VIR Vulnerability Intelligence Relay

Search

Found 16,402 results in 1351ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2025-24898 medium 5.5 FIX rhel rockydebian debian 1y ago rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l…
CVE-2025-21683 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Fix bpf_sk_select_reuseport() memory leak As pointed out in the original comment, lookup in sockmap can return a TCP ESTABLI…
CVE-2025-21678 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: gtp: Destroy device along with udp socket's netns dismantle. gtp_newlink() links the device to a list in dev_net(dev) instead of …
CVE-2024-57948 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: mac802154: check local interfaces before deleting sdata list syzkaller reported a corrupted list in ieee802154_if_remove. [1] Re…
CVE-2025-21502 medium 5.5 FIX rhel rocky sles 1y ago RHSA-2025:2615: java-1.8.0-ibm security update (Moderate)
CVE-2024-57947 medium 5.5 FIX rhel slesdebian debian 1y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_set_pipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the si…
CVE-2024-53088 medium 5.5 FIX rhel rocky sles 1y ago Moderate: kernel security update
CVE-2024-50275 medium 5.5 FIX rhel rocky sles 1y ago Moderate: kernel security update
CVE-2024-50154 medium 5.5 FIX rhel rocky sles 1y ago Moderate: kernel security update
CVE-2025-21664 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: dm thin: make get_first_thin use rcu-safe list first function The documentation in rculist.h explains the absence of list_empty_r…
CVE-2024-57924 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: fs: relax assertions on failure to encode file handles Encoding file handles is usually performed by a filesystem >encode_fh() me…
CVE-2024-57913 medium 4.7 4.7 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Remove WARN_ON in functionfs_bind This commit addresses an issue related to below kernel panic where panic_on_…
CVE-2025-21653 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute syzbot found that TCA_FLOW_RSHIFT attribute was not validated. Right shit…
CVE-2025-21640 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' str…
CVE-2025-21639 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: rto_min/max: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structu…
CVE-2025-21638 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: auth_enable: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structu…
CVE-2024-57902 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: af_packet: fix vlan_get_tci() vs MSG_PEEK Blamed commit forgot MSG_PEEK case, allowing a crash [1] as found by syzbot. Rework vl…
CVE-2024-57901 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK Blamed commit forgot MSG_PEEK case, allowing a crash [1] as found by syzbot.…
CVE-2024-11029 medium 5.5 FIX rheldebian debianalmalinux almalinux 1y ago Moderate: ipa security update
CVE-2024-11831 medium 5.4 5.4 FIX rhel slesdebian debian 1y ago A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object type…
CVE-2024-47809 medium 5.5 5.5 FIX slesdebian debian linux-kernel 1y ago In the Linux kernel, the following vulnerability has been resolved: dlm: fix possible lkb_resource null dereference This patch fixes a possible null pointer dereference when this function is called…
CVE-2024-56727 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2y ago In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c Adding error pointer check after calling otx2_mbox_get_rsp().
CVE-2024-56719 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2y ago In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix TSO DMA API usage causing oops Commit 66600fac7a98 ("net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-page…
CVE-2024-56657 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2y ago In the Linux kernel, the following vulnerability has been resolved: ALSA: control: Avoid WARN() for symlink errors Using WARN() for showing the error of symlink creations don't give more informatio…
CVE-2024-53221 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2y ago In the Linux kernel, the following vulnerability has been resolved: f2fs: fix null-ptr-deref in f2fs_submit_page_bio() There's issue as follows when concurrently installing the f2fs.ko module and m…
CVE-2024-50255 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-50223 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-50192 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-50148 medium 5.5 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-50142 medium 5.5 5.5 FIX rhel rocky sles 2y ago Linux kernel vulnerabilities
CVE-2024-50125 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-50124 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-50115 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-50110 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-50099 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-49888 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-47675 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-46697 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-45020 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-38564 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-27399 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-54677 low 2.5 FIX slesdebian debian 2y ago Uncontrolled Resource Consumption vulnerability in the examples web application provided with Apache Tomcat leads to denial of service. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.…
CVE-2024-50612 medium 5.5 FIX rhel rocky sles 2y ago RHSA-2024:11192: libsndfile security update (Moderate)
CVE-2024-38796 medium 5.5 FIX rhel rockydebian debian 2y ago RHSA-2024:11185: edk2:20220126gitbb1bba3d77 security update (Moderate)
CVE-2024-10573 medium 5.5 FIX rhel rocky sles 2y ago RHSA-2024:11193: mpg123 security update (Moderate)
CVE-2024-7592 low 2.5 FIX rhel sles rocky 2y ago There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard library module. When parsing cookies that contained backslashes for quoted characters in the cookie…
CVE-2024-0397 medium 5.5 FIX rhel slesdebian debian 2y ago A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “cert_store_stats()” and “get_ca_certs()”. The race condition can be triggere…
CVE-2024-9026 medium 5.5 FIX rhelalmalinux almalinux rocky 2y ago RHSA-2024:10952: php:7.4 security update (Moderate)
CVE-2024-8927 medium 5.5 FIX almalinux almalinux rhel rocky 2y ago RHSA-2024:10952: php:7.4 security update (Moderate)
CVE-2024-8925 medium 5.5 FIX rhelalmalinux almalinux rocky 2y ago RHSA-2024:10952: php:7.4 security update (Moderate)
CVE-2024-5458 medium 5.5 FIX rhelalmalinux almalinux rocky 2y ago RHSA-2024:10952: php:7.4 security update (Moderate)
CVE-2024-50251 medium 6.2 6.2 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-49949 medium 5.5 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-46695 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-45018 medium 5.5 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-44994 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-43854 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-3096 medium 5.5 FIX rhelalmalinux almalinux rocky 2y ago RHSA-2024:10952: php:7.4 security update (Moderate)
CVE-2024-2756 medium 5.5 FIX rhelalmalinux almalinux rocky 2y ago RHSA-2024:10952: php:7.4 security update (Moderate)
CVE-2024-26615 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-31227 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: redis:7 security update
CVE-2023-41053 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: redis:7 security update
CVE-2024-52337 medium 5.5 FIX rhel rocky sles 2y ago RHSA-2024:11161: tuned security update (Moderate)
CVE-2024-50226 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-46679 medium 4.7 4.7 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when getting link settings A sysfs reader can race with a device reset or removal, attempting to…
CVE-2024-42244 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-41009 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-27043 low 2.5 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed in several erro…
CVE-2024-53101 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2y ago In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized value issue in from_kuid and from_kgid ocfs2_setattr() uses attr->ia_mode, attr->ia_uid and attr->ia_gid in…
CVE-2024-45321 medium 5.5 rhel rockydebian debian 2y ago RHSA-2024:10219: perl-App-cpanminus:1.7044 security update (Moderate)
CVE-2024-5197 medium 5.5 FIX rhel rocky sles 2y ago RHSA-2024:5941: libvpx security update (Moderate)
CVE-2024-3447 medium 6.0 6.0 FIX slesdebian debian qemu 2y ago A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of `s->fifo_buffer` are set to 0x200, leading to an out-of-b…
CVE-2024-46858 medium 5.5 FIX rhel rocky sles 2y ago Moderate: kernel security update
CVE-2024-46824 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2024-42283 medium 5.5 5.5 FIX rhel slesdebian debian 2y ago Moderate: kernel security update
CVE-2018-12699 low 2.5 FIX debian debian sles rocky 2y ago RHSA-2024:9689: binutils security update (Low)
CVE-2024-50602 medium 5.5 FIX rhel rockydebian debian 2y ago RHSA-2024:9502: expat security update (Moderate)
CVE-2024-8235 medium 5.5 FIX rhel slesdebian debian 2y ago Moderate: libvirt security update
CVE-2024-7409 medium 5.5 FIX rhel rocky sles 2y ago A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server …
CVE-2024-6655 medium 5.5 FIX rhel rockydebian debian 2y ago RHSA-2024:6963: gtk3 security update (Moderate)
CVE-2024-6501 low 2.5 FIX rhel slesdebian debian 2y ago Low: NetworkManager security update
CVE-2024-6239 medium 5.5 FIX rhel sles rocky 2y ago A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter with pdfinfo utility. By using certain malformed input files, an attacker could cause the utility to c…
CVE-2024-6126 low 2.5 FIX rheldebian debian sles 2y ago A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pam_env's user_readenv option, which leads to a denial of service (DoS) attack.
CVE-2024-58239 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: tls: stop recv() if initial process_rx_list gave us non-DATA If we have a non-DATA record on the rx_list and another record of th…
CVE-2024-5742 low 2.5 FIX rhel rocky sles 2y ago RHSA-2024:6986: nano security update (Low)
CVE-2024-5535 critical 9.1 9.1 FIX rhel rocky sles 2y ago RHSA-2025:1673: mysql:8.0 security update (Important)
CVE-2024-4741 low 2.5 FIX rhel sles rocky 2y ago Low: openssl security update
CVE-2024-4603 low 2.5 FIX rhel sles rocky 2y ago Low: openssl security update
CVE-2024-45005 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: KVM: s390: fix validity interception issue when gisa is switched off We might run into a SIE validity if gisa has been disabled e…
CVE-2024-44984 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT Remove the dma_unmap_page_attrs() call in the driver's XDP_REDIRECT code path.…
CVE-2024-44965 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix pti_clone_pgtable() alignment assumption Guenter reported dodgy crashes on an i386-nosmp build using GCC-11 that had …
CVE-2024-44960 medium 5.5 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a nul…
CVE-2024-44947 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: fuse: Initialize beyond-EOF page contents before setting uptodate fuse_notify_store(), unlike fuse_do_readpage(), does not enable…
CVE-2024-43911 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL dereference at band check in starting tx ba session In MLD connection, link_data/link_conf are dynamical…
CVE-2024-43892 medium 5.5 FIX rhel rocky sles 2y ago In the Linux kernel, the following vulnerability has been resolved: memcg: protect concurrent access to mem_cgroup_idr Commit 73f576c04b94 ("mm: memcontrol: fix cgroup creation failure after many s…
CVE-2024-43888 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: mm: list_lru: fix UAF for memory cgroup The mem_cgroup_from_slab_obj() is supposed to be called under rcu lock or cgroup_mutex or…
CVE-2024-43879 medium 5.5 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() Currently NL80211_RATE_INFO_HE_RU_ALLOC_2x996 is no…
CVE-2024-43870 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: perf: Fix event leak upon exit When a task is scheduled out, pending sigtrap deliveries are deferred to the target task upon resu…
CVE-2024-43869 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: perf: Fix event leak upon exec and file release The perf pending task work is never waited upon the matching event release. In th…
CVE-2024-43866 medium 5.5 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always drain health in shutdown callback There is no point in recovery during device shutdown. if health work started n…