Lucene search
K

3852 matches found

NVD
NVD
added 2 days ago7 views

CVE-2026-10667

Zephyr's dynamic kernel-object tracking kernel/userspace/userspace.c, formerly kernel/userspace.c maintains a doubly-linked list objlist of dynamically allocated kernel objects. Iteration over this list in kobjectwordlistforeach was performed under listslock using the SAFE iterator which caches t...

7.8CVSS0.00103EPSS
Exploits0References2
OSV
OSV
added 2 days ago3 views

CVE-2026-10667 SMP use-after-free in Zephyr `CONFIG_USERSPACE` dynamic kernel-object tracking, reachable from unprivileged user threads

Zephyr's dynamic kernel-object tracking kernel/userspace/userspace.c, formerly kernel/userspace.c maintains a doubly-linked list objlist of dynamically allocated kernel objects. Iteration over this list in kobjectwordlistforeach was performed under listslock using the SAFE iterator which caches t...

7.8CVSS6.1AI score0.00103EPSS
Exploits0References5
CVE
CVE
added 2026/07/01 1:32 p.m.21 views

CVE-2026-53347

CVE-2026-53347 affects the Linux kernel’s drm/virtio component (virtio-gpu) when built with KMS disabled. The issue: DRM atomic and modesetting aren’t initialized during driver removal/unbinding, leading to access of uninitialized data and possible kernel crash. The fix: skip shutting down the at...

5.8AI score0.00156EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/30 11:30 a.m.4 views

kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

A flaw was found in the Linux kernel's IPv6 tunnel implementation. A remote attacker could exploit this flaw by sending malicious ICMPv6 error messages to cause a stack-based buffer overflow in the kernel's IPv4-over-IPv6 tunnel error handling code. This could result in a kernel crash denial of...

9.8CVSS7AI score0.00563EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/29 9:12 a.m.6 views

CVE-2026-53291

A flaw was found in the Advanced Linux Sound Architecture ALSA hda/conexant driver within the Linux kernel. A missing error check for the sndhdajackdetectenablecallback function's return value in cxprobe can lead to a kernel crash. If the registration of the jack detection callback fails, the...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References4
OSV
OSV
added 2026/06/29 12:0 a.m.4 views

ALSA-2026:33285 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: atm: fix crash due to unvalidated vcc pointer in sigdsend CVE-2026-31411 kernel: tcp: fix potential race in tcpv6synrecvsock CVE-2026-43198 Bug Fixes and Enhancements: AlmaLinux 9.8...

9.8CVSS6AI score0.00298EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/06/28 1:9 a.m.8 views

SUSE CVE-2026-53283

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each. The inlined checkdevice path computes the device's sbdf, calls...

5.8AI score0.00121EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/28 1:9 a.m.10 views

SUSE CVE-2026-53285

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wrap DCN32 phantom-plane allocation in DCRUNWITHPREEMPTIONENABLED Why dcn32validatebandwidth wraps dcn32internalvalidatebw with DCFPSTART/DCFPEND. In x86 non-RT, DCFPSTART takes fpregslock, which disables local...

5.8AI score0.00107EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53166

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - futex/requeue: Prevent NULL pointer dereference in removewaiter on self-deadlock When FUTEXCMPREQUEUEPI requeues a non-top waiter that already owns the target P...

6AI score0.00126EPSS
Exploits0References4
OSV
OSV
added 2026/06/26 8:17 p.m.2 views

DEBIAN-CVE-2026-53285

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wrap DCN32 phantom-plane allocation in DCRUNWITHPREEMPTIONENABLED Why dcn32validatebandwidth wraps dcn32internalvalidatebw with DCFPSTART/DCFPEND. In x86 non-RT, DCFPSTART takes fpregslock, which disables local...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References1
NVD
NVD
added 2026/06/26 8:17 p.m.8 views

CVE-2026-53285

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wrap DCN32 phantom-plane allocation in DCRUNWITHPREEMPTIONENABLED Why dcn32validatebandwidth wraps dcn32internalvalidatebw with DCFPSTART/DCFPEND. In x86 non-RT, DCFPSTART takes fpregslock, which disables local...

5.5CVSS0.00107EPSS
Exploits0References2
OSV
OSV
added 2026/06/26 8:17 p.m.4 views

UBUNTU-CVE-2026-53289

In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceresetallvfs iceresetallvfs ignores the return value of icevfrebuildvsi. When the VSI rebuild fails e.g. during NVM firmware update via nvmupdate64e, icevsirebuild tears down the VSI on its...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References9
CVE
CVE
added 2026/06/26 7:40 p.m.13 views

CVE-2026-53292

Summary (CVE-2026-53292): The Linux kernel phonet subsystem contains a flaw in pn_socket_autobind() where, if pn_socket_bind() returns -EINVAL while the socket was never bound (pn_port() == 0) and sk states are not TCP_CLOSE, a BUG_ON() triggers a kernel panic from a user-triggerable path. The pa...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/26 7:40 p.m.7 views

CVE-2026-53291

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/conexant: Fix missing error check for jack detection In cxprobe, the return value of sndhdajackdetectenablecallback is ignored. This function returns a pointer, and if it fails e.g., due to memory allocation failure, it...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
CVE
CVE
added 2026/06/26 7:40 p.m.13 views

CVE-2026-53283

CVE-2026-53283 concerns the Linux kernel AMD IOMMU driver. The issue arises when the inlined check path in __rlookup_amd_iommu() performs an out-of-bounds read on rlookup_table[devid] for a PCI device whose BDF isn’t described by IVRS. Prior to the commit that changed kvalloc() usage, the over-re...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/26 7:40 p.m.16 views

CVE-2026-53280

CVE-2026-53280 relates to the Linux kernel IOMMU path. A NULL dereference of group->domain could occur when a default IOMMU domain fails to allocate during the first probe, causing a crash at domain->ops->attach_dev in __iommu_attach_device() invoked by pci_dev_reset_iommu_done(). The co...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/26 4:15 p.m.13 views

CVE-2026-52961

A flaw was found in the Linux kernel's Ceph filesystem component. A race condition exists in the cephbuildxattrsblob function where the required extended attribute xattr blob size is computed before the buildxattrs call. During this window, another process can update the xattr blob, leading to a...

5.5CVSS5.7AI score0.00198EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 6:16 p.m.16 views

CVE-2026-53059

A flaw was found in the Linux kernel's device-mapper log dm log component. A local attacker could exploit an integer overflow vulnerability where a 64-bit value is truncated to 32 bits, leading to undersized memory allocations. This allows for out-of-bounds writes to kernel memory during log...

6.3CVSS5.8AI score0.00127EPSS
Exploits0References4
OSV
OSV
added 2026/06/25 9:16 a.m.4 views

UBUNTU-CVE-2026-53166

In the Linux kernel, the following vulnerability has been resolved: futex/requeue: Prevent NULL pointer dereference in removewaiter on self-deadlock When FUTEXCMPREQUEUEPI requeues a non-top waiter that already owns the target PI futex, taskblocksonrtmutex returns -EDEADLK before setting...

6.8CVSS5.7AI score0.00126EPSS
Exploits0References6
CVE
CVE
added 2026/06/25 8:38 a.m.93 views

CVE-2026-53166

The CVE-2026-53166 issue concerns the Linux kernel futex (Fast Userspace Mutex) requeue path, where a non-top waiter that already owns a PI futex could trigger a NULL pointer dereference in remove_waiter() during self-deadlock, causing a kernel crash/DoS. Public sources describe the vulnerability...

5.8AI score0.00126EPSS
Exploits0
Rows per page
Query Builder