VIR Vulnerability Intelligence Relay

Search

Found 5,398 results in 886ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2024-5693 high 8.0 FIX rhel rockydebian debian 2y ago Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 127,…
CVE-2024-5691 high 8.0 FIX rhel rockydebian debian 2y ago By tricking the browser with a `X-Frame-Options` header, a sandboxed iframe could have presented a button that, if clicked by a user, would bypass restrictions to open a new window. This vulnerabilit…
CVE-2024-5690 high 8.0 FIX rhel rockydebian debian 2y ago By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system. This vulnerability affects Firefox < 127, Firefox E…
CVE-2024-5688 high 8.0 FIX rhel rockydebian debian 2y ago If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird…
CVE-2024-32462 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:3961: flatpak security update (Important)
CVE-2024-3657 high 8.0 FIX debian debian rhel rocky 2y ago RHSA-2024:4235: 389-ds security update (Important)
CVE-2024-2199 high 8.0 FIX debian debian rhel rocky 2y ago RHSA-2024:4235: 389-ds security update (Important)
CVE-2024-3183 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:3755: idm:DL1 security update (Important)
CVE-2024-2698 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:3755: idm:DL1 security update (Important)
CVE-2024-3049 high 8.0 FIX rheldebian debian rocky 2y ago RHSA-2024:3659: booth security update (Important)
CVE-2024-5629 low 2.5 FIX rocky slesdebian debian 2y ago RHSA-2025:8419: python36:3.6 security update (Low)
CVE-2024-32487 high 8.0 FIX rhel rocky sles 2y ago RHSA-2024:4256: less security update (Important)
CVE-2024-33602 high 7.4 7.4 FIX rhel rockydebian debian gnunetapp 2y ago RHSA-2024:3344: glibc security update (Important)
CVE-2024-33601 high 7.3 7.3 FIX rhel rockydebian debian gnu 2y ago RHSA-2024:3344: glibc security update (Important)
CVE-2024-33599 high 8.1 8.1 FIX rhel rockydebian debian gnu 2y ago RHSA-2024:3344: glibc security update (Important)
CVE-2024-2961 high 7.3 8.3 EXPFIX rhel rockydebian debian gnunetapp 2y ago RHSA-2024:3269: glibc security update (Important)
CVE-2024-24549 high 8.0 FIX rhel sles rocky 2y ago Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for head…
CVE-2024-23672 high 8.0 FIX rhel sles rocky 2y ago Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue …
CVE-2023-20592 high 8.0 FIX debian debian rocky sles 2y ago RHSA-2024:3178: linux-firmware security update (Important)
CVE-2022-50346 high 8.0 FIX slesdebian debian rhel 2y ago RHSA-2024:2394: kernel security, bug fix, and enhancement update (Important)
CVE-2020-21710 low 2.5 FIX slesdebian debian rocky 2y ago RHSA-2024:2966: ghostscript security update (Low)
CVE-2024-4367 high 8.8 9.8 EXPFIX rhel rockydebian debian mozillaopen-xchange 2y ago A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thu…
CVE-2024-35176 low 2.5 FIX rocky slesdebian debian 2y ago RHSA-2024:5338: pcs security update (Low)
CVE-2024-30046 high 8.0 FIX rhel rockyalmalinux almalinux 2y ago RHSA-2024:3345: .NET 8.0 security update (Important)
CVE-2024-30045 high 8.0 FIX rhel rockyalmalinux almalinux 2y ago RHSA-2024:3345: .NET 8.0 security update (Important)
CVE-2024-27983 high 8.0 FIX rhelarch arch rocky 2y ago RHSA-2024:2780: nodejs:18 security update (Important)
CVE-2024-27982 high 8.0 FIX rhelarch arch rocky 2y ago RHSA-2024:2780: nodejs:18 security update (Important)
CVE-2024-25629 low 2.5 FIX rheldebian debian rocky 2y ago RHSA-2024:4249: c-ares security update (Low)
CVE-2024-22025 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:2780: nodejs:18 security update (Important)
CVE-2024-31083 high 8.0 FIX rhelalmalinux almalinux rocky 2y ago Important: tigervnc security update
CVE-2024-31081 high 8.0 FIX rhel rocky sles 2y ago Important: tigervnc security update
CVE-2024-31080 high 8.0 FIX rhel rocky sles 2y ago Important: tigervnc security update
CVE-2024-3019 high 8.0 FIX rhel rocky sles 2y ago RHSA-2024:3264: pcp security update (Important)
CVE-2024-28757 high 8.0 FIX rheldebian debian sles 2y ago RHSA-2025:21776: expat security update (Important)
CVE-2024-26671 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26633 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26609 high 8.0 FIX rhel rockyalmalinux almalinux 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26602 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26593 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26586 high 8.0 FIX rhel sles rocky 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26585 high 8.0 FIX rhel sles rocky 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26584 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26583 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26582 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-25744 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-24785 high 8.0 FIX rocky rheldebian debian 2y ago RHSA-2026:3428: container-tools:rhel8 security update (Important)
CVE-2024-23271 high 8.0 FIX rhel rocky sles 2y ago A logic issue was addressed with improved checks. This issue is fixed in Safari 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, watchOS 10.3. A malicious website may cause unexpected cr…
CVE-2024-1313 high 8.0 FIX rhel rocky sles 2y ago RHSA-2024:3265: grafana security update (Important)
CVE-2024-1086 high 9.5 KEVFIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-1085 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-0841 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-0565 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6932 high 7.0 7.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6931 high 7.0 7.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6918 low 2.5 FIX rhel rocky sles 2y ago RHSA-2024:3233: libssh security update (Low)
CVE-2023-6915 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6622 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6546 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6531 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6176 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6040 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6004 low 2.5 FIX rhel rocky sles 2y ago RHSA-2024:3233: libssh security update (Low)
CVE-2023-5574 high 8.0 FIX rhel slesdebian debian 2y ago A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Za…
CVE-2023-54326 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Free IRQs before removing the device In pci_endpoint_test_remove(), freeing the IRQs after removing the …
CVE-2023-54316 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: refscale: Fix uninitalized use of wait_queue_head_t Running the refscale test occasionally crashes the kernel with the following …
CVE-2023-54312 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix buffer overflow in tcp_basertt Using sizeof(nv) or strlen(nv)+1 is correct.
CVE-2023-54303 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpf_perf_event_output The nesting protection in bpf_perf_event_output relies on disabled preemption, w…
CVE-2023-54302 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP completion stats CQP completion statistics is read lockesly in irdma_wait_event and irdma_check_…
CVE-2023-54296 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration Fix a goof where KVM tries to grab source vCPUs from the…
CVE-2023-54292 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP request done KCSAN detects a data race on cqp_request->request_done memory location which is acc…
CVE-2023-54283 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Address KCSAN report on bpf_lru_list KCSAN reported a data-race when accessing node->ref. Although node->ref does not have t…
CVE-2023-54263 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/kms/nv50-: init hpd_irq_lock for PIOR DP Fixes OOPS on boards with ANX9805 DP encoders.
CVE-2023-54261 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add missing gfx11 MQD manager callbacks mqd_stride function was introduced in commit 2f77b9a242a2 ("drm/amdkfd: Updat…
CVE-2023-54260 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb direct connection info is NULL,…
CVE-2023-54254 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Don't leak a resource on eviction error On eviction errors other than -EMULTIHOP we were leaking a resource. Fix. v2: -…
CVE-2023-54251 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX. syzkaller found zero division error [0] in div_s64_rem() ca…
CVE-2023-54242 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: block, bfq: Fix division by zero error on zero wsum When the weighted sum is zero the calculation of limit causes a division by z…
CVE-2023-54235 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: PCI/DOE: Fix destroy_work_on_stack() race The following debug object splat was observed in testing: ODEBUG: free active (activ…
CVE-2023-54229 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix registration of 6Ghz-only phy without the full channel range Because of what seems to be a typo, a 6Ghz-only ph…
CVE-2023-54221 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: clk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe In function probe(), it returns directly without unregi…
CVE-2023-54215 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: virtio-vdpa: Fix cpumask memory leak in virtio_vdpa_find_vqs() Free the cpumask allocated by create_affinity_masks() before retur…
CVE-2023-54214 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix potential user-after-free This fixes all instances of which requires to allocate a buffer calling alloc_skb…
CVE-2023-54197 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work" This reverts commit 1e9ac114c4428fdb7f…
CVE-2023-54173 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpf_event_output We received report [1] of kernel crash, which is caused by using nesting protection w…
CVE-2023-54160 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: firmware: arm_sdei: Fix sleep from invalid context BUG Running a preempt-rt (v6.2-rc3-rt1) based kernel on an Ampere Altra trigge…
CVE-2023-54156 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: sfc: fix crash when reading stats while NIC is resetting efx_net_stats() (.ndo_get_stats64) can be called during an ethtool self…
CVE-2023-54155 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail() Syzkaller reported the following issue: ===================…
CVE-2023-54154 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix target_cmd_counter leak The target_cmd_counter struct allocated via target_alloc_cmd_counter() is never f…
CVE-2023-54145 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log It's trivial for user to trigger "verifier log line truncated" …
CVE-2023-54141 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hw_ops->get_ring_selector() for IPQ5018 During sending data after clients connected, hw_ops->get_ring_s…
CVE-2023-54137 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: vfio/type1: fix cap_migration information leak Fix an information leak where an uninitialized hole in struct vfio_iommu_type1_inf…
CVE-2023-54135 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: maple_tree: fix potential out-of-bounds access in mas_wr_end_piv() Check the write offset end bounds before using it as the offse…
CVE-2023-54120 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix race condition in hidp_session_thread There is a potential race condition in hidp_session_thread that may lead to …
CVE-2023-54091 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix memory leak in drm_client_target_cloned dmt_mode is allocated and never freed in this function. It was found with…
CVE-2023-54076 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: smb: client: fix missed ses refcounting Use new cifs_smb_ses_inc_refcount() helper to get an active reference of @ses and @ses->d…
CVE-2023-54069 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow When we calculate the end position of ext4_free_extent, this position may…
CVE-2023-54062 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: ext4: fix invalid free tracking in ext4_xattr_move_to_block() In ext4_xattr_move_to_block(), the value of the extended attribute …
CVE-2023-54060 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: iommufd: Set end correctly when doing batch carry Even though the test suite covers this it somehow became obscured that this was…
CVE-2023-54052 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU txs may be dropped if the frame is aggregated in AMSDU. When the problem…
CVE-2023-54048 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Drive…