VIR Vulnerability Intelligence Relay

Search

Found 9,908 results in 777ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2024-56171 high 8.0 FIX rhel rocky sles 1y ago libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be va…
CVE-2024-53197 high 9.5 KEVFIX rhel rocky sles 1y ago Important: kernel security update
CVE-2024-53113 high 8.0 FIX rhel slesdebian debian 1y ago Important: kernel security update
CVE-2024-50264 high 8.0 FIX rhel rocky sles 1y ago Important: kernel security update
CVE-2023-52922 high 8.0 FIX rhel rocky sles 1y ago Important: kernel security update
CVE-2025-26601 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2025-26600 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2025-26599 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2025-26598 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2025-26597 high 7.8 7.8 FIX rhel rocky sles tigervncx.org 1y ago Important: tigervnc security update
CVE-2025-26596 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2025-26595 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2025-26594 high 8.0 FIX rhel rocky sles 1y ago Important: tigervnc security update
CVE-2024-57807 high 8.0 FIX rocky slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix for a potential deadlock This fixes a 'possible circular locking dependency detected' warning CPU0 …
CVE-2025-1938 high 8.0 FIX rhel rockydebian debian 1y ago Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort so…
CVE-2025-1937 high 8.0 FIX rhel rockydebian debian 1y ago Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 115.20, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that w…
CVE-2025-1936 high 8.0 FIX rhel rockydebian debian 1y ago jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was u…
CVE-2025-1935 high 8.0 FIX rhel rockydebian debian 1y ago A web page could trick a user into setting that site as the default handler for a custom URL protocol. This vulnerability was fixed in Firefox 136, Firefox ESR 128.8, Thunderbird 136, and Thunderbird…
CVE-2025-1934 high 8.0 FIX rhel rockydebian debian 1y ago It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability was f…
CVE-2025-1933 high 8.0 FIX rhel rockydebian debian 1y ago On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. This vulnerability was fix…
CVE-2025-1932 high 8.0 FIX rhel rockydebian debian 1y ago An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122 and later. This vulnerability was fixed in Firefox 136, …
CVE-2025-1931 high 8.0 FIX rhel rockydebian debian 1y ago It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 136, Firefox ES…
CVE-2025-1930 high 8.0 FIX rhel rockydebian debian 1y ago On Windows, a compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process. This could have led to a sandbox escape. This vulnerability w…
CVE-2025-24162 high 8.0 FIX rhel rocky sles 1y ago This issue was addressed through improved state management. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing malicio…
CVE-2025-24150 high 8.0 FIX rocky slesdebian debian 1y ago A privacy issue was addressed with improved handling of files. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Copying a URL from Web Inspector may lead to command i…
CVE-2025-24143 high 8.0 FIX rocky slesdebian debian 1y ago The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted web…
CVE-2024-54543 high 8.0 FIX rhel rocky sles 1y ago The issue was addressed with improved memory handling. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.6, macOS Sequoia 15.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Processi…
CVE-2025-21772 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several issues in partition probing: - The bailout for a bad partoff…
CVE-2025-21763 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: neighbour: use RCU protection in __neigh_notify() __neigh_notify() can be called without RTNL or RCU protection. Use RCU protect…
CVE-2025-21762 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: arp: use RCU protection in arp_xmit() arp_xmit() can be called without RTNL or RCU protection. Use RCU protection to avoid poten…
CVE-2025-21761 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: openvswitch: use RCU protection in ovs_vport_cmd_fill_info() ovs_vport_cmd_fill_info() can be called without RTNL or RCU. Use RC…
CVE-2025-21760 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndisc_send_skb() ndisc_send_skb() can be called without RTNL or RCU held. Acquire rcu_read_lock(…
CVE-2025-21753 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free when attempting to join an aborted transaction When we are trying to join the current transaction and i…
CVE-2025-21735 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in nci_hci_create_pipe() The "pipe" variable is a u8 which comes from the network. If it's more th…
CVE-2025-21724 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: iommufd/iova_bitmap: Fix shift-out-of-bounds in iova_bitmap_offset_to_index() Resolve a UBSAN shift-out-of-bounds issue in iova_b…
CVE-2025-21719 high 7.1 7.1 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: ipmr: do not call mr_mfc_uses_dev() for unres entries syzbot found that calling mr_mfc_uses_dev() for unres entries would crash […
CVE-2024-57979 high 7.8 7.8 FIX rocky slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: pps: Fix a use-after-free On a board running ntpd and gpsd, I'm seeing a consistent use-after-free in sys_exit() from gpsd when r…
CVE-2025-1244 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1917: emacs security update (Important)
CVE-2025-21704 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: usb: cdc-acm: Check control transfer buffer size before access If the first fragment is shorter than struct usb_cdc_notification,…
CVE-2025-1094 high 9.0 EXPFIX rhel rocky sles 1y ago RHSA-2025:3082: postgresql:12 security update (Important)
CVE-2025-21559 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21555 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21546 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21543 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21540 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21536 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21534 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21531 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21529 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21525 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21523 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21522 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21521 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21520 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21519 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21518 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21505 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21504 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21503 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21501 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21500 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21497 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21494 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21491 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-7264 high 8.0 FIX rhel rockydebian debian 1y ago libcurl's ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length…
CVE-2024-21247 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21241 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21239 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21238 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21237 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21236 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21231 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21230 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21219 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21218 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21213 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21212 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21203 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21201 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21199 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21198 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21197 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21196 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21194 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21193 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-12705 high 8.0 FIX rheldebian debian sles 1y ago Important: bind9.18 security update
CVE-2024-11187 high 8.0 FIX rheldebian debian rocky 1y ago Important: bind security update
CVE-2024-11053 high 8.0 FIX rhel rockydebian debian 1y ago When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This fl…
CVE-2024-57258 high 7.8 7.8 FIX slesdebian debian denx 1y ago Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.
CVE-2025-23085 high 8.0 FIX rhel rocky sles 1y ago Important: nodejs:20 security update
CVE-2025-23083 high 8.0 FIX rhel rocky sles 1y ago Important: nodejs:20 security update
CVE-2025-22150 high 8.0 FIX rhel rocky sles 1y ago Important: nodejs:20 security update
CVE-2024-57951 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: hrtimers: Handle CPU state correctly on hotplug Consider a scenario where a CPU transitions from CPUHP_ONLINE to halfway through …
CVE-2024-12797 high 8.0 FIX rhel sles rocky 1y ago Important: openssl security update
CVE-2024-53104 high 9.5 KEVFIX rhel rocky sles 1y ago Important: kernel security update
CVE-2025-21692 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ets qdisc OOB Indexing Haowei Yan <g1042620637@gmail.com> found that ets_class_from_arg() can index an Out-Of-Bou…
CVE-2025-1015 high 8.0 FIX rhel rocky sles 1y ago RHSA-2025:1292: thunderbird security update (Important)
CVE-2025-0510 high 8.0 FIX rhel rocky sles 1y ago RHSA-2025:1292: thunderbird security update (Important)
CVE-2025-1017 high 8.0 FIX rhel rockydebian debian 1y ago Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort so…
CVE-2025-1016 high 8.0 FIX rhel rockydebian debian 1y ago Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption a…