Lucene search
+L

419 matches found

UbuntuCve
UbuntuCve
added 2026/01/07 9:16 p.m.5 views

CVE-2026-22185

OpenLDAP Lightning Memory-Mapped Database LMDB versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underflow in the readline function of mdbload. When processing malformed input containing an embedded NUL byte, an unsigned offset calculation can underflow and cause...

4.6CVSS6AI score0.00127EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/01/07 8:26 p.m.5 views

CVE-2026-22185

OpenLDAP Lightning Memory-Mapped Database LMDB versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underflow in the readline function of mdbload. When processing malformed input containing an embedded NUL byte, an unsigned offset calculation can underflow and cause...

4.6CVSS6.5AI score0.00127EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.4 views

OpenLDAP Lightning Memory-Mapped Database 数字错误漏洞

OpenLDAP Lightning Memory-Mapped Database is an OpenLDAP open source high performance database. A numeric error vulnerability exists in OpenLDAP Lightning Memory-Mapped Database, which stems from a heap buffer overflow in the readline function, which could lead to a denial of service and limited...

4.6CVSS6.6AI score0.00127EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000260)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000260 advisory. An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write...

8.8CVSS6.8AI score0.00763EPSS
Exploits0References4
CVE
CVE
added 2026/01/05 9:32 a.m.22 views

CVE-2025-68760

The CVE-2025-68760 entry concerns a Linux kernel vulnerability in the AMD IOMMU where iommu_mmio_write() validates the user offset against mmio_phys_end - 4 (assuming 4-byte access), but iommu_mmio_show() performs an 8-byte read (readq). If the offset equals mmio_phys_end - 4, this allows a 4-byt...

6.1AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2026/01/05 9:32 a.m.10 views

CVE-2025-68760 iommu/amd: Fix potential out-of-bounds read in iommu_mmio_show

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix potential out-of-bounds read in iommummioshow In iommummiowrite, it validates the user-provided offset with the check: iommu-dbgmmiooffset iommu-mmiophysend - 4. This assumes a 4-byte access. However, the...

6.1AI score0.00155EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/25 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2022-50736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/siw: Fix immediate work request flush to completion queue Correctly set send queue element opcode during immediate work request flushing in post sendqueue...

6.2AI score0.00206EPSS
Exploits0References3
OSV
OSV
added 2025/12/24 1:16 p.m.12 views

UBUNTU-CVE-2022-50736

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix immediate work request flush to completion queue Correctly set send queue element opcode during immediate work request flushing in post sendqueue operation, if the QP is in ERROR state. An undefined ocode value...

5.7AI score0.00206EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/12/24 12:22 p.m.33 views

CVE-2022-50736 RDMA/siw: Fix immediate work request flush to completion queue

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix immediate work request flush to completion queue Correctly set send queue element opcode during immediate work request flushing in post sendqueue operation, if the QP is in ERROR state. An undefined ocode value...

0.00206EPSS
Exploits0References6
CVE
CVE
added 2025/12/24 10:55 a.m.28 views

CVE-2023-54024

The CVE-2023-54024 issue affects the Linux kernel’s KVM coalesced MMIO path. If the kernel’s kvm_io_bus_unregister_dev() removal fails, the code now destroys and frees the target coalesced MMIO device to avoid an unreferenced memory leak and inconsistent state. The provided description notes that...

6.2AI score0.00161EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 10:55 a.m.3 views

CVE-2023-54024 KVM: Destroy target device if coalesced MMIO unregistration fails

In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clearly noted in the code, kvmiobusunregisterdev does not destroy the targ...

6.4AI score0.00161EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.10 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to destroy the target device when the KVM merge MMIO device logout fails, potentially leading to...

6.1AI score0.00161EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.12 views

PT-2025-52981

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to KVM Kernel-based Virtual Machine coalesced MMIO Memory Mapped I/O unregistration. Specifically, the target device is not properly destroyed an...

7.8CVSS6.4AI score0.00462EPSS
Exploits2References897
Packet Storm News
Packet Storm News
added 2025/12/17 12:0 a.m.9 views

CAPIO: Safe Kernel-Bypass of Commodity Devices Using Capabilities

Securing low-latency I/O in commodity systems forces a fundamental trade-off: rely on the kernel's high overhead mediated interface, or bypass it entirely, exposing sensitive hardware resources to userspace and creating new vulnerabilities. This dilemma stems from a hardware granularity mismatch:...

6.8AI score
Exploits0
CVE
CVE
added 2025/12/08 1:16 a.m.19 views

CVE-2022-50615

CVE-2022-50615 affects the Linux kernel’s perf/x86/intel/uncore code. The root cause is a reference-count leak in snr_uncore_mmio_map() where pci_get_device() increases the pci_dev reference count and snr_uncore_get_mc_dev() returns a pci_dev with an extra reference. The fix is to call pci_dev_pu...

6AI score0.00174EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.30 views

PT-2025-49456

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the snr uncore mmio map function within the perf/x86/intel/uncore module of the Linux kernel. The pci get device function increases the reference count f...

7.8CVSS7.2AI score0.00462EPSS
Exploits2References896
RedHat Linux
RedHat Linux
added 2025/12/04 12:50 p.m.3 views

kernel: i40e: fix MMIO write access to an invalid page in i40e_clear_hw

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/18 9:2 a.m.1 views

kernel: i40e: fix MMIO write access to an invalid page in i40e_clear_hw

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.5 views

kernel: x86/tdx: Fix "in-kernel MMIO" check

A flaw was found in the Linux kernel. Userspace can deceive the kernel into performing MMIO Memory-Mapped IO operations in TDX Trust Domain Extensions on its behalf, allowing a VE Virtualization Exception to be incorrectly handled as a in-kernel MMIO operation...

7.8CVSS7.1AI score0.00247EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/10/24 12:0 a.m.4 views

PT-2025-43619

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where sysfs attributes not applicable for Virtual Functions VFs are exposed. Specifically, VFs are unable to read the BMG PCIE CAP0x138340 register or...

6.3AI score0.00168EPSS
Exploits0References4
Rows per page
Query Builder