VIR Vulnerability Intelligence Relay

Search

Found 13,715 results in 1088ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-1998 medium 5.5 5.5 debian debian micropython 4mo ago A flaw has been found in micropython up to 1.27.0. This vulnerability affects the function mp_import_all of the file py/runtime.c. This manipulation causes memory corruption. The attack needs to be l…
CVE-2026-1991 medium 5.5 5.5 debian debian libuvc 4mo ago A vulnerability was detected in libuvc up to 0.0.7. Affected is the function uvc_scan_streaming of the file src/device.c of the component UVC Descriptor Handler. The manipulation results in null poin…
CVE-2026-1979 medium 5.5 5.5 debian debian mruby 4mo ago A flaw has been found in mruby up to 3.4.0. This affects the function mrb_vm_exec of the file src/vm.c of the component JMPNOT-to-JMPIF Optimization. Executing a manipulation can lead to use after fr…
CVE-2025-22873 low 2.5 FIX arch archdebian debian sles 4mo ago It was possible to improperly access the parent directory of an os.Root by opening a filename ending in "../". For example, Root.Open("../") would open the parent directory of the Root. This escape o…
CVE-2026-23110 medium 4.7 4.7 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking command…
CVE-2025-14104 medium 5.5 FIX rocky rhel sles 4mo ago Moderate: util-linux security update
CVE-2025-40251 medium 5.5 5.5 FIX rhel sles rocky 4mo ago Moderate: kernel security update
CVE-2025-40154 medium 5.5 FIX rocky rhel sles 4mo ago Moderate: kernel security update
CVE-2025-38568 medium 5.5 FIX rhel sles rocky 4mo ago Moderate: kernel security update
CVE-2024-26766 medium 5.5 FIX rocky slesdebian debian 4mo ago In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx->num_descs off-by-one error Unfortunately the commit `fd8958efe877` introduced another error causing the `…
CVE-2026-23026 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() Fix a memory leak in gpi_peripheral_config() where the original …
CVE-2025-71191 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: at_hdmac: fix device leak on of_dma_xlate() Make sure to drop the reference taken when looking up the DMA platform dev…
CVE-2025-71190 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: bcm-sba-raid: fix device leak on probe Make sure to drop the reference taken when looking up the mailbox device during…
CVE-2025-71189 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw: dmamux: fix OF node leak on route allocation failure Make sure to drop the reference taken to the DMA master OF no…
CVE-2025-71188 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: lpc18xx-dmamux: fix device leak on route allocation Make sure to drop the reference taken when looking up the DMA mux …
CVE-2025-71186 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: stm32: dmamux: fix device leak on route allocation Make sure to drop the reference taken when looking up the DMA mux p…
CVE-2025-71185 medium 5.5 5.5 FIX slesdebian debian linux-kernel 4mo ago In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation Make sure to drop the reference taken when looking up the…
CVE-2026-25210 medium 6.9 6.9 FIX debian debian sles libexpat_project 4mo ago In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation.
CVE-2025-54349 medium 5.5 FIX rocky rheldebian debian 4mo ago RHSA-2026:1592: iperf3 security update (Moderate)
CVE-2026-22796 medium 5.3 5.3 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2026-22795 medium 5.5 5.5 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2025-69418 medium 4.0 4.0 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2025-68160 medium 4.7 4.7 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2026-1489 medium 5.4 5.4 FIX debian debian sles 4mo ago A flaw was found in GLib. An integer overflow vulnerability in its Unicode case conversion implementation can lead to memory corruption. By processing specially crafted and extremely large Unicode st…
CVE-2026-1484 medium 4.2 4.2 FIX debian debian sles 4mo ago A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to incorrect use of integer types during length calculation, the library may miscalculate buffer bounda…
CVE-2025-14178 medium 5.5 FIX rockyalmalinux almalinux rhel 4mo ago RHSA-2026:2470: php:7.4 security update (Moderate)
CVE-2025-14177 medium 5.5 FIX rocky rhelalmalinux almalinux 4mo ago RHSA-2026:2470: php:7.4 security update (Moderate)
CVE-2025-12084 medium 5.5 FIX rocky rheldebian debian 4mo ago Moderate: python3.12 security update
CVE-2026-1417 low 3.3 3.3 debian debian gpac 4mo ago A weakness has been identified in GPAC up to 2.4.0. Affected by this issue is the function dump_isom_rtp of the file applications/mp4box/filedump.c. This manipulation causes null pointer dereference.…
CVE-2026-1416 low 3.3 3.3 debian debian gpac 4mo ago A security flaw has been discovered in GPAC up to 2.4.0. Affected by this vulnerability is the function DumpMovieInfo of the file applications/mp4box/filedump.c. The manipulation results in null poin…
CVE-2026-1415 low 3.3 3.3 debian debian gpac 4mo ago A vulnerability was identified in GPAC up to 2.4.0. Affected is the function gf_media_export_webvtt_metadata of the file src/media_tools/media_export.c. The manipulation of the argument Name leads to…
CVE-2025-71161 medium 5.5 5.5 FIX slesdebian debian linux-kernel google 4mo ago In the Linux kernel, the following vulnerability has been resolved: dm-verity: disable recursive forward error correction There are two problems with the recursive correction: 1. It may cause deni…
CVE-2026-24515 low 2.9 2.9 FIX debian debian sles libexpat_project 4mo ago In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler user data.
CVE-2026-21933 medium 6.1 6.1 FIX rocky rhel sles oracle 5mo ago RHSA-2026:4832: java-1.8.0-ibm security update (Important)
CVE-2026-21925 medium 4.8 4.8 FIX rocky rhel sles oracle 5mo ago RHSA-2026:4832: java-1.8.0-ibm security update (Important)
CVE-2026-22977 medium 5.5 5.5 FIX slesdebian debian linux-kernel 5mo ago In the Linux kernel, the following vulnerability has been resolved: net: sock: fix hardened usercopy panic in sock_recv_errqueue skbuff_fclone_cache was created without defining a usercopy region, …
CVE-2026-22976 medium 5.5 5.5 FIX slesdebian debian linux-kernel 5mo ago In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset `qfq_class->leaf_qdisc->q.qlen > 0` does not…
CVE-2025-67726 medium 5.5 FIX rocky slesdebian debian 5mo ago RHSA-2026:0930: pcs security update (Moderate)
CVE-2025-67725 medium 5.5 FIX rocky slesdebian debian 5mo ago RHSA-2026:0930: pcs security update (Moderate)
CVE-2026-21947 low 3.1 3.1 FIX slesdebian debian oracle 5mo ago Vulnerability in Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u471-b50. Difficult to exploit vulnerability allows unauthenticated attacker with netwo…
CVE-2025-15537 medium 5.5 5.5 debian debian mapnik 5mo ago A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function mapnik::dbf_file::string_value of the file plugins/input/shape/dbfile.cpp. Such manipulation leads to…
CVE-2025-15536 medium 5.5 5.5 FIX slesdebian debian byvoid 5mo ago A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function opencc::MaxMatchSegmentation of the file src/MaxMatchSegmentation.cpp. This manipulation causes he…
CVE-2026-0858 medium 6.1 6.1 slesdebian debian plantuml 5mo ago PlantUML is vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams
CVE-2025-46397 medium 5.5 FIX rocky rheldebian debian 5mo ago RHSA-2026:0756: transfig security update (Moderate)
CVE-2025-14242 medium 5.5 FIX rocky rhel sles 5mo ago RHSA-2026:0608: vsftpd security update (Moderate)
CVE-2025-68823 medium 5.5 5.5 FIX slesdebian debian linux-kernel 5mo ago In the Linux kernel, the following vulnerability has been resolved: ublk: fix deadlock when reading partition table When one process(such as udev) opens ublk block device (e.g., to read the partiti…
CVE-2025-12817 medium 5.5 FIX rocky rhel sles 5mo ago Moderate: postgresql:15 security update
CVE-2025-40240 medium 5.5 FIX rocky rhel sles 5mo ago Moderate: kernel security update
CVE-2025-39883 medium 5.5 FIX rocky rhel sles 5mo ago Moderate: kernel security update
CVE-2025-39840 medium 5.5 FIX rhel sles rocky 5mo ago Moderate: kernel security update
CVE-2025-12818 medium 5.5 FIX rocky rhel sles 5mo ago Moderate: postgresql:15 security update
CVE-2025-15506 low 3.3 3.3 debian debian 5mo ago AcademySoftwareFoundation OpenColorIO has an out-of-bounds vulnerability
CVE-2026-22610 medium 6.1 6.1 FIX debian debian angular 5mo ago Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.18, 20.3.16, 21.0.7, and 21.1.0-rc.0, a cros…
CVE-2025-61915 medium 5.5 FIX rocky rheldebian debian 5mo ago RHSA-2026:0596: cups security update (Moderate)
CVE-2025-58436 medium 5.5 FIX rocky rheldebian debian 5mo ago RHSA-2026:0596: cups security update (Moderate)
CVE-2026-21968 medium 5.5 FIX rocky rhel sles 5mo ago Moderate: mysql:8.4 security update
CVE-2023-52971 medium 5.5 FIX rocky rhel sles 5mo ago RHSA-2026:6435: mariadb:10.11 security update (Moderate)
CVE-2025-32365 medium 5.5 FIX rocky rhel sles 5mo ago Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
CVE-2025-14957 medium 5.5 5.5 debian debian webassembly 6mo ago A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBuilder::makeLocalSet/IRBuilder::makeLocalTee of the file src/wasm/wasm-ir-builde…
CVE-2025-68463 medium 4.9 4.9 FIX debian debian 6mo ago Biopython is vulnerable to doctype XML external entity (XXE) injection through Bio.Entrez
CVE-2025-14841 low 3.3 3.3 FIX debian debian 6mo ago A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in t…
CVE-2025-8291 medium 5.5 FIX rocky rhelalmalinux almalinux 6mo ago The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory (EOCD) Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD re…
CVE-2025-6491 medium 5.5 FIX rockyalmalinux almalinux rhel 6mo ago RHSA-2026:2470: php:7.4 security update (Moderate)
CVE-2025-5987 medium 5.5 FIX rheldebian debian sles 6mo ago Moderate: libssh security update
CVE-2025-1735 medium 5.5 FIX rockyalmalinux almalinux rhel 6mo ago RHSA-2026:2470: php:7.4 security update (Moderate)
CVE-2025-1220 medium 5.5 FIX rocky rhelalmalinux almalinux 6mo ago RHSA-2026:2470: php:7.4 security update (Moderate)
CVE-2025-61985 medium 5.5 FIX rocky rhel sles 6mo ago ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used.
CVE-2025-61984 medium 5.5 FIX rocky rhel sles 6mo ago ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrus…
CVE-2025-38499 medium 5.5 5.5 FIX rhel sles rocky 6mo ago Important: kernel security update
CVE-2023-53900 medium 6.1 6.1 debian debian spip 6mo ago Spip 4.1.10 contains a file upload vulnerability that allows attackers to upload malicious SVG files with embedded external links. Attackers can trick administrators into clicking a crafted SVG logo …
CVE-2025-14569 medium 5.3 5.3 debian debian 6mo ago A vulnerability was detected in ggml-org whisper.cpp up to 1.8.2. Affected is the function read_audio_data of the file /whisper.cpp/examples/common-whisper.cpp. The manipulation results in use after …
CVE-2025-14512 medium 6.5 6.5 FIX rheldebian debian sles gnomeredhat 6mo ago A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when pro…
CVE-2025-53069 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53062 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53054 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53053 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53045 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53044 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53042 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-53040 medium 5.5 FIX rocky rheldebian debian 6mo ago RHSA-2025:23137: mysql:8.4 security update (Moderate)
CVE-2025-14087 medium 5.6 5.6 FIX rheldebian debian sles gnome 6mo ago A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GV…
CVE-2025-39979 medium 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-39925 medium 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-14010 medium 5.5 5.5 FIX debian debian redhat 6mo ago Ansible Community General Collection is vulnerable to exposure of sensitive information
CVE-2025-4598 medium 4.7 4.7 FIX arch arch rhel sles systemd_projectredhat 6mo ago Moderate: systemd security update
CVE-2025-66412 medium 5.4 5.4 FIX debian debian angular 6mo ago Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scriptin…
CVE-2025-9714 medium 5.5 5.5 FIX rheldebian debian sles xmlsoft 6mo ago Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a local attacker to cause a stack overflow via crafted expressions. XPath processing functions `xmlXPat…
CVE-2025-40186 medium 5.5 FIX slesdebian debian rhel 6mo ago In the Linux kernel, the following vulnerability has been resolved: tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request(). syzbot reported the splat below in tcp_conn_request(). [0] If a l…
CVE-2025-40185 medium 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-40058 medium 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-39981 medium 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-39955 medium 5.5 FIX rocky rhel sles 6mo ago Moderate: kernel security update
CVE-2025-39918 medium 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-66382 low 2.9 2.9 debian debian sles libexpat_project 6mo ago In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.
CVE-2025-39843 medium 5.5 5.5 FIX rhel sles rocky 6mo ago Moderate: kernel security update
CVE-2025-58183 medium 5.5 FIX rocky rheldebian debian 7mo ago Moderate: image-builder security update
CVE-2025-61664 medium 4.9 4.9 FIX debian debian sles 7mo ago A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when it…
CVE-2025-54771 medium 4.9 4.9 FIX debian debian sles 7mo ago A use-after-free vulnerability has been identified in the GNU GRUB (Grand Unified Bootloader). The flaw occurs because the file-closing process incorrectly retains a memory pointer, leaving an invali…
CVE-2025-54770 medium 4.9 4.9 FIX debian debian sles 7mo ago A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service (DoS) risk. This flaw is a Use-after-Free issue, caused because the net_set_vlan…
CVE-2025-40047 medium 5.5 FIX rhel slesdebian debian 7mo ago In the Linux kernel, the following vulnerability has been resolved: io_uring/waitid: always prune wait queue entry in io_waitid_wait() For a successful return, always remove our entry from the wait…