CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ceph: fixed a deadlock or deadcode issue caused by misuse of dget. The lock order between denty and its parent is incorrect; we should always ensure that the parent gets the lock first. However, since this deadcode is never used,...

5.5CVSS5.7AI score0.00182EPSS

AstraLinux•added 5 days ago•7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ice: Fixed the LAG and VF lock dependencies in iceresetvf. The commit fixes the issue where the ice driver acquires the LAG mutex during iceresetvf. This lock acquisition is placed just before acquiring the VF configuration...

5.5CVSS6.5AI score0.00167EPSS

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop the channel lock before queuing buffers. Ensure that read and write locks for the channel are not acquired consecutively by dropping the read lock from parsexferevent. This allows a callback provided to the...

5.5CVSS5.3AI score0.00209EPSS

RedhatCVE•added 2026/05/28 2:3 a.m.•12 views

CVE-2026-45907

A flaw was found in the Linux kernel's mlx5e network driver. Incorrect lock ordering between devlink and netdev instance locks can lead to deadlocks. This issue can be triggered during various work tasks related to devlink health reporter recovery or concurrent channel tear down. A local attacker...

5.5CVSS5.8AI score0.00198EPSS

EUVD•added 2026/05/27 3:33 p.m.•9 views

EUVD-2026-32373

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlocks between devlink and netdev instance locks In the mentioned "Fixes" commit, various work tasks triggering devlink health reporter recovery were switched to use netdevtrylock to protect against concurrent...

NVD•added 2026/05/27 2:17 p.m.•10 views

CVE-2026-45907

0.00198EPSS

OSV•added 2026/05/27 2:17 p.m.•4 views

UBUNTU-CVE-2026-45907

5.7AI score0.00198EPSS

Cvelist•added 2026/05/27 12:17 p.m.•35 views

CVE-2026-45907 net/mlx5e: Fix deadlocks between devlink and netdev instance locks

0.00198EPSS

CVE•added 2026/05/27 12:17 p.m.•13 views

CVE-2026-45907

CVE-2026-45907 : In the Linux kernel, the net/mlx5e subsystem could deadlock between devlink and netdev instance locks due to incorrect lock ordering during recovery. The fix moves netdev_trylock usage from high-level work handlers to the lower recovery functions where it’s actually required, ali...

CNNVD•added 2026/05/27 12:0 a.m.•7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a deadlock issue between devlink and netdev instances. Due to an error in the lock order during t...

CNNVD•added 2026/05/27 12:0 a.m.•8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a deadlock caused by the jbd2journalcancelrevoke function in jbd2. This issue may lead to an ABBA...

5.8AI score0.00094EPSS

Positive Technologies•added 2026/05/27 12:0 a.m.•11 views

PT-2026-43774

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Tracing: Fixed a potential deadlock in CPU hotplug with osnoise. The following sequence may lead to a deadlock in CPU hotplug: task1 task2 task3 ----- ----- ----- The code sequence is as follows: mutexlock&interfacelock CPU GOING...

5.5CVSS5.3AI score0.00095EPSS

Exploits0References1

RedHat Linux•added 2026/05/11 12:49 a.m.•9 views

kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration

A flaw was found in the Linux kernel. A local attacker could exploit a deadlock vulnerability due to incorrect lock ordering between foliolock and immaprwsem when migrating hugetlb file-backed folios. This could lead to hung tasks and potential system-wide stalls, resulting in a Denial of Service...

5.5CVSS5.8AI score0.00114EPSS

Exploits0References5

CNNVD•added 2026/05/08 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from inconsistent lock order in the spidev driver’s spiLock and bufLock functions, potentially leading...

5.5CVSS5.8AI score0.00094EPSS

RedHat Linux•added 2026/05/06 6:51 p.m.•7 views

kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration

5.5CVSS5.8AI score0.00114EPSS

Exploits0References5

RedHat Linux•added 2026/05/05 9:38 a.m.•7 views

kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration

5.5CVSS5.8AI score0.00114EPSS

Exploits0References5

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: L2CAP: Fixed a deadlock in l2capconndel. The l2capconndel function calls canceldelayedworksync for both infotimer and idaddrtimer while holding conn-lock. However, the functions l2capinfotimeout and...

5.5CVSS5.8AI score0.00094EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock During stress I/O tests with 500+ vports, hard LOCKUP call traces are observed. CPU A: nativequeuedspinlockslowpath+0x192 rawspinlockirqsave+0x32 lpfchandlefcperr+0x4...

5.5CVSS5.4AI score0.00184EPSS