CVE-2025-0167

all versions

When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the firs

3.4LOW

CVE-2024-11053

all versions

When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the fir

3.4LOW

CVE-2024-33601

all versions

nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache Daemon's (nscd) netgroup cache uses

7.3HIGH

CVE-2024-33600

all versions

nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's (nscd) cache fails to add a not-found netgr

5.9MEDIUM

CVE-2024-26735

all versions

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix possible use-after-free and null-ptr-deref The

5.5MEDIUM

CVE-2024-26733

all versions

In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported a

5.5MEDIUM

CVE-2024-2398

all versions

When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses

8.6HIGH

CVE-2024-2379

all versions

libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to u

6.3MEDIUM

CVE-2024-26633

all versions

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tl

5.5MEDIUM

CVE-2023-52585

all versions

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query

5.5MEDIUM

CVE-2024-26462

all versions

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.

5.5MEDIUM

CVE-2024-26461

all versions

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

7.5HIGH

CVE-2024-26458

all versions

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

5.3MEDIUM

CVE-2022-36879

all versions

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount t

5.5MEDIUM

CVE-2022-2068

all versions

In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script d

7.3HIGH

CVE-2022-0995

all versions

An out-of-bounds (OOB) memory write flaw was found in the Linux kernel’s watch_queue event notification subsystem. This flaw can

7.8HIGH

CVE-2021-3609

all versions

.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsy

7.0HIGH

CVE-2021-3772

all versions

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks

6.5MEDIUM

CVE-2020-36516

all versions

An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment

5.9MEDIUM

CVE-2021-45485

all versions

In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain us

7.5HIGH

CVE-2021-40490

all versions

A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel throug

7.0HIGH

CVE-2021-22555

all versions

A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker t

8.3HIGH

CVE-2021-36086

all versions

The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set and cil_re

3.3LOW

CVE-2019-25045

all versions

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrm_state_fini

7.8HIGH

CVE-2020-35508

all versions

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent pro

4.5MEDIUM

CVE-2020-15436

all versions

Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a den

6.7MEDIUM

CVE-2020-13143

all versions

gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without consi

6.5MEDIUM

CVE-2020-12888

all versions

The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.

5.3MEDIUM

CVE-2020-12771

all versions

An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coa

5.5MEDIUM

CVE-2020-12770

all versions

An issue was discovered in the Linux kernel through 5.6.11. sg_write lacks an sg_remove_request call in a certain failure case, ak

6.7MEDIUM

CVE-2020-12769

all versions

An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent c

5.5MEDIUM

CVE-2020-10690

all versions

There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while re

6.5MEDIUM

CVE-2020-12653

all versions

An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifie

7.8HIGH

CVE-2020-8832

all versions

The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on c

5.5MEDIUM

CVE-2020-8835

all versions

In the Linux kernel 5.5.0 and newer, the bpf verifier (kernel/bpf/verifier.c) did not properly restrict the register bounds for 32

7.8HIGH