CVE-2026-12969
- EPSS 0.24%
- Veröffentlicht 23.06.2026 13:28:56
- Zuletzt bearbeitet 08.07.2026 15:10:14
An out-of-bounds read vulnerability exists in dnsmasq's find_soa() function in src/rfc1035.c. When parsing NS section records, extract_name() is called with extrabytes=0, failing to validate that 10 additional bytes exist for fixed-length DNS record ...
CVE-2026-55654
- EPSS 0.37%
- Veröffentlicht 23.06.2026 03:37:00
- Zuletzt bearbeitet 08.07.2026 14:17:14
A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the cleanup of GSSAPI (Generic Security Service Application Programming Interface) indicators when a trailing NULL termination is missing in the auth-indicators...
CVE-2026-55655
- EPSS 0.09%
- Veröffentlicht 23.06.2026 03:36:25
- Zuletzt bearbeitet 08.07.2026 14:17:14
A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding connections. This is possible by pre-binding the preferred abstract X socket name when X11 forwarding is enabled and a local UNIX-...
CVE-2026-55653
- EPSS 0.24%
- Veröffentlicht 23.06.2026 03:36:22
- Zuletzt bearbeitet 08.07.2026 14:17:14
A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group Exchange (DH-GEX) client path. This occurs during FIPS (Federal Information Processing Standards) mode known-group validation when...
CVE-2026-12549
- EPSS 0.33%
- Veröffentlicht 22.06.2026 13:55:06
- Zuletzt bearbeitet 08.07.2026 15:10:43
The fix for CVE-2026-2443 was regressed by a subsequent rework commit that replaced specific overflow checks with a general signed comparison. When a client sends a Range request with a suffix length exceeding the content size, the resulting negative...
CVE-2026-12725
- EPSS 0.4%
- Veröffentlicht 22.06.2026 13:55:05
- Zuletzt bearbeitet 08.07.2026 15:10:32
A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies containing unsupported algorithm or digest types can cause dnsmasq to write past the end of an internal logg...
- EPSS 0.21%
- Veröffentlicht 18.06.2026 14:44:32
- Zuletzt bearbeitet 30.06.2026 11:16:28
A flaw was found in 389 Directory Server. During schema reload, the attr_syntax_swap_ht() function unconditionally frees attribute syntax information nodes, bypassing the refcount-based deferred deletion used elsewhere in the attribute syntax subsyst...
CVE-2026-12528
- EPSS 0.23%
- Veröffentlicht 17.06.2026 14:27:27
- Zuletzt bearbeitet 28.06.2026 00:22:17
A flaw was found in 389 Directory Server in the __aclp__normalize_acltxt() function of aclparse.c. A malformed ACI (Access Control Instruction) string can trigger heap-buffer-overflow writes and reads during ACI parsing. The function fails to validat...
CVE-2026-1767
- EPSS 0.25%
- Veröffentlicht 16.06.2026 00:34:48
- Zuletzt bearbeitet 16.06.2026 20:29:22
A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing...
CVE-2026-1766
- EPSS 0.16%
- Veröffentlicht 16.06.2026 00:34:39
- Zuletzt bearbeitet 16.06.2026 20:27:50
A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing mal...