VIR Vulnerability Intelligence Relay

Search

Found 12,564 results in 1036ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2025-3159 medium 5.5 FIX debian debian rhel sles 10mo ago Moderate: qt5-qt3d security update
CVE-2025-3158 medium 5.5 FIX debian debian rhel sles 10mo ago A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. Affected by this issue is the function Assimp::LWO::AnimResolver::UpdateAnimRangeSetup of …
CVE-2024-36350 medium 5.5 FIX debian debian rhel sles 10mo ago Moderate: kernel security update
CVE-2025-8058 medium 5.5 FIX rhel rockydebian debian 10mo ago RHSA-2025:12980: glibc security update (Moderate)
CVE-2024-47081 medium 5.5 FIX rhel rocky sles 10mo ago RHSA-2025:14999: resource-agents security update (Moderate)
CVE-2025-5222 medium 5.5 FIX rheldebian debian sles 10mo ago Moderate: icu security update
CVE-2025-49133 medium 5.5 FIX rhel rockydebian debian 10mo ago RHSA-2025:12527: virt:rhel and virt-devel:rhel security update (Moderate)
CVE-2025-38491 medium 5.5 5.5 FIX slesdebian debian linux-kernel 10mo ago In the Linux kernel, the following vulnerability has been resolved: mptcp: make fallback action and fallback decision atomic Syzkaller reported the following splat: WARNING: CPU: 1 PID: 7704 at …
CVE-2025-38477 medium 4.7 4.7 FIX rocky slesdebian debian 10mo ago In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race condition can occur when 'agg' is modified in qfq_change_agg (call…
CVE-2025-38468 medium 5.5 5.5 FIX slesdebian debian linux-kernel 10mo ago In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree htb_lookup_leaf has a BUG_ON that can trigger with the fol…
CVE-2025-40909 medium 5.5 FIX arch arch rhel rocky 10mo ago RHSA-2026:8096: perl:5.32 security update (Moderate)
CVE-2025-38110 medium 5.5 FIX rhel sles rocky 10mo ago Moderate: kernel security update
CVE-2025-38086 medium 5.5 FIX rhel rocky sles 10mo ago Moderate: kernel security update
CVE-2025-37958 medium 5.5 FIX rhel sles rocky 10mo ago Moderate: kernel security update
CVE-2025-37797 medium 5.5 FIX rhel rocky sles 10mo ago Moderate: kernel security update
CVE-2025-22121 medium 5.5 FIX rhel sles rocky 10mo ago Moderate: kernel security update
CVE-2025-22113 medium 5.5 FIX rhel sles rocky 10mo ago Moderate: kernel security update
CVE-2025-22091 medium 5.5 FIX rhel sles rocky 10mo ago Moderate: kernel security update
CVE-2025-22085 medium 5.5 FIX rhel sles rocky 10mo ago Moderate: kernel security update
CVE-2025-21905 medium 5.5 FIX rhel rocky sles 10mo ago Moderate: kernel security update
CVE-2024-57980 medium 5.5 FIX rhel rocky sles 10mo ago Moderate: kernel security update
CVE-2025-8224 medium 5.5 5.5 FIX debian debian sles gnu 10mo ago A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function bfd_elf_get_str_section of the file bfd/elf.c of the component BFD Library. …
CVE-2025-38466 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: perf: Revert to requiring CAP_SYS_ADMIN for uprobes Jann reports that uprobes can be used destructively when used in the middle o…
CVE-2025-38465 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: netlink: Fix wraparounds of sk->sk_rmem_alloc. Netlink has this pattern in some places if (atomic_read(&sk->sk_rmem_alloc) > s…
CVE-2025-38457 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: net/sched: Abort __tc_modify_qdisc if parent class does not exist Lion's patch [1] revealed an ancient bug in the qdisc API. When…
CVE-2025-38451 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: md/md-bitmap: fix GPF in bitmap_get_stats() The commit message of commit 6ec1f0239485 ("md/md-bitmap: fix stats collection for ex…
CVE-2025-38430 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request If the request being processed is not a v4 compound request…
CVE-2025-38364 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: maple_tree: fix MA_STATE_PREALLOC flag in mas_preallocate() Temporarily clear the preallocation flag when explicitly requesting a…
CVE-2024-52615 medium 5.5 debian debian rhel sles 11mo ago Moderate: avahi security update
CVE-2024-50379 medium 5.5 FIX rhel rocky sles 11mo ago Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability during JSP compilation in Apache Tomcat permits an RCE on case insensitive file systems when the default servlet is enabled for write (…
CVE-2025-4373 medium 4.8 4.8 FIX rhel rockydebian debian 11mo ago RHSA-2025:11327: glib2 security update (Moderate)
CVE-2019-17543 medium 5.5 FIX rocky slesdebian debian 11mo ago RHSA-2025:11035: lz4 security update (Moderate)
CVE-2025-21991 medium 5.5 FIX rhel rocky sles 11mo ago Moderate: kernel security update
CVE-2025-38347 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on ino and xnid syzbot reported a f2fs bug as below: INFO: task syz-executor140:5308 blocked for mo…
CVE-2025-38312 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: fbdev: core: fbcvt: avoid division by 0 in fb_cvt_hperiod() In fb_find_mode_cvt(), iff mode->refresh somehow happens to be 0x8000…
CVE-2025-38285 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: bpf: Fix WARN() in get_bpf_raw_tp_regs syzkaller reported an issue: WARNING: CPU: 3 PID: 5971 at kernel/trace/bpf_trace.c:1861 g…
CVE-2025-7207 medium 5.5 5.5 FIX debian debian mruby 11mo ago A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scope_new of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs H…
CVE-2025-4673 medium 5.5 FIX rhel rockyarch arch 11mo ago RHSA-2025:10672: go-toolset:rhel8 security update (Moderate)
CVE-2025-24294 medium 5.5 FIX rocky rhel sles 11mo ago RHSA-2025:23062: ruby:3.3 security update (Moderate)
CVE-2025-22874 medium 5.5 FIX rhelarch archdebian debian 11mo ago Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rath…
CVE-2025-5024 medium 5.5 FIX rheldebian debian sles 11mo ago RHSA-2025:10742: gnome-remote-desktop security update (Moderate)
CVE-2025-48060 medium 5.5 FIX rhel rockydebian debian 11mo ago jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function `jv_string_vfmt` in the jq_fuzz_execute harness from oss-fuzz. This crash hap…
CVE-2024-23337 medium 5.5 FIX rhel rocky sles 11mo ago jq is a command-line JSON processor. In versions up to and including 1.7.1, an integer overflow arises when assigning value using an index of 2147483647, the signed integer limit. This causes a denia…
CVE-2024-54661 medium 5.5 FIX rhel rocky sles 11mo ago readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.
CVE-2025-7069 medium 5.5 5.5 debian debian sles hdfgroup 11mo ago A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FS__sect_link_size of the file src/H5FSsection.c. The manipulation leads to heap-based buffe…
CVE-2025-7068 medium 5.5 5.5 debian debian sles hdfgroup 11mo ago A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5FL__malloc of the file src/H5FL.c. The manipulation leads to memory leak. Attack…
CVE-2025-7067 medium 5.5 5.5 debian debian sles hdfgroup 11mo ago A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipulation leads to heap-b…
CVE-2025-49601 medium 6.5 6.5 FIX debian debian trustedfirmware 11mo ago In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_import_public_key does not check that the input buffer is at least 4 bytes before reading a 32-bit field, allowing a possible out-of-bounds read on truncate…
CVE-2025-49600 medium 4.9 4.9 FIX debian debian trustedfirmware 11mo ago In MbedTLS 3.3.0 before 3.6.4, mbedtls_lms_verify may accept invalid signatures if hash computation fails and internal errors go unchecked, enabling LMS (Leighton-Micali Signature) forgery in a fault…
CVE-2025-38231 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: nfsd: Initialize ssc before laundromat_work to prevent NULL dereference In nfs4_state_start_net(), laundromat_work may access nfs…
CVE-2025-38222 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4_prepare_inline_data When running the following code on an ext4 filesystem with inline_data…
CVE-2025-38215 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var If fb_add_videomode() in do_register_framebuf…
CVE-2025-38214 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var If fb_add_videomode() in fb_set_var() fails to allocate me…
CVE-2025-38192 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: net: clear the dst when changing skb protocol A not-so-careful NAT46 BPF program can crash the kernel if it indiscriminately flip…
CVE-2025-38167 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: handle hdr_first_de() return value The hdr_first_de() function returns a pointer to a struct NTFS_DE. This pointer may …
CVE-2025-38105 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Kill timer properly at removal The USB-audio MIDI code initializes the timer, but in a rare case, the driver mig…
CVE-2025-38100 medium 5.5 5.5 FIX slesdebian debian linux-kernel 11mo ago In the Linux kernel, the following vulnerability has been resolved: x86/iopl: Cure TIF_IO_BITMAP inconsistencies io_bitmap_exit() is invoked from exit_thread() when a task exists or when a fork fai…
CVE-2025-5702 medium 5.5 FIX rheldebian debian sles 11mo ago Moderate: glibc security update
CVE-2023-52933 medium 5.5 FIX rhel slesdebian debian 11mo ago Moderate: kernel security update
CVE-2025-6858 medium 5.5 5.5 debian debian sles hdfgroup 11mo ago A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5C__flush_single_entry of the file src/H5Centry.c. The manipulation leads to null point…
CVE-2024-53064 medium 5.5 FIX rocky slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: idpf: fix idpf_vc_core_init error path In an event where the platform running the device control plane is rebooted, reset is dete…
CVE-2022-48919 medium 5.5 FIX rocky slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: cifs: fix double free race when mount fails in cifs_get_root() When cifs_get_root() fails during cifs_smb3_do_mount() we call dea…
CVE-2025-5455 medium 5.5 FIX rhel sles rocky 1y ago Moderate: qt5-qtbase security update
CVE-2025-47268 medium 5.5 FIX rheldebian debian sles 1y ago Moderate: iputils security update
CVE-2025-3576 medium 5.9 5.9 FIX rhel rockydebian debian 1y ago RHSA-2025:8411: krb5 security update (Moderate)
CVE-2025-25724 medium 5.5 FIX rheldebian debian sles 1y ago Moderate: libarchive security update
CVE-2025-24495 medium 5.5 FIX rhel rockydebian debian 1y ago RHSA-2025:10991: microcode_ctl security update (Moderate)
CVE-2025-20623 medium 5.5 FIX rhel rockydebian debian 1y ago RHSA-2025:10991: microcode_ctl security update (Moderate)
CVE-2025-20012 medium 5.5 FIX rhel rockydebian debian 1y ago RHSA-2025:10991: microcode_ctl security update (Moderate)
CVE-2024-45332 medium 5.5 FIX rhel rocky sles 1y ago RHSA-2025:10991: microcode_ctl security update (Moderate)
CVE-2024-43420 medium 5.5 FIX rhel rocky sles 1y ago RHSA-2025:10991: microcode_ctl security update (Moderate)
CVE-2025-6498 medium 5.5 5.5 debian debian htacg 1y ago A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possibl…
CVE-2025-3891 medium 5.5 FIX rhel rockydebian debian 1y ago RHSA-2025:4597: mod_auth_openidc:2.3 security update (Moderate)
CVE-2025-37738 medium 5.5 FIX rhel rocky sles 1y ago Moderate: kernel security update
CVE-2025-23150 medium 5.5 FIX rhel rocky sles 1y ago Moderate: kernel security update
CVE-2025-22104 medium 5.5 FIX rhel sles rocky 1y ago Moderate: kernel security update
CVE-2025-21919 medium 5.5 FIX rhel rocky sles 1y ago Moderate: kernel security update
CVE-2025-21883 medium 5.5 FIX rhel sles rocky 1y ago Moderate: kernel security update
CVE-2025-6375 medium 5.5 5.5 FIX slesdebian debian pocoproject 1y ago A vulnerability was found in poco up to 1.14.1. It has been rated as problematic. Affected by this issue is the function MultipartInputStream of the file Net/src/MultipartReader.cpp. The manipulation…
CVE-2025-38083 medium 4.7 4.7 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: net_sched: prio: fix a race in prio_tune() Gerrard Tai reported a race condition in PRIO, whenever SFQ perturb timer fires at the…
CVE-2025-6270 medium 5.3 5.3 debian debian sles hdfgroup 1y ago A vulnerability, which was classified as critical, has been found in HDF5 up to 1.14.6. Affected by this issue is the function H5FS__sect_find_node of the file H5FSsection.c. The manipulation leads t…
CVE-2025-6269 medium 5.3 5.3 debian debian sles hdfgroup 1y ago A vulnerability classified as critical was found in HDF5 up to 1.14.6. Affected by this vulnerability is the function H5C__reconstruct_cache_entry of the file H5Cimage.c. The manipulation leads to he…
CVE-2025-38071 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: x86/mm: Check return value from memblock_phys_alloc_range() At least with CONFIG_PHYSICAL_START=0x100000, if there is < 4 MiB of …
CVE-2025-38067 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: rseq: Fix segfault on registration when rseq_cs is non-zero The rseq_cs field is documented as being set to 0 by user-space prior…
CVE-2025-38063 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: dm: fix unconditional IO throttle caused by REQ_PREFLUSH When a bio with REQ_PREFLUSH is submitted to dm, __send_empty_flush() ge…
CVE-2025-38058 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock ... or we risk stealing final mntput from sync umount - …
CVE-2025-6120 medium 5.3 5.3 debian debian sles assimp 1y ago A vulnerability classified as critical was found in Open Asset Import Library Assimp up to 5.4.3. Affected by this vulnerability is the function read_meshes in the library assimp/code/AssetLib/MDL/Ha…
CVE-2025-6119 medium 5.3 5.3 debian debian assimp 1y ago A vulnerability classified as critical has been found in Open Asset Import Library Assimp up to 5.4.3. Affected is the function Assimp::BVHLoader::ReadNodeChannels in the library assimp/code/AssetLib…
CVE-2025-4748 medium 5.5 FIX arch archdebian debian sles 1y ago Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is as…
CVE-2022-49395 medium 5.5 FIX rocky slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscall_stub_data() expects the data_count parameter to be the number of longs, not bytes…
CVE-2025-5899 medium 5.3 5.3 debian debian 1y ago A vulnerability classified as critical was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. Affected by this vulnerability is the function parse_variables_option of the file utilities/pspp…
CVE-2025-5898 medium 5.3 5.3 slesdebian debian 1y ago A vulnerability classified as critical has been found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. Affected is the function parse_variables_option of the file utilities/pspp-convert.c. The m…
CVE-2025-4802 medium 5.5 FIX rhel rockydebian debian 1y ago RHSA-2025:8686: glibc security update (Moderate)
CVE-2023-24824 medium 5.5 FIX rockydebian debian rhel 1y ago RHSA-2025:8427: pandoc security update (Moderate)
CVE-2020-16156 medium 5.5 FIX arch arch rocky sles 1y ago RHSA-2025:8432: perl-CPAN security update (Moderate)
CVE-2022-3424 medium 5.5 FIX rhel slesdebian debian 1y ago Moderate: kernel security update
CVE-2025-5278 medium 4.4 4.4 arch archdebian debian sles 1y ago A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafte…
CVE-2025-21964 medium 5.5 FIX rhel sles rocky 1y ago Moderate: kernel security update
CVE-2025-4969 medium 6.5 6.5 FIX debian debian sles 1y ago A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages. This can allow a remote attacker to send a specially…
CVE-2025-37968 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: iio: light: opt3001: fix deadlock due to concurrent flag access The threaded IRQ function in this driver is reading the flag twic…