|
2301
|
6.5 |
MEDIUM
Adjacent
|
powerdns
|
dnsdist
|
A client might theoretically be able to cause a mismatch between queries sent to a backend and the received responses by sending a flood of perfectly timed queries that are routed to a TCP-only or DN…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-33596
|
2026-04-25 03:50 |
2026-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2302
|
7.5 |
HIGH
Network
|
powerdns
|
dnsdist
|
A client can trigger excessive memory allocation by generating a lot of errors responses over a single DoQ and DoH3 connection, as some resources were not properly released until the end of the conne…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-33595
|
2026-04-25 03:49 |
2026-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2303
|
7.5 |
HIGH
Network
|
powerdns
|
dnsdist
|
A client can trigger a divide by zero error leading to crash by sending a crafted DNSCrypt query.
|
CWE-369
Divide By Zero
|
CVE-2026-33593
|
2026-04-25 03:49 |
2026-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2304
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211()
Check frame length before accessing the mgmt fields …
|
CWE-125
Out-of-bounds Read
|
CVE-2026-23363
|
2026-04-25 03:48 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2305
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
wifi: mt76: mt7925: Corrige posible acceso fuera de límites en mt7925_mac_write_txwi_80211()
Comprueba la longitud del frame ant…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-23363
|
2026-04-25 03:48 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2306
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: usb: kalmia: validate USB endpoints
The kalmia driver should validate that the device it is probing has the
proper number an…
|
NVD-CWE-noinfo
|
CVE-2026-23365
|
2026-04-25 03:47 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2307
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
net: usb: kalmia: validar puntos finales USB
El controlador kalmia debería validar que el dispositivo que está sondeando tiene e…
|
NVD-CWE-noinfo
|
CVE-2026-23365
|
2026-04-25 03:47 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2308
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ice: Fix memory leak in ice_set_ringparam()
In ice_set_ringparam, tx_rings and xdp_rings are allocated before
rx_rings. If the al…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-23389
|
2026-04-25 03:45 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2309
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:
ice: Corrección de fuga de memoria en ice_set_ringparam()
En ice_set_ringparam, tx_rings y xdp_rings se asignan antes de rx_ring…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-23389
|
2026-04-25 03:45 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2310
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
Squashfs: check metadata block offset is within range
Syzkaller reports a "general protection fault in squashfs_copy_data"
This …
|
CWE-125
Out-of-bounds Read
|
CVE-2026-23388
|
2026-04-25 03:45 |
2026-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
