Lucene search
K

66 matches found

NVD
NVD
added 2026/06/29 10:16 p.m.8 views

CVE-2026-10647

The USB CDC-NCM device class subsys/usb/devicenext/class/usbdcdcncm.c ignores the return value of usbdepenqueue in its ethernet transmit callback cdcncmsend. When the enqueue fails, the function still calls ksemtake&data-syncsem, KFOREVER, blocking on a completion semaphore that is only ever...

5.3CVSS0.00134EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.10 views

PT-2026-53748

Name of the Vulnerable Software and Affected Versions Zephyr versions prior to 4.4.0 Description The USB CDC-NCM device class contains a flaw where the cdc ncm send function ignores the return value of usbd ep enqueue. If the enqueue operation fails—which occurs when the USB bus is suspended,...

5.3CVSS5.9AI score0.00134EPSS
Exploits1References10
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerability has been resolved: uiohvgeneric: A memory leak has been fixed in error handling paths. If the vmbusestablishgpadl function fails, the recv|sendgpadl functions will not be updated, and the hvuiocleanup function in the error handling path will not be...

5.5CVSS6AI score0.00235EPSS
Exploits0References2
CVE
CVE
added 2026/06/09 11:52 a.m.60 views

CVE-2026-46317

CVE-2026-46317 concerns the Linux kernel KVM on arm64. A traversal of the array kvm->arch.nested_mmus[] occurs under kvm->mmu_lock, while kvm_vcpu_init_nested() reallocates the array and frees the old buffer with only kvm->arch.config_lock held. The fix moves the allocation outside the m...

8.8CVSS5.6AI score0.0013EPSS
Exploits0References3Affected Software1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7615: Fixed a memory leak in mt7615mcuwtblstaadd. In mt7615mcuwtblstaadd, an skb object named sskb is allocated. If the subsequent call to mt76connacmcuallocwtblreq fails, the function returns an error without freeing the...

6.1AI score0.00161EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: wifi: iwlwifi: mvm: Fixed handling of response in iwlmvmsendrecoverycmd 1. The size of the response packet was not validated. 2. The response buffer was not freed. These issues can be resolved by switching to...

7.8CVSS6.6AI score0.00282EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/11 2:13 p.m.8 views

SUSE CVE-2026-43462

In the Linux kernel, the following vulnerability has been resolved: net: spacemit: Fix error handling in emactxmemmap The DMA mappings were leaked on mapping error. Free them with the existing emacfreetxbuf function...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References3
NVD
NVD
added 2026/05/06 12:16 p.m.7 views

CVE-2026-43225

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211informbssframe may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix th...

5.5CVSS0.00128EPSS
Exploits0References7
OSV
OSV
added 2026/05/06 11:47 a.m.15 views

CLSA-2026-1778009078 vim: Fix of 5 CVEs

CVE-2022-2125: fix out-of-bounds read in getlispindent; break out of the inner loop on NUL byte indent.c, upstream patch 8.2.5122 - CVE-2021-3974: fix use-after-free in nfaregmatch when a substitute callback frees the regline during a mark comparison; save col and re-fetch rex.line via reggetline...

7.8CVSS7.2AI score0.01564EPSS
Exploits5References1
CVE
CVE
added 2026/05/06 11:28 a.m.17 views

CVE-2026-43225

CVE-2026-43225 involves a memory leak in the Linux kernel RTL8723BS staging path. Specifically, cfg80211_inform_bss_frame() may return NULL on a failure path, and the allocated buffer buf was not freed before an early return. This could leak memory. The issue is resolved by ensuring buf is freed ...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:14 p.m.6 views

CVE-2026-31742

In the Linux kernel, the following vulnerability has been resolved: vt: discard stale unicode buffer on alt screen exit after resize When enteraltscreen saves vcunilines into vcsavedunilines and sets vcunilines to NULL, a subsequent console resize via vcdoresize skips reallocating the unicode...

6AI score0.00127EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/05/01 2:14 p.m.11 views

CVE-2026-31742

The CVE-2026-31742 issue affects the Linux kernel’s virtual terminal (vt) handling of alternate screen mode. When entering alt screen, vc_uni_lines is saved to vc_saved_uni_lines and vc_uni_lines is set to NULL. A subsequent console resize can skip reallocating the unicode buffer because vc_uni_l...

7.8CVSS6AI score0.00127EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.38 views

CVE-2026-31474 can: isotp: fix tx.buf use-after-free in isotp_sendmsg()

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in isotpsendmsg isotpsendmsg uses only cmpxchg on so-tx.state to serialize access to so-tx.buf. isotprelease waits for ISOTPIDLE via waiteventinterruptible and then calls kfreeso-tx.buf. If a...

7.8CVSS0.00104EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.8 views

SUSE CVE-2026-23444

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211txprepareskb failure ieee80211txprepareskb has three error paths, but only two of them free the skb. The first error path ieee80211txprepare returning TXDROP does not free it, while...

5.5CVSS5.7AI score0.00129EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.5 views

SUSE CVE-2026-23453

In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: Fix memory leak in XDPDROP for non-zero-copy mode Page recycling was removed from the XDPDROP path in emacrunxdp to avoid conflicts with AFXDP zero-copy mode, which uses xskbufffree instead. However, this...

7.5CVSS5.7AI score0.00343EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.8 views

MiracleLinux 9 : kernel-5.14.0-611.9.1.el9_7 (AXSA:2025-11506:95)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11506:95 advisory. kernel: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails CVE-2022-50087 kernel: sunrpc: fix client side handling of tls alerts...

7.8CVSS7.5AI score0.00528EPSS
Exploits0References23
OSV
OSV
added 2026/01/12 10:34 a.m.3 views

SUSE-SU-2026:0090-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.97 fixes various security issues The following security issues were fixed: - CVE-2023-53574: wifi: rtw88: delete timer and free skb queue when unloading bsc1251984. - CVE-2025-38257: s390/pkey: prevent overflow in size calculation...

7.8CVSS5.8AI score0.00147EPSS
Exploits0References5
EUVD
EUVD
added 2025/12/30 3:30 p.m.4 views

EUVD-2022-55844

In the Linux kernel, the following vulnerability has been resolved: nfc: virtualncidev: Fix memory leak in virtualncisend skb should be free in virtualncisend, otherwise kmemleak will report memleak. Steps for reproduction simulated in qemu: cd tools/testing/selftests/nci make ./ncidev BUG: memor...

6.2AI score0.00166EPSS
Exploits0References4
NVD
NVD
added 2025/12/24 1:16 p.m.6 views

CVE-2022-50765

In the Linux kernel, the following vulnerability has been resolved: RISC-V: kexec: Fix memory leak of elf header buffer This is reported by kmemleak detector: unreferenced object 0xff2000000403d000 size 4096: comm "kexec", pid 146, jiffies 4294900633 age 64.792s hex dump first 32 bytes: 7f 45 4c ...

0.00198EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.1 views

CVE-2022-50779

In the Linux kernel, the following vulnerability has been resolved: orangefs: Fix kmemleak in orangefspreparedebugfshelpstring When insert and remove the orangefs module, then debughelpstring will be leaked: unreferenced object 0xffff8881652ba000 size 4096: comm "insmod", pid 1701, jiffies...

6AI score0.00244EPSS
Exploits0References10
Rows per page
Query Builder