CVE-2025-36407
- EPSS 0.28%
- Veröffentlicht 30.01.2026 21:27:41
- Zuletzt bearbeitet 09.02.2026 15:16:10
IBM® Db2® is vulnerable to a denial of service with a specially crafted query that uses ALTER TABLE operations.
CVE-2025-36423
- EPSS 0.24%
- Veröffentlicht 30.01.2026 21:27:38
- Zuletzt bearbeitet 05.02.2026 19:43:00
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic.
CVE-2025-36424
- EPSS 0.33%
- Veröffentlicht 30.01.2026 21:27:34
- Zuletzt bearbeitet 11.02.2026 20:57:25
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic.
CVE-2025-36427
- EPSS 0.33%
- Veröffentlicht 30.01.2026 21:27:31
- Zuletzt bearbeitet 11.02.2026 20:57:17
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow a user to cause a denial of service due to insufficient validation of special elements in data query logic.
CVE-2025-36428
- EPSS 0.3%
- Veröffentlicht 30.01.2026 21:27:26
- Zuletzt bearbeitet 05.02.2026 19:39:41
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic when the RPSCA...
CVE-2025-36442
- EPSS 0.39%
- Veröffentlicht 30.01.2026 21:18:24
- Zuletzt bearbeitet 05.02.2026 19:39:37
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query with XML columns.
CVE-2026-23011
- EPSS 0.19%
- Veröffentlicht 25.01.2026 14:36:24
- Zuletzt bearbeitet 25.03.2026 19:51:11
In the Linux kernel, the following vulnerability has been resolved: ipv4: ip_gre: make ipgre_header() robust Analog to commit db5b4e39c4e6 ("ip6_gre: make ip6gre_header() robust") Over the years, syzbot found many ways to crash the kernel in ipgre...
CVE-2026-23004
- EPSS 0.12%
- Veröffentlicht 25.01.2026 14:36:18
- Zuletzt bearbeitet 27.04.2026 14:16:29
In the Linux kernel, the following vulnerability has been resolved: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() syzbot was able to crash the kernel in rt6_uncached_list_flush_dev() in an interesting way [1] Crash happens i...
CVE-2026-22999
- EPSS 0.2%
- Veröffentlicht 25.01.2026 14:36:13
- Zuletzt bearbeitet 27.04.2026 14:16:28
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class() Fixes qfq_change_class() error case. cl->qdisc and cl should only be freed if a new class and qdisc were alloc...
CVE-2026-22991
- EPSS 0.4%
- Veröffentlicht 23.01.2026 15:24:12
- Zuletzt bearbeitet 27.04.2026 14:16:28
In the Linux kernel, the following vulnerability has been resolved: libceph: make free_choose_arg_map() resilient to partial allocation free_choose_arg_map() may dereference a NULL pointer if its caller fails after a partial allocation. For exampl...