Lucene search
K

549 matches found

CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of socket-level IV buffers in asynchronous AEAD requests within algifaead. This can lead ...

5.8AI score0.00123EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43895

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the algif aead component where AF ALG AEAD AIO requests utilize a socket-wide IV Initialization Vector buffer during processing. For asynchronous requests, subsequent...

5.5CVSS5.9AI score0.00123EPSS
Exploits0
OSV
OSV
added 2026/05/27 12:0 a.m.7 views

UBUNTU-CVE-2026-46028

In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - snapshot IV for async AEAD requests AFALG AEAD AIO requests currently use the socket-wide IV buffer during request processing. For async requests, later socket activity can update that shared state before the...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References21
Snyk
Snyk
added 2026/05/26 11:8 p.m.12 views

Insecure Randomness

Overview Affected versions of this package are vulnerable to Insecure Randomness due to the HKDFexpand and EVPHPKECTXexport functions returning a zero-filled byte array on failure, which is then used as key material for AEAD encryption. An attacker can predict and exploit the deterministic,...

6.9CVSS5.5AI score0.00193EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/26 11:8 p.m.9 views

Insecure Randomness

Overview Affected versions of this package are vulnerable to Insecure Randomness due to the HKDFexpand and EVPHPKECTXexport functions returning a zero-filled byte array on failure, which is then used as key material for AEAD encryption. An attacker can predict and exploit the deterministic,...

6.9CVSS5.5AI score0.00193EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/26 11:8 p.m.8 views

Insecure Randomness

Overview Affected versions of this package are vulnerable to Insecure Randomness due to the HKDFexpand and EVPHPKECTXexport functions returning a zero-filled byte array on failure, which is then used as key material for AEAD encryption. An attacker can predict and exploit the deterministic,...

6.9CVSS5.5AI score0.00193EPSS
Exploits0References2
OSV
OSV
added 2026/05/26 7:55 p.m.12 views

USN-8280-3 linux-iot vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits230References7
OSV
OSV
added 2026/05/26 7:8 p.m.9 views

USN-8305-2 linux-lowlatency-hwe-5.15 vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits230References8
OSV
OSV
added 2026/05/26 7:0 p.m.15 views

USN-8278-2 linux-azure vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits230References197
Ubuntu
Ubuntu
added 2026/05/26 7:0 p.m.21 views

USN-8278-2: Linux kernel (Azure) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.8AI score0.96267EPSS
Exploits230
OSV
OSV
added 2026/05/26 6:56 p.m.13 views

USN-8310-1 linux-azure, linux-azure-6.17 vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits230References23
Exploit DB
Exploit DB
added 2026/05/26 12:0 a.m.174 views

Linux Kernel 6.8 - Local Privilege Escalation

Exploit Title: Linux Kernel 5.4 - 6.8 - Local Privilege Escalation Google Dork: N/A Date: 2026-04-30 Exploit Author: Long Fong Chan https://github.com/iss4cf0ng Vendor Homepage: https://www.kernel.org/ Software Link: https://git.kernel.org/ Version: Linux Kernel 5.4 - 6.8 unpatched Tested on:...

7.8CVSS7.3AI score0.96267EPSS
Exploits230
OSV
OSV
added 2026/05/25 10:51 p.m.11 views

USN-8279-3 linux-nvidia-tegra-igx vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits230References12
Ubuntu
Ubuntu
added 2026/05/25 10:51 p.m.21 views

USN-8279-3: Linux kernel (NVIDIA Tegra IGX) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS7AI score0.96267EPSS
Exploits230
OSV
OSV
added 2026/05/25 5:48 p.m.18 views

USN-8289-2 linux-nvidia-6.8 vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits230References196
Ubuntu
Ubuntu
added 2026/05/25 5:48 p.m.20 views

USN-8289-2: Linux kernel (NVIDIA) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.8AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/22 11:15 p.m.83 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 / Copy Fail Checker 🔒 Linux kernel vulnerabili...

7.8CVSS7.3AI score0.96267EPSS
Exploits230
Ubuntu
Ubuntu
added 2026/05/22 7:27 p.m.27 views

USN-8280-2: Linux kernel (Azure)vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS7.3AI score0.96267EPSS
Exploits230
Ubuntu
Ubuntu
added 2026/05/22 7:17 p.m.22 views

USN-8281-2: Linux kernel (Azure) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

7.8CVSS7.3AI score0.96267EPSS
Exploits230
Ubuntu
Ubuntu
added 2026/05/22 2:5 p.m.26 views

USN-8277-2: Linux kernel (Oracle) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.1AI score0.96267EPSS
Exploits230
Rows per page
Query Builder