VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
4111 advisories across 32 monitored vendors.
Fix NULL dereference when removing firmware controls. Red Hat rates this low (CVSS 5.5). Weakness: CWE-476.
Fix driver removal with disabled KMS. Red Hat rates this low (CVSS 5.5). Weakness: CWE-824.
fix clock and pinctrl state inconsistency in runtime PM. Red Hat rates this low (CVSS 5.5). Weakness: CWE-367.
fix NULL pointer dereference in bond_do_ioctl(). Red Hat rates this low (CVSS 5.5). Weakness: CWE-476.
A flaw was found in oras-go. The auth.Client in oras-go does not properly validate the scheme or host of the realm URL provided in a registry's WWW-Authenticate: Bearer challenge. A remote attacker, operating a malicious registry or performing a man-in-the-middle attack, could exploit this to perform Server-Side Request Forgery (SSRF) against internal networks, potentially disclosing sensitive information. Additionally, the flaw could lead to a Transport Layer Security (TLS) downgrade, causing user credentials to be sent over plaintext. Red Hat severity: Low — CVSS 3.1 (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N). Weakness: CWE-918. Under investigation: Gatekeeper 3; Multicluster Global Hub; OpenShift Service Mesh 3; Red Hat OpenShift Container Platform 4; Red Hat OpenStack Platform 16.2; Red Hat OpenStack Platform 17.1; Red Hat OpenStack Platform 18.0.
Wasmtime is a runtime for WebAssembly. All versions prior to 24.0.10; versions 25.0.0 through those before 36.0.11; versions 37.0.0 through those before 44.0.3; and versions 45.0.0 and 45.0.1 contain a native implementation of WASIp1 which suffers from a leak in the fd_renumber function where the file descriptor being renumbered to is not properly closed. Wasmtime's implementation erroneously only updated the table of descriptors for WASIp1 and didn't update the underlying table of descriptors used by the host. This behavior means that while fd_renumber works correctly from a guest's perspective it ends up leaking resources in the host that aren't cleaned up until the corresponding Store is destroyed. In a loop, guests can use fd_renumber to cause hosts to exhaust both resources and file descriptors. This bug only affects the native implementation of WASIp1, meaning that only runtimes which load core wasm modules and expose fd_renumber are affected. Runtimes are additionally only affected if they expose the ability to acquire a file descriptor, such as opening a file. For runtimes that deny access to files they are unaffected. This issue has been fixed in versions 24.0.10, 36.0.11, 44.0.3, and 45.0.2. Its native implementation of WASIp1, a system interface for WebAssembly, contains a resource leak in the fd_renumber function.
Cross-site Scripting vulnerability. Red Hat rates this low (CVSS 3.7). Weakness: CWE-79.
set uwtable llvm module flag for CONFIG_UNWIND_TABLES. Red Hat rates this a security issue. Weakness: CWE-125.
Add NULL check for of_reserved_mem_lookup() in airoha_qdma_init_hfwd_queues(). Red Hat rates this a security issue. Weakness: CWE-476.
use byte load for KASAN VMAP stack shadow. Red Hat rates this a security issue. Weakness: CWE-468.
handle ctx allocation failure. Red Hat rates this a security issue. Weakness: CWE-476.
Don't WARN if memory is dirtied without a vCPU when the VM is dying. Red Hat rates this a security issue. Weakness: CWE-772.
Use USER_REGSET_NOTE_TYPE for REGSET_CFI. Red Hat rates this a security issue. Weakness: CWE-843.
Use krealloc_array() in dal_vector_reserve(). Red Hat rates this a security issue. Weakness: CWE-787.
Don't warn on NULL cgrp_moving_from in scx_cgroup_move_task(). Red Hat rates this a security issue. Weakness: CWE-476.
Register callbacks after creating the ngd. Red Hat rates this a security issue. Weakness: CWE-476.
Fix phys BO pread/pwrite with offset. Red Hat rates this a security issue. Weakness: CWE-823.
fix hang on unknown types. Red Hat rates this a security issue. Weakness: CWE-835.
Fix out-of-bounds read in dp_get_eq_aux_rd_interval(). Red Hat rates this a security issue. Weakness: CWE-125.
Heap corruption and Denial of Service via integer overflow in JSON parsing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-787.