6dev-ramtu without holding a lock 1 This looks fine, IFLAINET6RAMTU is best effort. Add READONCE/WRITEONCE to document...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References27
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•4 views

CVE-2026-23125

In the Linux kernel, the following vulnerability has been resolved: sctp: move SCTPCMDASSOCSHKEY right after SCTPCMDPEERINIT A null-ptr-deref was reported in the SCTP transmit path when SCTP-AUTH key initialization fails: ================================================================== KASAN:...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•5 views

CVE-2026-23114

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NTARMSVE regset can place the tracee into an invalid state where non-streaming SVE register data is stored...

5.5CVSS5.7AI score0.001EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•4 views

CVE-2026-23128

In the Linux kernel, the following vulnerability has been resolved: arm64: Set nocfi on swsusparchresume A DABT is reported1 on an android based system when resume from hiberate. This happens because swsusparchsuspendexit is marked with SYMCODE and does not have a CFI hash, but swsusparchresume...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References27
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•5 views

CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•4 views

CVE-2026-23121

In the Linux kernel, the following vulnerability has been resolved: mISDN: annotate data-race around dev-work dev-work can re read locklessly in mISDNread and mISDNpoll. Add READONCE/WRITEONCE annotations. BUG: KCSAN: data-race in mISDNioctl / mISDNread write to 0xffff88812d848280 of 4 bytes by...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2026/02/14 3:16 p.m.•4 views

CVE-2026-23119

In the Linux kernel, the following vulnerability has been resolved: bonding: provide a net pointer to skbflowdissect After 3cbf4ffba5ee "net: plumb network namespace into skbflowdissect" we have to provide a net pointer to skbflowdissect, either via skb-dev, skb-sk, or a user provided pointer. In...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References28
UbuntuCve
UbuntuCve
•added 2026/02/13 8:17 p.m.•4 views

CVE-2026-26269

Vim is an open source, command line text editor. Prior to 9.1.2148, a stack buffer overflow vulnerability exists in Vim's NetBeans integration when processing the specialKeys command, affecting Vim builds that enable and use the NetBeans feature. The Stack buffer overflow exists in specialkeys in...

7.5CVSS6AI score0.00284EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/02/13 3:15 p.m.•4 views

CVE-2026-25531

Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, The fix for CVE-2023-33968 is incomplete. The TaskCreationController::duplicateProjects endpoint does not validate user permissions for target projects, allowing authenticated users to duplicate tasks into...

4.3CVSS5.9AI score0.00223EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2026/02/13 2:16 p.m.•3 views

CVE-2026-23112

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmettcpbuildpduiovec nvmettcpbuildpduiovec could walk past cmd-req.sg when a PDU length or offset exceeds sgcnt and then use bogus sg-length/offset values, leading to copytoiter GPF/KASAN. Guard...

9.8CVSS5.7AI score0.00399EPSS
Exploits0References24
UbuntuCve
UbuntuCve
•added 2026/02/13 2:16 p.m.•3 views

CVE-2026-23111

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix inverted genmask check in nftmapcatchallactivate nftmapcatchallactivate has an inverted element activity check compared to its non-catchall counterpart nftmapelemactivate and compared to what is logically...

7.8CVSS6AI score0.00344EPSS
Exploits7References31
UbuntuCve
UbuntuCve
•added 2026/02/13 12:16 p.m.•6 views

CVE-2026-2443

A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processing specially crafted HTTP Range headers, the library may improperly validate requested byte ranges. In certain build configurations, this could allow a remote attacker to access portions of server...

5.3CVSS7.1AI score0.0043EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•3 views

CVE-2026-0966

A flaw was found in libssh. The API function sshgethexa is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI Generic Security Service Application Program Interface authentication if the server's logging verbosity is se...

8.2CVSS6.3AI score0.00582EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•3 views

CVE-2026-0964

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working directory. This could be misused to create malicious executable or configuration files and make the user execute them under specific consequences. This is the same issue...

6.3CVSS6.7AI score0.00408EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•3 views

CVE-2026-0965

A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit this by providing a malicious configuration file or when the system is misconfigured. This vulnerability could lead to a Denial of Service DoS by causing the system t...

3.3CVSS6.5AI score0.00158EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•5 views

CVE-2025-40905

WWW::OAuth 1.000 and earlier for Perl uses the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions...

7.3CVSS5.8AI score0.00255EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•5 views

CVE-2026-25990

Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a specially crafted PSD image. This vulnerability is fixed in 12.1.1...

8.6CVSS6.7AI score0.00367EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•4 views

CVE-2026-0967

A flaw was found in libssh. A remote attacker, by controlling client configuration files or knownhosts files, could craft specific hostnames that when processed by the matchpattern function can lead to inefficient regular expression backtracking. This can cause timeouts and resource exhaustion,...

5.5CVSS6.5AI score0.00223EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/13 12:0 a.m.•7 views

CVE-2026-0968

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

3.1CVSS6.4AI score0.00442EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/12 11:16 p.m.•5 views

CVE-2019-25338

DokuWiki 2018-04-22b contains a username enumeration vulnerability in its password reset functionality that allows attackers to identify valid user accounts. Attackers can submit different usernames to the password reset endpoint and distinguish between existing and non-existing accounts by...

6.9CVSS5.9AI score0.00407EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2026/02/12 11:16 p.m.•7 views

CVE-2020-37167

ClamAV versions prior to 0.103.0-rc contain a vulnerability in function name processing through the ClamBC bytecode interpreter that allows attackers to manipulate bytecode function names. Attackers can exploit the weak input validation in function name encoding to potentially execute malicious...

8.6CVSS5.9AI score0.00172EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/12 10:16 p.m.•1 views

CVE-2025-14282

A flaw was found in Dropbear. When running in multi-user mode and authenticating users, the dropbear ssh server does the socket forwardings requested by the remote client as root, only switching to the logged-in user upon spawning a shell or performing some operations like reading the user's file...

5.4CVSS5.9AI score0.00364EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/12 10:16 p.m.•6 views

CVE-2026-26076

ntpd-rs is a full-featured implementation of the Network Time Protocol. Prior to 1.7.1, an attacker can remotely induce moderate increases 2-4 times above normal in cpu usage. When having NTS enabled on an ntpd-rs server, an attacker can create malformed NTS packets that take significantly more...

7.5CVSS5.9AI score0.00349EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/12 4:16 p.m.•4 views

CVE-2025-69634

Cross Site Request Forgery vulnerability in Dolibarr ERP & CRM v.22.0.9 allows a remote attacker to escalate privileges via the notes field in perms.php NOTE: this is disputed by a third party who indicates that exploitation can only occur if an unprivileged user knows the token of an admin user...

9CVSS5.9AI score0.00142EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/12 2:16 p.m.•3 views

CVE-2026-2003

Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8...

4.3CVSS5.8AI score0.00281EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/12 2:16 p.m.•5 views

CVE-2026-2006

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...

8.8CVSS6.2AI score0.01079EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/12 2:16 p.m.•5 views

CVE-2026-2007

Heap buffer overflow in PostgreSQL pgtrgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over the byte patterns to be written, but we have not ruled out the viability of attacks that lead to privilege escalation. PostgreSQL 18.1 and...

8.2CVSS6AI score0.00481EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/12 2:16 p.m.•5 views

CVE-2026-2005

Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS6.2AI score0.01208EPSS
Exploits3References4
UbuntuCve
UbuntuCve
•added 2026/02/12 2:16 p.m.•5 views

CVE-2026-2004

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12, 15.16, and 14.21 are affected...

8.8CVSS5.9AI score0.00785EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/12 9:16 a.m.•5 views

CVE-2026-21722

Public dashboards with annotations enabled did not limit their annotation timerange to the locked timerange of the public dashboard. This means one could read the entire history of annotations visible on the specific dashboard, even those outside the locked timerange. This did not leak any...

5.3CVSS6.6AI score0.00327EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/12 9:16 a.m.•2 views

CVE-2025-41117

Stack traces in Grafana's Explore Traces view can be rendered as raw HTML, and thus inject malicious JavaScript in the browser. This would require malicious JavaScript to be entered into the stack trace field. Only datasources with the Jaeger HTTP API appear to be affected; Jaeger gRPC and Tempo ...

6.8CVSS5.8AI score0.0026EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/12 6:16 a.m.•10 views

CVE-2026-2327

Versions of the package markdown-it from 13.0.0 and before 14.1.1 are vulnerable to Regular Expression Denial of Service ReDoS due to the use of the regex /+$/ in the linkify function. An attacker can supply a long sequence of characters followed by a non-matching character, which triggers...

7.5CVSS5.9AI score0.00503EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2026/02/12 5:17 a.m.•4 views

CVE-2026-2391

Summary The arrayLimit option in qs does not enforce limits for comma-separated values when comma: true is enabled, allowing attackers to cause denial-of-service via memory exhaustion. This is a bypass of the array limit enforcement, similar to the bracket notation bypass addressed in...

7.5CVSS6.4AI score0.00478EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/02/12 12:0 a.m.•5 views

CVE-2026-26080

crash in parsing frame type...

5.8AI score
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/02/12 12:0 a.m.•5 views

CVE-2026-26081

crash via INITIAL packet for the NEWTOKEN format...

5.8AI score
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•3 views

CVE-2026-20636

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS7.2AI score0.0038EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•3 views

CVE-2026-20608

This issue was addressed through improved state management. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...

5.5CVSS7.2AI score0.00229EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•1 views

CVE-2026-20635

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...

4.3CVSS7.2AI score0.00295EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•2 views

CVE-2026-20652

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A remote attacker may be able to cause a denial-of-service...

7.5CVSS7.2AI score0.00608EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•3 views

CVE-2026-20676

This issue was addressed through improved state management. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A website may be able to track users through Safari web extensions...

5.3CVSS7.2AI score0.00222EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•8 views

CVE-2026-1669

Arbitrary file read in the model loading mechanism HDF5 integration in Keras versions 3.0.0 through 3.13.1 on all supported platforms allows a remote attacker to read local files and disclose sensitive information via a crafted .keras model file utilizing HDF5 external dataset references...

7.5CVSS5.8AI score0.00298EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 11:16 p.m.•2 views

CVE-2026-20644

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS7.2AI score0.00295EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/11 9:16 p.m.•2 views

CVE-2026-25994

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, a buffer overflow vulnerability exists in PJNATH ICE Session when processing credentials with excessively long usernames...

9.8CVSS7.4AI score0.01927EPSS
Exploits3References4
UbuntuCve
UbuntuCve
•added 2026/02/11 9:16 p.m.•6 views

CVE-2026-25924

Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, a security control bypass vulnerability in Kanboard allows an authenticated administrator to achieve full Remote Code Execution RCE. Although the application correctly hides the plugin installation interface...

8.4CVSS6.2AI score0.00491EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2026/02/11 9:16 p.m.•3 views

CVE-2026-26157

A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attacker to craft malicious archives that when extracted, and under specific conditions, may write to files outside the intended directory. This can lead to arbitrary file overwrite, potentiall...

7CVSS7.5AI score0.00682EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2026/02/11 9:16 p.m.•3 views

CVE-2026-26158

A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by crafting a malicious tar archive containing unvalidated hardlink or symlink entries. If the tar archive is extracted with elevated privileges, this flaw can lead to...

7CVSS7AI score0.0016EPSS
Exploits0References2
Total number of security vulnerabilities68528