CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 3 days ago•5 views

EUVD-2026-39844

5.8AI score0.00404EPSS

Debian CVE•added 3 days ago•5 views

CVE-2026-53309

9.8CVSS5.7AI score0.00404EPSS

Exploits0

RedhatCVE•added 3 days ago•4 views

CVE-2026-53043

A flaw was found in the Linux kernel's Oracle Cluster File System 2 OCFS2 Distributed Lock Manager DLM. A remote attacker could exploit this vulnerability by sending a specially crafted network message. Insufficient validation of the qrnumregions field in the dlmmatchregions function allows for...

9.1CVSS5.9AI score0.00521EPSS

NVD•added 5 days ago•3 views

CVE-2026-53043

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: validate qrnumregions in dlmmatchregions Patch series "ocfs2/dlm: fix two bugs in dlmmatchregions". In dlmmatchregions, the qrnumregions field from a DLMQUERYREGION network message is used to drive loops over the...

9.1CVSS0.00521EPSS

Cvelist•added 5 days ago•26 views

CVE-2026-53043 ocfs2/dlm: validate qr_numregions in dlm_match_regions()

9.1CVSS0.00521EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix race in lowcomms This patch fixes a race condition between queuework in dlmlowcommscommitmsg and srcureadunlock. queuework may take the final reference to a dlmmsg, causing msg-idx to contain garbage, as indicated by...

4.7CVSS5.6AI score0.00135EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid dereference of sblvbptr I encounter issues when placing an lkbsb on the stack and having the sblvbptr field point to a dangling pointer, without using DLMLKFVALBLK. This will cause a crash with the following...

5.5CVSS5.8AI score0.00152EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: fs: dlm: fixed use-after-free in midcomms commit While working on processing dlm messages in the softirq context, I encountered the following KASAN use-after-free warnings: 151.760477...

7.8CVSS5.8AI score0.00186EPSS

OSV•added 2026/06/11 12:0 a.m.•10 views

ALSA-2026:25217 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: scsi: target: iscsi: Fix use-after-free in iscsitdecconnusagecount CVE-2026-23216 kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service CVE-2026-31419 kernel:...

9.8CVSS5.5AI score0.00563EPSS

Exploits0References24

RedHat Linux•added 2026/06/10 10:0 p.m.•10 views

kernel: dlm: validate length in dlm_search_rsb_tree

A flaw was found in the Linux kernel's Distributed Lock Manager dlm module. An attacker could send specially crafted network messages with an oversized length parameter to the dlmdumprsbname function. This lack of validation can lead to an out-of-bounds write in the dlmsearchrsbtree function,...

9.8CVSS6.2AI score0.00542EPSS

Exploits0References5

RedHat Linux•added 2026/06/10 8:9 p.m.•7 views

kernel: dlm: validate length in dlm_search_rsb_tree

9.8CVSS6.2AI score0.00542EPSS

Exploits0References5

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fixed the potential issue of using “glock” after a file system unmount. When a DLM lockspace is released and there are still locks in that lockspace, the DLM will automatically unlock those locks. Commit fb6791d100d1b...

7.8CVSS6.2AI score0.00248EPSS

RedhatCVE•added 2026/05/06 5:46 p.m.•10 views

CVE-2026-43125

9.8CVSS6.4AI score0.00542EPSS

NVD•added 2026/05/06 12:16 p.m.•5 views

CVE-2026-43125

In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlmsearchrsbtree The len parameter in dlmdumprsbname is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN, it can cause out-of-bounds write in dlmsearchrsbtree. Add length...

9.8CVSS0.00542EPSS

ATTACKERKB•added 2026/05/06 11:27 a.m.•9 views

CVE-2026-43125

6.1AI score0.00542EPSS

Exploits0References5Affected Software1

CVE•added 2026/05/06 11:27 a.m.•25 views

CVE-2026-43125

CVE-2026-43125 affects the Linux kernel dlm module. The vulnerability stems from unvalidated length in dlm_dump_rsb_name() coming from network messages, allowing an out-of-bounds write in dlm_search_rsb_tree() when the length exceeds DLM_RESNAME_MAXLEN. This could enable denial of service and, in...

9.8CVSS6.1AI score0.00542EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/05/06 12:0 a.m.•14 views

PT-2026-37465

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Distributed Lock Manager DLM where the len parameter in the dlm dump rsb name function is not validated. Because this parameter is derived from network messages,...

9.8CVSS6AI score0.00542EPSS

Exploits0References143

Tenable Nessus•added 2026/05/06 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43125

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dlm: validate length in dlmsearchrsbtree The len parameter in dlmdumprsbname is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN,...

9.8CVSS6.1AI score0.00542EPSS