CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux, linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: cachefiles: fixed a memory leak in cachefilesaddcache The following memory leak was reported after unbinding /dev/cachefiles: ================================================================== Unreferenced object...

5.5CVSS6.4AI score0.00279EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: cachefiles: The issue of incorrect dentry refcount in cachefilescull has been fixed. The patch mentioned below changed cachefilesburyobject to expect 2 references to the ‘rep’ dentry. Three of the caller functions were changed to...

Tenable Nessus•added 2026/05/07 12:0 a.m.•6 views

Exploits0References1

Linux Distros Unpatched Vulnerability : CVE-2026-43106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below change...

RedhatCVE•added 2026/05/06 3:24 p.m.•9 views

CVE-2026-43106

A flaw was found in the Linux kernel's cachefiles module, which manages cached files. This vulnerability stems from an error in how the system counts references to certain file system objects, specifically within the cachefilescull function. When a reference is lost, it can lead to system...

7.8CVSS5.8AI score0.00112EPSS

Exploits0References4

EUVD•added 2026/05/06 12:30 p.m.•10 views

EUVD-2026-27622

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below changed cachefilesburyobject to expect 2 references to the 'rep' dentry. Three of the callers were changed to use startremovingdentry which tak...

5.7AI score0.00112EPSS

Exploits0References3

NVD•added 2026/05/06 10:16 a.m.•3 views

CVE-2026-43106

7.8CVSS0.00112EPSS

Cvelist•added 2026/05/06 7:40 a.m.•24 views

CVE-2026-43106 cachefiles: fix incorrect dentry refcount in cachefiles_cull()

7.8CVSS0.00112EPSS

ATTACKERKB•added 2026/05/06 7:40 a.m.•3 views

CVE-2026-43106

5.7AI score0.00112EPSS

Exploits0References3Affected Software1

CVE•added 2026/05/06 7:40 a.m.•13 views

CVE-2026-43106

CVE-2026-43106 concerns the Linux kernel, specifically the cachefiles module. The issue is a faulty dentry reference accounting in cachefiles_cull() that could cause a lost reference, due to one code path not taking the extra reference required by cachefiles_bury_object(). The patch adjusts sever...

Exploits0References2Affected Software1

Debian CVE•added 2026/05/06 7:40 a.m.•3 views

CVE-2026-43106

Positive Technologies•added 2026/05/06 12:0 a.m.•5 views

Exploits0

PT-2026-37416

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefiles cull The patch mentioned below changed cachefiles bury object to expect 2 references to the 'rep' dentry. Three of the callers were changed to use start removing dentry whic...

5.7AI score0.00112EPSS

Exploits0References3

7.8CVSS6.1AI score0.00287EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: The exposure of the anonymous file descriptor is deferred until after copytouser succeeds. After installing the anonymous file descriptor, we can now see it in userland and close it. However, at this point we may not...

7.8CVSS5.9AI score0.00259EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: All requests are flushed after setting CACHEFILESDEAD. In ondemand mode, when the daemon is processing an open request, if the kernel marks the cache as CACHEFILESDEAD, the cachefilesdaemonwrite function will always...

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Set the object to close if ondemandid 0 in copen. If copen is called maliciously in user mode, it may delete the request corresponding to the random ID. Moreover, the request may not have been read yet...

7.8CVSS6AI score0.0022EPSS

5.5CVSS6.1AI score0.00211EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: cachefiles: A consistency check has been added for copen/cread operations. This prevents malicious processes from executing random copen/cread requests, which could potentially crash the system. The added checks are as follows...

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Unmarking an inode as in use in error paths If an error occurs, the inode will be marked as “in use”. If the flag indicating that an inode is in use leaks during the cachefilesopenfile function, Cachefiles will report...

5.5CVSS5.6AI score0.00204EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: cachefiles: Fixed a slab-out-of-bounds issue in cachefilessetvolumexattr. The actual length of volume coherence data should be used when setting the xattr value to avoid the following KASAN report. BUG: KASAN: Slab-out-of-boun...

7.8CVSS6.6AI score0.00235EPSS

7CVSS6.5AI score0.00275EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fixed the slab-use-after-free issue in cachefileswithdrawcookie We encountered the following issue during our fault injection stress test: ================================================================== BUG: KASAN:...