CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added yesterday•13 views

CVE-2026-44890 Netty has Unbounded Direct Memory Consumption in its RedisDecoder

7.5CVSS

CVE•added yesterday•18 views

CVE-2026-44890

Netty has Unbounded Direct Memory Consumption in its RedisDecoder (CVE-2026-44890). In netty-codec-redis, versions before 4.1.135.Final and 4.2.15.Final allow an attacker to cause a DoS by sending crafted Redis payloads across multiple connections that omit "\r\n", exhausting the server’s direct ...

7.5CVSS5.4AI score

Github Security Blog•added yesterday•3 views

Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator

Impact The RedisArrayAggregator handler permanently leaks pooled direct-memory buffers when a Redis pipeline connection closes before a RESP array aggregate completes. The handler retains child messages in per-handler state depths field but defines no channelInactive, handlerRemoved, or...

5.5AI score

Exploits0References2Affected Software1

OSV•added yesterday•2 views

GHSA-6JV9-X5W9-2CCM Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator

8.7CVSS5.5AI score

Exploits0References2

RedHat Linux•added yesterday•2 views

kernel: RDMA/rxe: Fix double free in rxe_srq_from_init

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA subsystem, specifically within the rxe driver. An error in the rxesrqfrominit function's memory management can lead to a double free vulnerability. This occurs when an attempt to copy data to user space fails, causing the sam...

7.8CVSS5.5AI score0.00013EPSS

Positive Technologies•added yesterday•4 views

PT-2026-48682

8.7CVSS5.5AI score

RedHat Linux•added 2 days ago•4 views

kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()

A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...

7.8CVSS5.4AI score0.00013EPSS

RedHat Linux•added 2 days ago•4 views

kernel: RDMA/rxe: Fix double free in rxe_srq_from_init

7.8CVSS5.4AI score0.00013EPSS

OSV•added 2 days ago•2 views

SUSE-SU-2026:2332-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks bsc1263790. - CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1263995. - CVE-2026-43206:...

9.8CVSS5.6AI score0.00096EPSS

Exploits4References17

OSV•added 2 days ago•7 views

ALSA-2026:25120 Critical: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: geneve: Fix use-after-free in genevefinddev. CVE-2025-21858 kernel: smc: Fix use-after-free in tcpwritetimerhandler CVE-2023-53781...

9.8CVSS6.5AI score0.00096EPSS

Exploits0References28

OSV•added 3 days ago•2 views

UBUNTU-CVE-2026-46296

In the Linux kernel, the following vulnerability has been resolved: spi: s3c64xx: fix NULL-deref on driver unbind A change moving DMA channel allocation from probe back to s3c64xxspipreparetransfer failed to remove the corresponding deallocation from remove. Drop the bogus DMA channel release fro...

5.3AI score0.00018EPSS

Exploits0References8

NVD•added 4 days ago•9 views

CVE-2026-46296

0.00018EPSS

EUVD•added 4 days ago•7 views

EUVD-2026-35122

In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: Set vmaflags in vb2dmasgmmap vb2dmacontig sets VMA flags VMDONTEXPAND and VMDONTDUMP and I do not see a reason why vb2dmasg should behave differently. This avoids hitting WARNON!vma-vmflags & VMDONTEXPAND; in...

EUVD•added 4 days ago•7 views

EUVD-2026-35162

CVE•added 4 days ago•12 views

CVE-2026-46296

In CVE-2026-46296, the Linux kernel’s s3c64xx SPI driver had a NULL-deref risk on driver unbind due to a deallocation that remained after moving DMA channel allocation from probe() back to s3c64xx_spi_prepare_transfer(). The fix removes the corresponding DMA channel release from remove(), prevent...

Positive Technologies•added 4 days ago•6 views

PT-2026-47602

Name of the Vulnerable Software and Affected Versions Netty affected versions not specified Description A Denial of Service DoS issue exists where an attacker can exhaust the server's direct memory pool, leading to an OutOfDirectMemoryError and preventing legitimate connections. This occurs becau...

7.5CVSS5.7AI score

Exploits0References7

Positive Technologies•added 4 days ago•6 views

PT-2026-47368

In the Linux kernel, the following vulnerability has been resolved: spi: s3c64xx: fix NULL-deref on driver unbind A change moving DMA channel allocation from probe back to s3c64xx spi prepare transfer failed to remove the corresponding deallocation from remove. Drop the bogus DMA channel release...