Lucene search
K

525 matches found

CVE
CVE
added 2026/05/06 7:40 a.m.16 views

CVE-2026-43084

CVE-2026-43084 affects the Linux kernel netfilter nfnetlink_queue. The vulnerability stems from sharing a global hash table across all queues, allowing a parallel CPU to access a nf_queue_entry after it has been freed, causing a slab-use-after-free (KASAN) and potential crash/DoS. The fix is to m...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:40 a.m.6 views

CVE-2026-43084

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: make hash table per queue Sharing a global hash table among all queues is tempting, but it can cause crash: BUG: KASAN: slab-use-after-free in nfqnlrecvverdict+0x11ac/0x15e0 nfnetlinkqueue...

5.8AI score0.00125EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/05/06 7:40 a.m.4 views

CVE-2026-43084

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: make hash table per queue Sharing a global hash table among all queues is tempting, but it can cause crash: BUG: KASAN: slab-use-after-free in nfqnlrecvverdict+0x11ac/0x15e0 nfnetlinkqueue...

7.8CVSS5.7AI score0.00125EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of a global hash table in the nfnetlinkqueue module. This vulnerability may lead to reuse...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that xfrmpolicyfini does not wait for the RCU reader to complete before releasing the...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References1
OSV
OSV
added 2026/05/02 1:0 a.m.7 views

CLSA-2026-1777463708 dovecot: Fix of CVE-2017-15132

CVE-2017-15132: fix memory leak and hash-table use-after-free in authclientrequestabort lib-auth. Squashed upstream commits 1a29ed2f96da and a9b135760aea...

7.5CVSS6.7AI score0.0318EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2026/05/02 1:0 a.m.12 views

dovecot: Fix of CVE-2017-15132

CVE-2017-15132: fix memory leak and hash-table use-after-free in authclientrequestabort lib-auth. Squashed upstream commits 1a29ed2f96da and a9b135760aea...

7.5CVSS6.8AI score0.0318EPSS
Exploits0
CVE
CVE
added 2026/04/30 5:40 a.m.18 views

CVE-2026-5408

CVE-2026-5408 describes an uncontrolled recursion causing a crash in Wireshark’s BT-DHT protocol dissector. Affected versions are Wireshark 4.6.0–4.6.4 and 4.4.0–4.4.14, with impact listed as denial of service. The connected documents provide the vulnerability name, affected versions, and the exp...

5.5CVSS5.2AI score0.00143EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2026/04/30 12:0 a.m.10 views

Wireshark 安全漏洞

Wireshark is a set of network packet analysis tools developed by the Wireshark team. The software’s function is to capture network packets and display detailed data for analysis. Versions of Wireshark from 4.6.0 to 4.6.4, as well as 4.4.0 to 4.4.14, have security vulnerabilities. These...

5.5CVSS5.8AI score0.00143EPSS
Exploits1References1
OSV
OSV
added 2026/04/29 2:25 p.m.7 views

CLSA-2026-1777463410 dovecot: Fix of CVE-2017-15132

CVE-2017-15132: fix memory leak and hash-table use-after-free in authclientrequestabort lib-auth. Squashed upstream commits 1a29ed2f96da and a9b135760aea...

7.5CVSS6.7AI score0.0318EPSS
Exploits0References1
OSV
OSV
added 2026/04/29 7:9 a.m.6 views

CLSA-2026-1777446568 bash: Fix of CVE-2019-9924

CVE-2019-9924: reject attempts to add pathnames containing slashes to the hash table in restricted shell...

7.8CVSS7.1AI score0.00415EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2026/04/29 7:9 a.m.9 views

bash: Fix of CVE-2019-9924

CVE-2019-9924: reject attempts to add pathnames containing slashes to the hash table in restricted shell...

7.8CVSS6.8AI score0.00415EPSS
Exploits0
OSV
OSV
added 2026/04/28 9:18 a.m.7 views

CLSA-2026-1777367927 bash: Fix of CVE-2019-9924

CVE-2019-9924: reject attempts to add pathnames containing slashes to the hash table in restricted shell...

7.8CVSS7.1AI score0.00415EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2026/04/28 4:18 a.m.12 views

USN-8202-2: jq vulnerabilities

USN-8202-1 fixed vulnerabilities in jq. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: It was discovered that jq did not correctly handle certain string concatenations. An attacker could possibly use this issue to cause a denial of service or execute...

8.2CVSS5.9AI score0.00559EPSS
Exploits5
CNNVD
CNNVD
added 2026/04/25 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the RX hash table extraction in afalg without limiting the receive buffer budget. This could lead to...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References1
OSV
OSV
added 2026/04/24 5:25 p.m.6 views

CLSA-2026-1777051545 zsh: Fix of 3 CVEs

CVE-2018-1071: check bounds when copying path in hashcmd - CVE-2018-7549: avoid crash copying empty hash table - CVE-2018-13259: fix shebang line truncation in zexecve...

9.8CVSS6.8AI score0.02723EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/24 2:33 p.m.4 views

EUVD-2026-25439

In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix NULL deref in bonddebugrlbhashshow rlbclearslave intentionally keeps RLB hash-table entries on the rxhashtblusedhead list with slave set to NULL when no replacement slave is available. However,...

5.3AI score0.00123EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2026/04/22 8:19 a.m.8 views

kernel: macvlan: fix error recovery in macvlan_common_newlink()

A use-after-free vulnerability was found in the macvlan driver. When creating a macvlan interface in source mode fails after the source MAC has been added to the hash table e.g., due to an invalid interface name, the hash entry still references the freed netdevice structure. Subsequent packets...

7.8CVSS5.6AI score0.00119EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/22 12:15 a.m.9 views

kernel: macvlan: fix error recovery in macvlan_common_newlink()

A use-after-free vulnerability was found in the macvlan driver. When creating a macvlan interface in source mode fails after the source MAC has been added to the hash table e.g., due to an invalid interface name, the hash entry still references the freed netdevice structure. Subsequent packets...

7.8CVSS5.6AI score0.00119EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013283)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013283 advisory. In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small. Tenable has extracted th...

3.5CVSS6.5AI score0.00368EPSS
Exploits0References4
Rows per page
Query Builder