Lucene search
K

185 matches found

EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-40989

In the Linux kernel, the following vulnerability has been resolved: net: rds: clear isends on setup unwind The RDS IB connection teardown path is written so it can run during partial startup and on repeated shutdown attempts. It uses NULL pointers to distinguish resources that are still owned fro...

5.8AI score
Exploits0References8
RedhatCVE
RedhatCVE
added 5 days ago7 views

CVE-2026-53077

A flaw was found in the Linux kernel's Reliable Datagram Sockets over InfiniBand RDS/IB component. This vulnerability allowed the use of RDS/IB in network namespaces other than the initial one, where the existing code would not function correctly. This improper operation could lead to unexpected...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 5 days ago9 views

CVE-2026-52995

A flaw was found in the Linux kernel's Reliable Datagram Sockets RDS subsystem. This vulnerability allows a local unprivileged user to disclose sensitive kernel memory. When a user queries connection information through getsockoptSOLRDS, RDSINFOIBCONNECTIONS while an RDS connection is not fully...

5.5CVSS5.6AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added last week7 views

CVE-2026-52928

A flaw was found in the Linux kernel's afunix component. This vulnerability involves the incorrect handling of the SIOCATMARK operation when used with non-stream sockets, such as SOCKDGRAM and SOCKSEQPACKET. These socket types did not properly reject SIOCATMARK, an operation intended only for...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.3 views

EUVD-2026-38945

In the Linux kernel, the following vulnerability has been resolved: net/rds: Restrict use of RDS/IB to the initial network namespace Prevent using RDS/IB in network namespaces other than the initial one. The existing RDS/IB code will not work properly in non-initial network namespaces...

5.8AI score0.0012EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/24 3:36 p.m.6 views

CVE-2026-52939

A flaw was found in the Linux kernel's Reliable Datagram Sockets RDS component. An unprivileged local user can trigger a kernel panic by sending a specially crafted atomic control message cmsg over an active RDS/InfiniBand IB connection. This issue is caused by improper handling of masked atomic...

5.5CVSS5.8AI score0.00164EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.7 views

PT-2026-51971

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the net/rds component where the RDS/IB Reliable Datagram Sockets over InfiniBand code does not function correctly when used in network namespaces other than the initia...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References10
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject unhashed sockets in bpfskassign The semantics for bpfskassign are as follows: sk = somelookupfunc bpfskassignskb, sk bpfskreleasesk That is, the sk is not consumed by bpfskassign. Therefore, the function must ensure...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/27 7:19 p.m.10 views

CVE-2026-46053

A flaw was found in the Linux kernel's Reliable Datagram Sockets RDS network protocol. When handling memory registration MR cleanup, specifically during the process of copying generated cookies back to user space, an error in the cleanup path could lead to resources being freed multiple times. Th...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
OSV
OSV
added 2026/05/27 2:17 p.m.5 views

UBUNTU-CVE-2026-46053

In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error rdsrdmamap hands sg/pages ownership to the transport after getmr succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:57 p.m.7 views

CVE-2026-46053

In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error rdsrdmamap hands sg/pages ownership to the transport after getmr succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/05/27 12:57 p.m.26 views

CVE-2026-46053

CVE-2026-46053 affects the Linux kernel RDS memory-registration cleanup. In net/rds, __rds_rdma_map() transfers ownership of sg/pages after get_mr(); if copying the cookie back to user space fails, resources could be freed more than once. The fix removes a duplicate unpin/free in the put_user() f...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 10:49 a.m.18 views

CVE-2026-43494

In the Linux kernel, the following vulnerability has been resolved: net/rds: reset opnents when zerocopy page pin fails When iovitergetpages2 fails in rdsmessagezcopyfromuser, the pinned pages are released with putpage, and rm-data.opmmpznotifier is cleared. But we fail to properly clear...

5.7AI score0.00269EPSS
Exploits3References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/07 2:11 p.m.7 views

CVE-2026-43230

A flaw was found in the Linux kernel's Reliable Datagram Sockets RDS network protocol. When the reconnect worker is canceled before it has been scheduled, the 'reconnect-pending' bit is not properly cleared. This can lead to a state where the system indefinitely believes a reconnect is pending,...

7.5CVSS5.7AI score0.00523EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/06 10:20 p.m.10 views

CVE-2026-43226

A flaw was found in the Linux kernel's Reliable Datagram Sockets RDS component. Due to an incorrect state transition, an RDS connection can bypass its expected shutdown process. This can lead to the connection becoming permanently stuck in a shutdown-queued state, potentially causing a denial of...

7.5CVSS5.8AI score0.00523EPSS
Exploits0References4
NVD
NVD
added 2026/05/06 12:16 p.m.12 views

CVE-2026-43226

In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDSCONNERROR RDS connections carry a state "rdsconnpath::cpstate" and transitions from one state to another and are conditional upon an expected state: "rdsconnpathtransition." There is one exception t...

7.5CVSS0.00523EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:28 a.m.6 views

CVE-2026-43230

In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When canceling the reconnect worker, care must be taken to reset the reconnect-pending bit. If the reconnect worker has not yet been scheduled before it is canceled, the reconnect-pending bit...

5.8AI score0.00523EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2026/05/06 11:28 a.m.8 views

CVE-2026-43230

In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When canceling the reconnect worker, care must be taken to reset the reconnect-pending bit. If the reconnect worker has not yet been scheduled before it is canceled, the reconnect-pending bit...

7.5CVSS5.7AI score0.00523EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from bypassing the RDSCONNERROR state during the handling of RDS connection status. This may lead to abnorma...

7.5CVSS5.8AI score0.00523EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006691)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006691 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: reject unhashed sockets in bpfskassign The semantics for bpfskassign are as follows: sk =...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References4
Rows per page
Query Builder