CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

78 matches found

kernel: RDMA/umem: Fix double dma_buf_unpin in failure path

A flaw was found in the Linux kernel's RDMA/umem subsystem. A memory management error, specifically a double unpin of a dmabuf, can occur in a failure path during dmabuf pinning operations. This vulnerability could lead to system instability or a crash, resulting in a Denial of Service DoS...

7.8CVSS5.8AI score0.00139EPSS

Exploits0References5

Github Security Blog•added 2026/06/15 5:28 p.m.•4 views

Symfony: Security Firewall Bypass via failure_forward Subrequest: Unauthenticated Access to access_control-Protected GET Routes

Description When a firewall is configured with form-login or any authenticator using DefaultAuthenticationFailureHandler and the failureforward: true option, the handler reads the failurepath parameter from the failing login request and uses it as the path of an internal subrequest dispatched...

5.3AI score0.00058EPSS

Exploits0References6Affected Software2

EUVD•added 2026/05/28 9:35 a.m.•7 views

EUVD-2026-32888

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfo error path When kobjectinitandadd fails, the call chain is: createspaceinfo - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&spaceinfo-kobj - spaceinforelease -...

5.8AI score0.00138EPSS

Exploits0References5

OSV•added 2026/05/27 2:17 p.m.•5 views

UBUNTU-CVE-2026-45920

In the Linux kernel, the following vulnerability has been resolved: ext4: fix dirtyclusters double decrement on fs shutdown fstests test generic/388 occasionally reproduces a warning in ext4putsuper associated with the dirty clusters count: WARNING: CPU: 7 PID: 76064 at fs/ext4/super.c:1324...

5.4AI score0.0019EPSS

Exploits0References3

Cvelist•added 2026/05/27 12:16 p.m.•34 views

CVE-2026-45883 iio: sca3000: Fix a resource leak in sca3000_probe()

In the Linux kernel, the following vulnerability has been resolved: iio: sca3000: Fix a resource leak in sca3000probe spi-irq from requestthreadedirq not released when iiodeviceregister fails. Add an return value check and jump to a common error handler when iiodeviceregister fails...

0.0021EPSS

Exploits0References8

Snyk•added 2026/05/27 9:41 a.m.•21 views

Authentication Bypass Using an Alternate Path or Channel

Overview symfony/symfony is a PHP framework for web applications and a set of reusable PHP components. Affected versions of this package are vulnerable to Authentication Bypass Using an Alternate Path or Channel via failureforward Subrequest. An attacker could manipulate the failurepath parameter...

6.9CVSS5.8AI score0.00058EPSS

Exploits0References2

RedHat Linux•added 2026/05/20 2:0 p.m.•8 views

kernel: RDMA/umem: Fix double dma_buf_unpin in failure path

7.8CVSS5.8AI score0.00139EPSS

Exploits0References5

RedHat Linux•added 2026/05/20 1:3 p.m.•9 views

kernel: RDMA/umem: Fix double dma_buf_unpin in failure path

7.8CVSS5.8AI score0.00139EPSS

Exploits0References5

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: perf/smmuv3: Fixed the hotplug callback leak in armsmmupmuinit. armsmmupmuinit does not remove the callback added by cpuhpsetupstatemulti when platformdriverregister fails. The callback must be removed by cpuhpremovemultistate in...

5.5CVSS5.5AI score0.00143EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ipmr,ip6mr: acquiring RTNL before calling ip6mrfreetable in the failure path The ip6mrfreetable function can only be called under an RTNL lock condition. RTNL: assertion failed at net/core/dev.c 10367 WARNING: CPU: 1 PID: 5890 at...

5.5CVSS6.3AI score0.00211EPSS

Exploits0References2

SUSE CVE•added 2026/05/07 2:19 a.m.•7 views

SUSE CVE-2026-43021

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix leaks when hcicmdsyncqueueonce fails When hcicmdsyncqueueonce returns with error, the destroy callback will not be called. Fix leaking references / memory on these failures...

5.7AI score0.00107EPSS

Exploits0References3

SUSE CVE•added 2026/05/07 2:17 a.m.•7 views

SUSE CVE-2026-43225

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211informbssframe may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix th...

5.5CVSS5.9AI score0.00128EPSS

Exploits0References3

EUVD•added 2026/05/06 12:30 p.m.•3 views

EUVD-2026-27784

5.9AI score0.00128EPSS

Exploits0References8

NVD•added 2026/05/06 12:16 p.m.•2 views

CVE-2026-43128

In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dmabufunpin in failure path In ibumemdmabufgetpinnedwithdmadevice, the call to ibumemdmabufmappages can fail. If this occurs, the dmabuf is immediately unpinned but the umemdmabuf-pinned flag is still set...

7.8CVSS0.00139EPSS

Exploits0References6

Cvelist•added 2026/05/06 11:28 a.m.•26 views

CVE-2026-43225 staging: rtl8723bs: fix memory leak on failure path

0.00128EPSS

Exploits0References7

CVE•added 2026/05/06 11:28 a.m.•11 views

CVE-2026-43225

CVE-2026-43225 involves a memory leak in the Linux kernel RTL8723BS staging path. Specifically, cfg80211_inform_bss_frame() may return NULL on a failure path, and the allocated buffer buf was not freed before an early return. This could leak memory. The issue is resolved by ensuring buf is freed ...

5.5CVSS5.9AI score0.00128EPSS

Exploits0References7Affected Software1