Lucene search
K

42 matches found

CVE
CVE
added 2026/05/08 2:21 p.m.22 views

CVE-2026-43374

Summary: CVE-2026-43374 affects the Linux kernel networking code (net: nexthop). The vuln arises when removing a nexthop from a group: remove_nh_grp_entry() publishes the new group via rcu_assign_pointer() and then immediately frees the removed entry’s percpu stats with free_percpu(), while the s...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.10 views

PT-2026-39037

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the ksmbd module. The system frees the oplock info structure immediately using kfree, while it is still being accessed under RCU Read-Copy-Update read-si...

9.8CVSS6.5AI score0.00817EPSS
Exploits5References111
OSV
OSV
added 2026/04/24 3:16 p.m.6 views

DEBIAN-CVE-2026-31665

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: fix use-after-free in timeout object destroy nftcttimeoutobjdestroy frees the timeout object with kfree immediately after nfctuntimeout, without waiting for an RCU grace period. Concurrent packet processing on...

7.8CVSS5.4AI score0.00117EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 11:16 a.m.6 views

CVE-2026-23352

In the Linux kernel, the following vulnerability has been resolved: x86/efi: defer freeing of boot services memory efifreebootservices frees memory occupied by EFIBOOTSERVICESCODE and EFIBOOTSERVICESDATA using memblockfreelate. There are two issue with that: memblockfreelate should be used for...

5.5CVSS0.00125EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/01/15 5:38 p.m.5 views

CVE-2025-71089

A security vulnerability was found in the Linux kernel's IOMMU Shared Virtual Addressing SVA implementation on x86 architecture. When SVA is enabled, the IOMMU caches kernel page table entries. Since the kernel lacks a mechanism to notify the IOMMU when kernel page table pages are freed and...

7.8CVSS6.5AI score0.00145EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/14 12:25 a.m.5 views

SUSE CVE-2025-71089

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7CVSS6.7AI score0.00145EPSS
Exploits0References29
OSV
OSV
added 2026/01/13 4:16 p.m.16 views

AZL-74330 CVE-2025-71089 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7.8CVSS6AI score0.00145EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 4:16 p.m.11 views

CVE-2025-71089

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7.8CVSS0.00145EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/01/13 4:16 p.m.9 views

CVE-2025-71089

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7.8CVSS6AI score0.00145EPSS
Exploits0References25
OSV
OSV
added 2026/01/13 4:16 p.m.5 views

UBUNTU-CVE-2025-71089

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7.8CVSS5.9AI score0.00145EPSS
Exploits0References29
Cvelist
Cvelist
added 2026/01/13 3:34 p.m.25 views

CVE-2025-71089 iommu: disable SVA when CONFIG_X86 is set

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7.8CVSS0.00145EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/01/13 3:34 p.m.7 views

CVE-2025-71089

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

6.2AI score0.00145EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/01/13 3:34 p.m.6 views

CVE-2025-71089 iommu: disable SVA when CONFIG_X86 is set

In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIGX86 is set Patch series "Fix stale IOTLB entries for kernel address space", v7. This proposes a fix for a security vulnerability related to IOMMU Shared Virtual Addressing SVA. In an SVA context, an...

7.8CVSS6.6AI score0.00145EPSS
Exploits0References9
CVE
CVE
added 2026/01/13 3:34 p.m.37 views

CVE-2025-71089

CVE-2025-71089 affects the Linux kernel via IOMMU Shared Virtual Addressing (SVA). In SVA, the IOMMU can cache kernel page-table entries, so freeing a kernel page-table page and reusing it could leave stale IOMMU entries, enabling use-after-free or write-after-free scenarios that could allow loca...

7.8CVSS6.3AI score0.00145EPSS
Exploits0References6Affected Software1
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: iouring/msgring: Ensure that the freeing of iokiocb is deferred to a later time for RCU. syzbot reports that deferring or localizing tasks involving taskworkadd via msgring can lead to a situation where a request that has already...

5.5CVSS6.3AI score0.00145EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-71089

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu: disable SVA when CONFIGX86 is set Patch series Fix stale IOTLB entries for kernel address space, v7. This proposes a fix for a security vulnerability...

7.8CVSS6.8AI score0.00145EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.5 views

PT-2026-2610

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to IOMMU Shared Virtual Addressing SVA. The kernel lacks a mechanism to notify the IOMMU of changes to kernel page tables when pages are freed an...

7.8CVSS5.5AI score0.00145EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/07/29 11:23 p.m.6 views

SUSE CVE-2025-38453

In the Linux kernel, the following vulnerability has been resolved: iouring/msgring: ensure iokiocb freeing is deferred for RCU syzbot reports that defer/local taskwork adding via msgring can hit a request that has been freed: CPU: 1 UID: 0 PID: 19356 Comm: iou-wrk-19354 Not tainted...

7.8CVSS6.5AI score0.00145EPSS
Exploits0References18
OSV
OSV
added 2025/07/25 4:15 p.m.1 views

DEBIAN-CVE-2025-38453

In the Linux kernel, the following vulnerability has been resolved: iouring/msgring: ensure iokiocb freeing is deferred for RCU syzbot reports that defer/local taskwork adding via msgring can hit a request that has been freed: CPU: 1 UID: 0 PID: 19356 Comm: iou-wrk-19354 Not tainted...

5.5CVSS5.5AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 4:15 p.m.4 views

UBUNTU-CVE-2025-38453

In the Linux kernel, the following vulnerability has been resolved: iouring/msgring: ensure iokiocb freeing is deferred for RCU syzbot reports that defer/local taskwork adding via msgring can hit a request that has been freed: CPU: 1 UID: 0 PID: 19356 Comm: iou-wrk-19354 Not tainted...

5.5CVSS6.1AI score0.00145EPSS
Exploits0References11
Rows per page
Query Builder