Lucene search
K

1764 matches found

RedhatCVE
RedhatCVE
added 2026/05/09 2:10 a.m.11 views

CVE-2026-43474

A flaw was found in the Linux kernel's fuse filesystem. A local user could exploit an uninitialized value vulnerability when calling vfsfileattrget. This could potentially lead to information disclosure or system instability...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.19 views

EUVD-2026-28780

In the Linux kernel, the following vulnerability has been resolved: fs: init flagsvalid before calling vfsfileattrget syzbot reported a uninit-value bug in 1. Similar to the "get" context where the kernel's internal filekattr structure is initialized before calling vfsfileattrget, we should use t...

5.8AI score0.00112EPSS
Exploits0References4
OSV
OSV
added 2026/05/08 3:17 p.m.8 views

UBUNTU-CVE-2026-43474

In the Linux kernel, the following vulnerability has been resolved: fs: init flagsvalid before calling vfsfileattrget syzbot reported a uninit-value bug in 1. Similar to the "get" context where the kernel's internal filekattr structure is initialized before calling vfsfileattrget, we should use t...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References6
NVD
NVD
added 2026/05/08 3:17 p.m.11 views

CVE-2026-43474

In the Linux kernel, the following vulnerability has been resolved: fs: init flagsvalid before calling vfsfileattrget syzbot reported a uninit-value bug in 1. Similar to the "get" context where the kernel's internal filekattr structure is initialized before calling vfsfileattrget, we should use t...

5.5CVSS0.00112EPSS
Exploits0References3
CVE
CVE
added 2026/05/08 2:22 p.m.20 views

CVE-2026-43474

CVE-2026-43474 concerns the Linux kernel’s fuse filesystem. A local uninitialized-value bug was reported in fuse_fileattr_get, triggered when calling vfs_fileattr_get, due to not initializing flags_valid before the call. The issue is resolved by initializing the kernel’s internal file_kattr struc...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.15 views

PT-2026-39135

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An uninitialized value bug exists where flags valid is not initialized before the vfs fileattr get function is called. This issue occurs because the fa variable is not handled with the...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-43474

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs: init flagsvalid before calling vfsfileattrget syzbot reported a uninit-value bug in 1. Similar to the get context where the kernel's internal filekattr...

5.5CVSS6AI score0.00112EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/05/02 8:4 a.m.5 views

fuse: reject oversized dirents in page cache

...

7.8CVSS5.8AI score0.00127EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.22 views

SUSE CVE-2026-31694

In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuseadddirenttocache computes a serialized dirent size from the server-controlled namelen field and copies the dirent into a single page-cache page. The existing logic only checks...

7.8CVSS5.8AI score0.00127EPSS
Exploits1References118
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.14 views

SUSE CVE-2026-31713

In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason error, crash while processing FUSEINIT, the filesystem creation will hang. The reason is that while all other threads will...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31713

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for...

5.5CVSS6.1AI score0.00115EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-31694

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fuse: reject oversized dirents in page cache fuseadddirenttocache computes a serialized dirent size from the server-controlled namelen field and copies the dire...

7.8CVSS6.3AI score0.00127EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/05/01 8:28 p.m.6 views

CVE-2026-31713

A flaw was found in the Linux kernel's Filesystem in Userspace FUSE component. When using synchronous initialization sync init, if the FUSE server exits unexpectedly while processing the FUSEINIT request, the filesystem creation process can hang. This issue occurs because the mounting thread keep...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 7:23 p.m.6 views

CVE-2026-31694

A flaw was found in the Linux kernel's Filesystem in Userspace FUSE component. A malicious FUSE server could exploit this by providing an oversized directory entry dirent that is not properly validated. This improper validation causes a memory copy operation to write beyond the allocated buffer,...

7.8CVSS5.9AI score0.00127EPSS
Exploits1References4
NVD
NVD
added 2026/05/01 2:16 p.m.5 views

CVE-2026-31713

In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason error, crash while processing FUSEINIT, the filesystem creation will hang. The reason is that while all other threads will...

5.5CVSS0.00115EPSS
Exploits0References3
NVD
NVD
added 2026/05/01 2:16 p.m.7 views

CVE-2026-31694

In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuseadddirenttocache computes a serialized dirent size from the server-controlled namelen field and copies the dirent into a single page-cache page. The existing logic only checks...

7.8CVSS0.00127EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/05/01 1:56 p.m.4 views

CVE-2026-31713

In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason error, crash while processing FUSEINIT, the filesystem creation will hang. The reason is that while all other threads will...

5.5CVSS5.7AI score0.00115EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.2 views

CVE-2026-31713

In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason error, crash while processing FUSEINIT, the filesystem creation will hang. The reason is that while all other threads will...

5.8AI score0.00115EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/01 1:56 p.m.15 views

EUVD-2026-26522

In the Linux kernel, the following vulnerability has been resolved: fuse: abort on fatal signal during sync init When sync init is used and the server exits for some reason error, crash while processing FUSEINIT, the filesystem creation will hang. The reason is that while all other threads will...

5.8AI score0.00115EPSS
Exploits0References3
CVE
CVE
added 2026/05/01 1:56 p.m.16 views

CVE-2026-31713

The CVE concerns the Linux kernel FUSE handling during sync init. When a FUSE server exits unexpectedly while processing FUSE_INIT, the mounting thread keeps the device fd open, preventing an abort and causing filesystem creation to hang. This is a regression relative to the async mount path, whe...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder