Lucene search
K

244 matches found

OSV
OSV
added 2026/05/19 2:16 p.m.6 views

ALPINE-CVE-2026-23558

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status pages via XENMEMaddtophysmap. Some of the status pages may then be freed while...

7.8CVSS5.8AI score0.00117EPSS
Exploits0References1
OSV
OSV
added 2026/05/19 8:31 a.m.9 views

CLSA-2026-1779179460 kernel: Fix of CVE-2026-46333

ptrace: require CAPSYSPTRACE when task has no mm CVE-2026-46333...

7.8CVSS5.8AI score0.0138EPSS
Exploits6References1
NVD
NVD
added 2026/05/15 2:16 p.m.42 views

CVE-2026-46333

In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'getdumpable' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can core dump or not - and makes no sense when you don't have an...

7.8CVSS0.0138EPSS
Exploits6References40
CVE
CVE
added 2026/05/15 12:58 p.m.192 views

CVE-2026-46333

CVE-2026-46333 concerns a logic bug in the Linux kernel’s ptrace access check (__ptrace_may_access). When a thread lacks an MM pointer, ptrace_may_access uses a cached “last dumpable” flag, which can be bypassed by CAP_SYS_PTRACE to override. This can enable local privilege escalation or informat...

7.8CVSS5.8AI score0.0138EPSS
Exploits6References40Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.13 views

PT-2026-41298

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.8 Linux kernel versions prior to 6.18.31 Linux kernel versions prior to 6.12.89 Linux kernel versions prior to 6.6.139 Linux kernel versions prior to 6.1.173 Linux kernel versions prior to 5.15.207 Linux kern...

7.8CVSS6.4AI score0.0138EPSS
Exploits6
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28631

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region We observe spurious "Synchronous External Abort" exceptions ESR=0x96000010 and kernel crashes on Monaco-based platforms. These faults are caused by the kernel...

5.8AI score0.00335EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.8 views

CVE-2026-43462

In the Linux kernel, the following vulnerability has been resolved: net: spacemit: Fix error handling in emactxmemmap The DMA mappings were leaked on mapping error. Free them with the existing emacfreetxbuf function...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:22 p.m.6 views

CVE-2026-43462

In the Linux kernel, the following vulnerability has been resolved: net: spacemit: Fix error handling in emactxmemmap The DMA mappings were leaked on mapping error. Free them with the existing emacfreetxbuf function...

5.8AI score0.00335EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.7 views

CVE-2026-43347

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region We observe spurious "Synchronous External Abort" exceptions ESR=0x96000010 and kernel crashes on Monaco-based platforms. These faults are caused by the kernel...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References5
OSV
OSV
added 2026/05/08 2:16 p.m.8 views

UBUNTU-CVE-2026-43302

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Set DMA segment size to avoid debug warnings When using V3D rendering with CONFIGDMAAPIDEBUG enabled, the kernel occasionally reports a segment size mismatch. This is because 'maxsegsize' is not set. The kernel defaults ...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-38998

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description On Monaco-based platforms, the kernel may inadvertently access memory owned by the Gunyah hypervisor because a portion of the metadata region is incorrectly reported as conventional memo...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References6
OSV
OSV
added 2026/05/06 2:45 p.m.6 views

BIT-JAVA-MIN-2024-47606 GHSL-2024-166: GStreamer Integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes

GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemuxparsetheoraextension within qtdemux.c. The vulnerability occurs due to an underflow of the gint size variable, which causes size to hold a large unintended...

9.8CVSS7.4AI score0.01344EPSS
Exploits0References7
NVD
NVD
added 2026/05/06 12:16 p.m.6 views

CVE-2026-43135

In the Linux kernel, the following vulnerability has been resolved: media: cx23885: Add missing unmap in sndcx23885hwparams In error path, add cx23885alsadmaunmap to release the resource acquired by cx23885alsadmamap...

5.5CVSS0.00123EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/06 7:40 a.m.4 views

CVE-2026-43109

In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstkpopsigframe doesn't check for errors from mmapreadlockkillable, which is a silly oversight, and also shows that we haven't marked those functions with...

5.5CVSS5.7AI score0.00114EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-43262

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gfs2: fiemap page fault fix In gfs2fiemap, we are calling iomapfiemap while holding the inode glock. This can lead to recursive glock taking if the fiemap buffe...

5.5CVSS6AI score0.00114EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the k3-socinfo driver failing to release the mmio regmap when detection fails, potentially leadin...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/05 1:20 p.m.14 views

kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration

A flaw was found in the Linux kernel. A local attacker could exploit a deadlock vulnerability due to incorrect lock ordering between foliolock and immaprwsem when migrating hugetlb file-backed folios. This could lead to hung tasks and potential system-wide stalls, resulting in a Denial of Service...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References5
CVE
CVE
added 2026/04/24 2:45 p.m.13 views

CVE-2026-31654

CVE-2026-31654 affects the Linux kernel mm/vma path for mmap-backed shared mappings (notably /dev/zero). The root cause was a memory leak: when __mmap_new_vma() fails after shmem_zero_setup_desc() allocates a replacement shmem file, that new file isn’t released in the error path, leaving an unref...

5.5CVSS5.4AI score0.00113EPSS
Exploits0References2Affected Software1
Oracle linux
Oracle linux
added 2026/04/24 12:0 a.m.18 views

qemu-kvm security update

7.2.0-37.el9 - hashing: use mmap/munmap for isal functions Elena Ufimtseva Orabug: 39165991 - multifd: replace allocations/free with mmap/munmap Elena Ufimtseva Orabug: 39165991 - pagecache: use mmap based data pool for cache items Elena Ufimtseva Orabug: 39165991 - pagecache: change cache...

7.5CVSS5.9AI score0.00783EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013052)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013052 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...

5.7AI score0.00165EPSS
Exploits0References4
Rows per page
Query Builder