Lucene search
K

1212 matches found

euvd
euvd
added 2026/04/22 2:23 a.m.7 views

EUVD-2026-24589

The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A malicious process can abuse the...

8.4CVSS5.7AI score0.00165EPSS
Exploits0References1
cvelist
cvelist
added 2026/04/22 2:23 a.m.35 views

CVE-2026-5398 Kernel use-after-free bug in the TIOCNOTTY handler

The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A malicious process can abuse the...

0.00165EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/04/22 2:23 a.m.2 views

CVE-2026-5398 Kernel use-after-free bug in the TIOCNOTTY handler

The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A malicious process can abuse the...

5.7AI score0.00165EPSS
Exploits0References1
cve
cve
added 2026/04/22 2:23 a.m.45 views

CVE-2026-5398

CVE-2026-5398 : A kernel use-after-free in the TIOCNOTTY handler allows a malicious process to abuse a dangling back-pointer from the controlling terminal to the caller’s session to gain root privileges. Affects FreeBSD kernel (tty subsystem) across multiple branches; the issue arises because the...

8.4CVSS5.7AI score0.00165EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2026/04/22 12:0 a.m.9 views

FreeBSD 资源管理错误漏洞

FreeBSD is a Unix-like operating system developed by the FreeBSD Foundation. There is a resource management vulnerability in FreeBSD, which stems from the TIOCNOTTY implementation failing to clear the pointer pointing to the control terminal structure of the calling process. This could allow...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/04/22 12:0 a.m.6 views

PT-2026-34416

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A dangling pointer issue exists in the Bluetooth MGMT component. The problem occurs during the execution of mgmt add adv patterns monitor complete when the condition checking fails to...

7.8CVSS7AI score0.00378EPSS
Exploits0References118
ptsecurity
ptsecurity
added 2026/04/22 12:0 a.m.6 views

PT-2026-34241

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The implementation of TIOCNOTTY fails to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References6
nessus
nessus
added 2026/04/22 12:0 a.m.3 views

FreeBSD : FreeBSD -- Kernel use-after-free bug in the TIOCNOTTY handler (971b5528-3def-11f1-bb07-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 971b5528-3def-11f1-bb07-bc241121aa0a advisory. The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References2
packetstormnews
packetstormnews
added 2026/04/21 12:0 a.m.8 views

FreeBSD Security Advisory - FreeBSD-SA-26:10.tty

FreeBSD Security Advisory - The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A...

5.7AI score0.00165EPSS
Exploits0
nessus
nessus
added 2026/04/21 12:0 a.m.11 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012951)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012951 advisory. In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into accoun...

4.7CVSS6.5AI score0.00193EPSS
Exploits0References4
nvd
nvd
added 2026/04/20 6:16 p.m.10 views

CVE-2026-26399

A stack-use-after-return issue exists in the ArduinoCoreSTM32 library prior to version 1.7.0. The pwmstart function allocates a TIMHandleTypeDef structure on the stack and passes its address to HAL initialization routines, where it is stored in a global timer handle registry. After the function...

5.3CVSS0.00179EPSS
Exploits0References2
nessus
nessus
added 2026/04/17 12:0 a.m.13 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007286)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007286 advisory. In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into accoun...

4.7CVSS6.2AI score0.00193EPSS
Exploits0References4
nessus
nessus
added 2026/04/17 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6068

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and...

9.6CVSS7.1AI score0.00414EPSS
Exploits1References4
osv
osv
added 2026/04/13 5:15 p.m.4 views

PSF-0000-CVE-2026-6100

Use-after-free UAF was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile when a memory allocation fails with a MemoryError and the decompression instance is re-used. This scenario can be triggered if the process is under memory pressure. The fix cleans up the dangling...

9.1CVSS5.8AI score0.00579EPSS
Exploits0References6
euvd
euvd
added 2026/04/10 3:31 p.m.3 views

EUVD-2026-21380

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or unexpected behavior...

6.5CVSS6AI score0.00414EPSS
Exploits1References2
snyk
snyk
added 2026/04/10 3:12 p.m.4 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the response file processing due to a dangling pointer to freed memory being stored in the global dependfile and later dereferenced after the response-file buffer is freed. An attacker can cause data corruption or...

9.6CVSS6AI score0.00414EPSS
Exploits1References2
osv
osv
added 2026/04/10 2:16 p.m.2 views

DEBIAN-CVE-2026-6068

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or remote code executi...

9.6CVSS6.3AI score0.00414EPSS
Exploits1References1
osv
osv
added 2026/04/10 2:16 p.m.6 views

UBUNTU-CVE-2026-6068

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or remote code executi...

9.6CVSS6.3AI score0.00414EPSS
Exploits1References3
cvelist
cvelist
added 2026/04/10 1:30 p.m.35 views

CVE-2026-6068 CVE-2026-6068

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or remote code executi...

0.00414EPSS
Exploits1References2
cve
cve
added 2026/04/10 1:30 p.m.22 views

CVE-2026-6068

CVE-2026-6068 affects NASM. A heap-use-after-free in response file processing (-@) stores a dangling pointer to freed memory in the global depend_file, which is later dereferenced after the response-file buffer is freed. This can cause data corruption and, per sources, may enable remote code exec...

9.6CVSS6.3AI score0.00414EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder