CVE-2022-28388
- EPSS 0.4%
- Veröffentlicht 03.04.2022 21:15:08
- Zuletzt bearbeitet 05.05.2025 17:18:07
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.
CVE-2022-28389
- EPSS 0.32%
- Veröffentlicht 03.04.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:57:16
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.
CVE-2022-28390
- EPSS 0.35%
- Veröffentlicht 03.04.2022 21:15:08
- Zuletzt bearbeitet 25.06.2025 21:00:27
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.
CVE-2022-28356
- EPSS 0.58%
- Veröffentlicht 02.04.2022 21:15:09
- Zuletzt bearbeitet 05.05.2025 17:18:05
In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c.
CVE-2022-24790
- EPSS 2.14%
- Veröffentlicht 30.03.2022 22:15:08
- Zuletzt bearbeitet 21.11.2024 06:51:06
Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may d...
CVE-2022-24763
- EPSS 2.04%
- Veröffentlicht 30.03.2022 21:15:07
- Zuletzt bearbeitet 06.05.2026 13:28:44
PJSIP is a free and open source multimedia communication library written in the C language. Versions 2.12 and prior contain a denial-of-service vulnerability that affects PJSIP users that consume PJSIP's XML parsing in their apps. Users are advised t...
CVE-2022-1154
- EPSS 1.46%
- Veröffentlicht 30.03.2022 12:15:07
- Zuletzt bearbeitet 21.11.2024 06:40:08
Use after free in utf_ptr2char in GitHub repository vim/vim prior to 8.2.4646.
CVE-2022-28202
- EPSS 1.16%
- Veröffentlicht 30.03.2022 06:15:06
- Zuletzt bearbeitet 21.11.2024 06:56:56
An XSS issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. The widthheight, widthheightpage, and nbytes properties of messages are not escaped when used in galleries or Special:RevisionDelete.
CVE-2022-1122
- EPSS 1.08%
- Veröffentlicht 29.03.2022 18:15:07
- Zuletzt bearbeitet 03.11.2025 20:15:52
A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it calls free() on an uninitia...
CVE-2022-26291
- EPSS 0.85%
- Veröffentlicht 28.03.2022 22:15:09
- Zuletzt bearbeitet 21.11.2024 06:53:42
lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaq_decompress_buf() and clear_rulist(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted Irz file.