VIR Vulnerability Intelligence Relay

Search

Found 12,393 results in 1823ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2025-1934 high 8.0 FIX rhel rockydebian debian 1y ago It was possible to interrupt the processing of a RegExp bailout and run additional JavaScript, potentially triggering garbage collection when the engine was not expecting it. This vulnerability was f…
CVE-2025-1933 high 8.0 FIX rhel rockydebian debian 1y ago On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type. This vulnerability was fix…
CVE-2025-1932 high 8.0 FIX rhel rockydebian debian 1y ago An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122 and later. This vulnerability was fixed in Firefox 136, …
CVE-2025-1931 high 8.0 FIX rhel rockydebian debian 1y ago It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 136, Firefox ES…
CVE-2025-1930 high 8.0 FIX rhel rockydebian debian 1y ago On Windows, a compromised content process could use bad StreamData sent over AudioIPC to trigger a use-after-free in the Browser process. This could have led to a sandbox escape. This vulnerability w…
CVE-2025-24162 high 8.0 FIX rhel rocky sles 1y ago This issue was addressed through improved state management. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, watchOS 11.3. Processing malicio…
CVE-2025-24150 high 8.0 FIX rocky slesdebian debian 1y ago A privacy issue was addressed with improved handling of files. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3. Copying a URL from Web Inspector may lead to command i…
CVE-2025-24143 high 8.0 FIX rocky slesdebian debian 1y ago The issue was addressed with improved access restrictions to the file system. This issue is fixed in Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, visionOS 2.3. A maliciously crafted web…
CVE-2024-54543 high 8.0 FIX rhel rocky sles 1y ago The issue was addressed with improved memory handling. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.6, macOS Sequoia 15.2, tvOS 18.2, visionOS 2.2, watchOS 11.2. Processi…
CVE-2025-21772 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several issues in partition probing: - The bailout for a bad partoff…
CVE-2025-21763 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: neighbour: use RCU protection in __neigh_notify() __neigh_notify() can be called without RTNL or RCU protection. Use RCU protect…
CVE-2025-21762 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: arp: use RCU protection in arp_xmit() arp_xmit() can be called without RTNL or RCU protection. Use RCU protection to avoid poten…
CVE-2025-21761 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: openvswitch: use RCU protection in ovs_vport_cmd_fill_info() ovs_vport_cmd_fill_info() can be called without RTNL or RCU. Use RC…
CVE-2025-21760 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: ndisc: extend RCU protection in ndisc_send_skb() ndisc_send_skb() can be called without RTNL or RCU held. Acquire rcu_read_lock(…
CVE-2025-21753 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free when attempting to join an aborted transaction When we are trying to join the current transaction and i…
CVE-2025-21735 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in nci_hci_create_pipe() The "pipe" variable is a u8 which comes from the network. If it's more th…
CVE-2025-21724 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: iommufd/iova_bitmap: Fix shift-out-of-bounds in iova_bitmap_offset_to_index() Resolve a UBSAN shift-out-of-bounds issue in iova_b…
CVE-2025-21719 high 7.1 7.1 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: ipmr: do not call mr_mfc_uses_dev() for unres entries syzbot found that calling mr_mfc_uses_dev() for unres entries would crash […
CVE-2024-57979 high 7.8 7.8 FIX rocky slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: pps: Fix a use-after-free On a board running ntpd and gpsd, I'm seeing a consistent use-after-free in sys_exit() from gpsd when r…
CVE-2025-1244 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1917: emacs security update (Important)
CVE-2025-21704 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: usb: cdc-acm: Check control transfer buffer size before access If the first fragment is shorter than struct usb_cdc_notification,…
CVE-2025-1094 high 9.0 EXPFIX rhel rocky sles 1y ago RHSA-2025:3082: postgresql:12 security update (Important)
CVE-2025-21559 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21555 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21546 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21543 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21540 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21536 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21534 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21531 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21529 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21525 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21523 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21522 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21521 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21520 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21519 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21518 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21505 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21504 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21503 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21501 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21500 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21497 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21494 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2025-21491 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-7264 high 8.0 FIX rhel rockydebian debian 1y ago libcurl's ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length…
CVE-2024-21247 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21241 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21239 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21238 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21237 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21236 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21231 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21230 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21219 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21218 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21213 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21212 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21203 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21201 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21199 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21198 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21197 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21196 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21194 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-21193 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-12705 high 8.0 FIX rheldebian debian sles 1y ago Important: bind9.18 security update
CVE-2024-11187 high 8.0 FIX rheldebian debian rocky 1y ago Important: bind security update
CVE-2024-11053 high 8.0 FIX rhel rockydebian debian 1y ago When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host to the followed-to host under certain circumstances. This fl…
CVE-2024-57258 high 7.8 7.8 FIX slesdebian debian denx 1y ago Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.
CVE-2025-23085 high 8.0 FIX rhel rocky sles 1y ago Important: nodejs:20 security update
CVE-2025-23083 high 8.0 FIX rhel rocky sles 1y ago Important: nodejs:20 security update
CVE-2025-22150 high 8.0 FIX rhel rocky sles 1y ago Important: nodejs:20 security update
CVE-2024-57951 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: hrtimers: Handle CPU state correctly on hotplug Consider a scenario where a CPU transitions from CPUHP_ONLINE to halfway through …
CVE-2024-12797 high 8.0 FIX rhel sles rocky 1y ago Important: openssl security update
CVE-2024-53104 high 9.5 KEVFIX rhel rocky sles 1y ago Important: kernel security update
CVE-2025-21692 high 7.8 7.8 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ets qdisc OOB Indexing Haowei Yan <g1042620637@gmail.com> found that ets_class_from_arg() can index an Out-Of-Bou…
CVE-2025-1015 high 8.0 FIX rhel rocky sles 1y ago RHSA-2025:1292: thunderbird security update (Important)
CVE-2025-0510 high 8.0 FIX rhel rocky sles 1y ago RHSA-2025:1292: thunderbird security update (Important)
CVE-2025-1017 high 8.0 FIX rhel rockydebian debian 1y ago Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort so…
CVE-2025-1016 high 8.0 FIX rhel rockydebian debian 1y ago Memory safety bugs present in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6. Some of these bugs showed evidence of memory corruption a…
CVE-2025-1014 high 8.0 FIX rhel rockydebian debian 1y ago Certificate length was not properly checked when added to a certificate store. In practice only trusted data was processed. This vulnerability was fixed in Firefox 135, Firefox ESR 128.7, Thunderbird…
CVE-2025-1013 high 8.0 FIX rhel rockydebian debian 1y ago A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak. This vulnerability was fixed in Firefox 135, Fi…
CVE-2025-1012 high 8.0 FIX rhel rockydebian debian 1y ago A race during concurrent delazification could have led to a use-after-free. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135.
CVE-2025-1011 high 8.0 FIX rhel rockydebian debian 1y ago A bug in WebAssembly code generation could have lead to a crash. It may have been possible for an attacker to leverage this to achieve code execution. This vulnerability was fixed in Firefox 135, Fir…
CVE-2025-1010 high 8.0 FIX rhel rockydebian debian 1y ago An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 1…
CVE-2025-1009 high 8.0 FIX rhel rockydebian debian 1y ago An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, T…
CVE-2024-11218 high 8.0 FIX rhel rockydebian debian 1y ago RHSA-2025:1372: container-tools:rhel8 security update (Important)
CVE-2024-52531 high 8.0 FIX rhel rocky sles 1y ago RHSA-2025:0838: libsoup security update (Important)
CVE-2024-51741 high 8.0 FIX rhel sles rocky 1y ago Important: redis:7 security update
CVE-2024-46981 high 8.0 FIX rhel rocky sles 1y ago Important: redis security update
CVE-2022-24834 high 8.0 FIX rhel rocky sles 1y ago Important: redis security update
CVE-2024-53263 high 8.0 FIX rhel rockydebian debian 1y ago Git LFS is a Git extension for versioning large files. When Git LFS requests credentials from Git for a remote host, it passes portions of the host's URL to the `git-credential(1)` command without ch…
CVE-2023-28856 high 8.0 FIX rocky slesdebian debian 1y ago RHSA-2025:0595: redis:6 security update (Important)
CVE-2023-25155 high 8.0 FIX rocky slesdebian debian 1y ago RHSA-2025:0595: redis:6 security update (Important)
CVE-2023-22458 high 8.0 FIX rocky slesdebian debian 1y ago RHSA-2025:0595: redis:6 security update (Important)
CVE-2022-36021 high 8.0 FIX rocky slesdebian debian 1y ago RHSA-2025:0595: redis:6 security update (Important)
CVE-2022-35977 high 8.0 FIX rocky slesdebian debian 1y ago RHSA-2025:0595: redis:6 security update (Important)
CVE-2024-57945 high 7.1 7.1 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: riscv: mm: Fix the out of bound issue of vmemmap address In sparse vmemmap model, the virtual address of vmemmap is calculated as…