Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2026/04/08 5:15 a.m.21 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/08 1:16 a.m.12 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/08 12:16 a.m.7 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-20076

Malicious code in bioql PyPI...

7.2AI score0.0017EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2025/07/07 11:24 p.m.9 views

SUSE CVE-2025-38180

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure safety against devlec changes. It appears it had devput calls without prior devhold, leading to imbalance and UAF...

7.8CVSS5.6AI score0.0017EPSS
Exploits0References34
OSV
OSV
added 2025/07/04 1:37 p.m.5 views

CVE-2025-38180 net: atm: fix /proc/net/atm/lec handling

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure safety against devlec changes. It appears it had devput calls without prior devhold, leading to imbalance and UAF...

7.8CVSS6.4AI score0.0017EPSS
Exploits0References13
CVE
CVE
added 2025/07/04 1:37 p.m.100 views

CVE-2025-38180

Summary: CVE-2025-38180 affects the Linux kernel’s ATM /proc net handling (lec). The root cause is unsafe dev_lec[] changes paired with missing dev_hold() before dev_put(), causing an imbalance and use-after-free (UAF). The issue is tied to the net/atm/lec handling code and has been addressed by ...

7.8CVSS6.6AI score0.0017EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder