CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

358 matches found

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix the dmabuf object leak in fastrpcmaplookup In fastrpcmaplookup, the dmabufget function is called to obtain a reference to the dmabuf object for comparison purposes. However, this reference is never released whe...

5.2AI score0.00171EPSS

Exploits0References1

AstraLinux•added 5 days ago•5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: -misc: fastrpc: fix memory corruption on probe A missing sanity check has been added to the count of probed sessions, to prevent memory corruption beyond the fixed-size slab-alocated session array when there are more than...

7.8CVSS6.1AI score0.00201EPSS

Exploits0References2

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: misc: fastrpc: Do not remove the map from createprocess and devicerelease. Do not remove the map from the list during the error handling in fastrpcinitcreateprocess. Instead, call fastrpcmapput to avoid a use-after-free...

7.8CVSS6.1AI score0.00241EPSS

Exploits0References2

AstraLinux•added 5 days ago•1 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fixed a use-after-free race condition for maps It is possible that before fastrpcfreemap is called, another thread may call fastrpcmaplookup and obtain a reference to a map that is about to be deleted. The function...

7CVSS5.6AI score0.00242EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix memory corruption on open The overflow check in the probe session-duplication function increased the session count, even when there were no more available sessions. This could lead to corruption of memory beyon...

7.8CVSS5.8AI score0.00201EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: possible double-free of cctx-remoteheap The function fastrpcinitcreatestaticprocess may free the memory allocated to cctx-remoteheap during the errmap path, but does not clear the pointer pointing to that memory...

7.8CVSS5.3AI score0.00129EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the FASTRPCIOCTLALLOCDMABUFF ioctl, we should not assume that ‘buf-dmabuf’ is still valid. In fact, dmabuffd calls fdinstall before, there...

7.8CVSS5.8AI score0.00271EPSS

Exploits0References2

SUSE CVE•added 2026/05/06 1:43 a.m.•6 views

SUSE CVE-2026-31730

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: possible double-free of cctx-remoteheap fastrpcinitcreatestaticprocess may free cctx-remoteheap on the errmap path but does not clear the pointer. Later, fastrpcrpmsgremove frees cctx-remoteheap again if it is...

5.8AI score0.00129EPSS

Exploits0References3

Tenable Nessus•added 2026/05/05 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31730

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - misc: fastrpc: possible double-free of cctx-remoteheap fastrpcinitcreatestaticprocess may free cctx-remoteheap on the errmap path but does not clear the pointer...

7.8CVSS5.9AI score0.00129EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Linux

A issue was discovered in the Linux kernel through version 5.11.6. The fastrpcinternalinvoke function in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, also known as CID-20c40794eb85. This is a related issue to CVE-2019-2308...

7.8CVSS6.2AI score0.00305EPSS

Exploits0References2

RedhatCVE•added 2026/05/01 9:13 p.m.•3 views

CVE-2026-31730

A flaw was found in the Linux kernel's fastrpc component that could lead to a denial of service DoS or potentially arbitrary code execution. This memory corruption vulnerability, specifically a double-free, occurs when the cctx-remoteheap memory is freed twice due to an error handling issue in th...

7.8CVSS6.1AI score0.00129EPSS

Exploits0References4

NVD•added 2026/05/01 3:16 p.m.•4 views

CVE-2026-31730

7.8CVSS0.00129EPSS

Exploits0References5

Cvelist•added 2026/05/01 2:14 p.m.•31 views

CVE-2026-31730 misc: fastrpc: possible double-free of cctx->remote_heap

7.8CVSS0.00129EPSS

Exploits0References5

EUVD•added 2026/05/01 2:14 p.m.•7 views

EUVD-2026-26543

5.8AI score0.00129EPSS

Exploits0References5

CVE•added 2026/05/01 2:14 p.m.•12 views

CVE-2026-31730

CVE-2026-31730 affects the Linux kernel fastrpc component, where a double-free of cctx->remote_heap could occur if INIT_CREATE_STATIC ioctl hits an error path and the rpmsg device is removed. The root cause is that fastrpc_init_create_static_process() frees cctx->remote_heap on the err_map ...

7.8CVSS5.8AI score0.00129EPSS

Exploits0References5Affected Software1

ATTACKERKB•added 2026/05/01 2:14 p.m.•1 views

CVE-2026-31730

5.8AI score0.00129EPSS

Exploits0References6Affected Software1

Debian CVE•added 2026/05/01 2:14 p.m.•5 views

CVE-2026-31730

7.8CVSS5.8AI score0.00129EPSS

Exploits0

CNNVD•added 2026/05/01 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a possible double deallocation of cctx-remoteheap in the fastrpc mechanism, potentially leading t...

7.8CVSS5.8AI score0.00129EPSS

Exploits0References1

Positive Technologies•added 2026/05/01 12:0 a.m.•3 views

PT-2026-36365

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double-free issue exists in the fastrpc component. The function fastrpc init create static process may free the cctx-remote heap variable on the err map path without clearing the...

7.8CVSS5.8AI score0.00129EPSS

Exploits0References7

OSV•added 2026/03/16 2:3 p.m.•12 views

USN-8095-1 linux, linux-aws, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-hwe-6.8, linux-ibm, linux-ibm-6.8, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-oracle, linux-oracle-6.8 vulnerabilities

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information kernel memory, local...

7.8CVSS6.8AI score0.00544EPSS

Exploits6References425

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by