Lucene search
K

212 matches found

RedHat Linux
RedHat Linux
added yesterday5 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS6.6AI score0.00302EPSS
Exploits0References5
OSV
OSV
added 2026/06/25 9:16 a.m.4 views

UBUNTU-CVE-2026-53241

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: dummy: fix UMP event stack overread The dummy sequencer port forwards events by copying an incoming struct sndseqevent into a stack temporary, rewriting source and destination, and dispatching the temporary to...

4.8CVSS5.7AI score0.00175EPSS
Exploits0References7
CVE
CVE
added 2026/06/25 8:39 a.m.7 views

CVE-2026-53241

CVE-2026-53241 concerns the Linux kernel ALSA: seq (dummy) port handling of UMP events. The issue arises when a UMP event is copied into a stack temporary and then dispatched; the temporary storage is legacy-sized, while the UMP packet is larger, leading to a read past the end of the temporary. T...

5.8AI score0.00175EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux

A issue was discovered in the Linux kernel through version 5.9.1, as used with Xen up to version 4.14.x. The file drivers/xen/events/eventsbase.c allows for the removal of event channels during the event-handling loop a race condition. This can lead to a use-after-free or NULL pointer...

4.7CVSS6.6AI score0.00265EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Tracing: A race condition has been fixed, where eprobes can be called before the event occurs. The flag that instructs the event to call its triggers after reading the event is set for eprobes after they are enabled. This leads t...

4.7CVSS5.3AI score0.00117EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/11 9:11 p.m.4 views

Missing Authorization

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Missing Authorization in the node event handling process. An attacker can gain unauthorized access to restricted exec lifecycle events by sending crafted node.event messages from a paired...

8.6CVSS5.9AI score0.00342EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/11 8:9 p.m.8 views

EUVD-2026-36322

OpenClaw before 2026.5.18 contains an insufficient provenance validation vulnerability in node event handling that allows paired nodes to forge exec lifecycle events without system.run authorization. A malicious or compromised paired node can send crafted node.event messages to the gateway,...

8.6CVSS5.5AI score0.00342EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.11 views

PT-2026-48746

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.5.18 Description Insufficient provenance validation in node event handling allows paired nodes to forge exec lifecycle events without system.run authorization. A malicious or compromised paired node can send...

8.6CVSS5.2AI score0.00342EPSS
Exploits0References5
NVD
NVD
added 2026/05/27 2:17 p.m.11 views

CVE-2026-45904

In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: fix recursive pcilockrescanremove locking in EEH event handling The recent commit 1010b4c012b0 "powerpc/eeh: Make EEH driver device hotplug safe" restructured the EEH driver to improve synchronization with the PCI...

5.5CVSS0.00156EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/27 12:17 p.m.38 views

CVE-2026-45904 powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event handling

In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: fix recursive pcilockrescanremove locking in EEH event handling The recent commit 1010b4c012b0 "powerpc/eeh: Make EEH driver device hotplug safe" restructured the EEH driver to improve synchronization with the PCI...

0.00156EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-45904

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/eeh: fix recursive pcilockrescanremove locking in EEH event handling The recent commit 1010b4c012b0 powerpc/eeh: Make EEH driver device hotplug safe...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of boundary checking of short frames in Bluetooth HCI event handling, which could lead to...

8.1CVSS5.8AI score0.00205EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/16 1:20 a.m.5 views

Insertion of Sensitive Information into Log File

Overview langsmith is a Client library to connect to the LangSmith Observability and Evaluation Platform. Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File through the Client handling of events. An attacker can bypass redaction controls and...

6.3CVSS5.8AI score0.00214EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.2 views

CVE-2026-32050

OpenClaw versions prior to 2026.2.25 contain an access control vulnerability in signal reaction notification handling that allows unauthorized senders to enqueue status events before authorization checks are applied. Attackers can exploit the reaction-only event path in event-handler.ts to queue...

6.3CVSS5.8AI score0.0021EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/01/18 12:24 a.m.5 views

SUSE CVE-2025-71133

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: avoid invalid read in irdmanetevent irdmanetevent should not dereference anything from "neigh" alias "ptr" until it has checked that the event is NETEVENTNEIGHUPDATE. Other events come with different structures pointe...

5.5CVSS6.4AI score0.00153EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002940)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002940 advisory. A use-after-free flaw was found in fs/userfaultfd.c in the Linux kernel before 4.13.6. The issue is related to the handling of fork failure when dealing with event...

9.3CVSS7.5AI score0.04075EPSS
Exploits0References11
NVD
NVD
added 2026/01/14 3:16 p.m.7 views

CVE-2025-71133

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: avoid invalid read in irdmanetevent irdmanetevent should not dereference anything from "neigh" alias "ptr" until it has checked that the event is NETEVENTNEIGHUPDATE. Other events come with different structures pointe...

7.1CVSS0.00153EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/01/13 4:15 p.m.4 views

CVE-2025-68770

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix XDPTX path For XDPTX action in bnxtrxxdp, clearing of the event flags is not correct. bnxtpollwork - bnxtrxpkt - bnxtrxxdp may be looping within NAPI and some event flags may be set in earlier iterations. In particula...

5.8AI score0.00166EPSS
Exploits0References24
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992458)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992458 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix steering rules cleanup vport's mc, uc and multicast rules are not deleted in teardo...

5.5CVSS6.6AI score0.00176EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:6 p.m.3 views

CVE-2023-54119 inotify: Avoid reporting event with invalid wd

In the Linux kernel, the following vulnerability has been resolved: inotify: Avoid reporting event with invalid wd When inotifyfreeingmark races with inotifyhandleinodeevent it can happen that inotifyhandleinodeevent sees that imark-wd got already reset to -1 and reports this value to userspace...

6.4AI score0.0018EPSS
Exploits0References10
Rows per page
Query Builder