Lucene search
K

119 matches found

NVD
NVD
added 2026/06/25 7:16 a.m.10 views

CVE-2026-12246

NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the stack when the zone is written to disk, with a maximum of 111 attacker controlled bytes...

8.1CVSS0.00265EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.5 views

PT-2026-52211

Name of the Vulnerable Software and Affected Versions NSD version 4.14.0 Description NSD contains a memory corruption flaw occurring during the serialization of a zone to disk. The issue stems from improper input validation and bounds checking of the address-family length field within Address...

8.8CVSS6.2AI score0.00303EPSS
Exploits0References12
CVE
CVE
added 2026/06/24 4:29 p.m.10 views

CVE-2026-53033

CVE-2026-53033 affects the Linux kernel’s BPF sockmap path, causing a race in unix_stream_bpf_update_proto() that can yield a Use-After-Free when a BPF iterator updates a sockmap during a TCP state transition. The issue is resolved by taking the state lock for AF_UNIX iterations to keep the unix ...

7.8CVSS5.7AI score0.00131EPSS
Exploits0References9
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: In isotp.bind, there is a need to check the CAN address family. A missing check was added to prevent binds that use a non-AFCAN address family. Syzbot created some code that correctly determined the appropriate size of the sockad...

5.8AI score0.00175EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: nexthop: fix null pointer dereference when IPv6 is not enabled When we attempt to add an IPv6 nexthop parameter, and IPv6 is not enabled !CONFIGIPV6, we encounter a NULL pointer dereference in the error path of nhcreateipv6...

5.5CVSS5.9AI score0.00207EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/03 7:16 p.m.8 views

CVE-2026-46249

A flaw was found in the Linux kernel's octeontx2-af PF driver. This vulnerability occurs during a kexec reboot when the hardware is not power-cycled, causing the AF state from the old kernel to persist. If the RVUM block revision is not cleared during AF shutdown, the PF driver may incorrectly...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/27 8:11 p.m.14 views

CVE-2026-47269

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pamusb's denyremote feature checks utmpx utaddrv6 to detect whether an authentication request originates from a remote session. The outer guard was if utent-utaddrv60 != 0, which only tests the first...

7.4CVSS5.9AI score0.00307EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/05/27 7:51 p.m.18 views

Deno's TLS retry copies stale upgrade hook, risking plaintext traffic

Summary A flaw in Deno's Node.js tls compatibility layer could cause a TLS client to transmit application data in plaintext after a connection retry. When autoSelectFamily was enabled and the first address-family attempt failed, the socket reinitialization path reused a stale TLS upgrade hook tha...

9.1CVSS5.8AI score0.00142EPSS
Exploits1References2Affected Software1
GithubExploit
GithubExploit
added 2026/05/06 8:14 a.m.97 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 Copy Fail Vulnerability Detection Script !L...

7.8CVSS7.4AI score0.96267EPSS
Exploits228
OSV
OSV
added 2026/05/05 2:4 a.m.7 views

CLSA-2026-1777946639 quagga: Fix of CVE-2018-5381

CVE-2018-5381: bgpd capability parser can enter an infinite loop on invalid OPEN messages whose Multi-Protocol capability has an unrecognized AFI/SAFI, causing a denial of service...

7.5CVSS6.9AI score0.30665EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/04/30 3:2 p.m.110 views

Exploit for CVE-2026-31431

copy-fail-blocker BPF-LSM mitigation for CVE-2026-31431htt...

7.8CVSS5.8AI score0.96267EPSS
Exploits228
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:9 a.m.8 views

af_unix: read UNIX_DIAG_VFS data under unix_state_lock

...

7.8CVSS5.8AI score0.00121EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.1 views

Fedora 43 : rpki-client (2026-27892c9184)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-27892c9184 advisory. rpki-client 9.8 - Various refactoring for improved compatibility with various libcrypto implementations and in CA/BGPsec certificate handling. - Fixed an...

5.6AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/22 12:15 a.m.7 views

kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg

A flaw was found in the Linux kernel. A local unprivileged process can exploit an unsafe requeue path in the rxrpcrecvmsg function by using AFRXRPC sockets with MSGDONTWAIT and MSGPEEK flags. This improper handling of the receive message queue can lead to memory corruption, such as Use-After-Free...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of verification of the address family in the pfkeysendmigrate function. This vulnerabili...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References1
OSV
OSV
added 2026/03/25 11:16 a.m.4 views

UBUNTU-CVE-2026-23302

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them concurrently. Add corresponding READONCE/WRITEONCE annotations for UDP, TCP an...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 10:26 a.m.5 views

CVE-2026-23302 net: annotate data-races around sk->sk_{data_ready,write_space}

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them concurrently. Add corresponding READONCE/WRITEONCE annotations for UDP, TCP an...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23302

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: annotate data-races around sk-skdataready,writespace skmsg and probably other layers are changing these pointers while other cpus might read them...

4.7CVSS5.8AI score0.00089EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.3 views

Azure Linux 3.0 Security Update: glibc (CVE-2023-4527)

The version of glibc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4527 advisory. - A flaw was found in glibc. When the getaddrinfo function is called with the AFUNSPEC address family and the...

6.5CVSS5.5AI score0.01508EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-27667

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a data-race condition around sk-sk data ready,write space. The issue occurs because skmsg and potentially other layers modify these pointers while other CPUs ma...

4.7CVSS5.9AI score0.00089EPSS
Exploits0References76
Rows per page
Query Builder