CVE-2025-0509
- EPSS 0.02%
- Veröffentlicht 04.02.2025 20:15:49
- Zuletzt bearbeitet 05.08.2025 14:35:15
A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks.
CVE-2024-53580
- EPSS 0.39%
- Veröffentlicht 18.12.2024 23:15:17
- Zuletzt bearbeitet 29.09.2025 17:55:00
iperf v3.17.1 was discovered to contain a segmentation violation via the iperf_exchange_parameters() function.
- EPSS 0.03%
- Veröffentlicht 14.11.2024 12:15:17
- Zuletzt bearbeitet 05.08.2025 18:33:57
A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of `s->fifo_buffer` are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw ...
CVE-2024-36958
- EPSS 0.05%
- Veröffentlicht 30.05.2024 16:15:18
- Zuletzt bearbeitet 01.10.2025 14:07:31
In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix nfsd4_encode_fattr4() crasher Ensure that args.acl is initialized early. It is used in an unconditional call to kfree() on the way out of nfsd4_encode_fattr4().
CVE-2021-26932
- EPSS 0.19%
- Veröffentlicht 17.02.2021 02:15:13
- Zuletzt bearbeitet 21.11.2024 05:57:04
An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to ...