Lucene search
+L

270 matches found

nessus
nessus
added 2026/06/28 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/smc: fix sleep-inside-lock in smcsetsockopt causing local DoS A logic flaw in smcsetsockopt allows a local unprivileged user to cause a Denial of Service Do...

5.5CVSS6.1AI score0.00126EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/25 5:47 p.m.7 views

CVE-2026-53274

A flaw was found in the Linux kernel's net/smc component. A local unprivileged user can exploit a logic flaw, specifically a 'sleep-inside-lock' issue within the smcsetsockopt function. By providing a specially crafted memory page, an attacker can cause the system to halt execution, leading to a...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References4
osv
osv
added 2026/06/25 8:39 a.m.4 views

CVE-2026-53274 net/smc: fix sleep-inside-lock in __smc_setsockopt() causing local DoS

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix sleep-inside-lock in smcsetsockopt causing local DoS A logic flaw in smcsetsockopt allows a local unprivileged user to cause a Denial of Service DoS by holding the socket lock indefinitely. The function smcsetsockopt...

5.5CVSS6AI score0.00126EPSS
Exploits0References9
debiancve
debiancve
added 2026/06/24 7:14 a.m.6 views

CVE-2026-52941

In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid NULL deref of conn-lnk in smcmsgevent tracepoint The smcmsgevent tracepoint class, shared by smctxsendmsg and smcrxrecvmsg, unconditionally dereferences smc-conn.lnk: stringname, smc-conn.lnk-ibname conn-lnk is onl...

5.5CVSS5.7AI score0.00116EPSS
Exploits0
osv
osv
added 2026/06/09 2:16 p.m.8 views

UBUNTU-CVE-2026-46330

In the Linux kernel, the following vulnerability has been resolved: Revert "net/smc: Introduce TCP ULP support" This reverts commit d7cd421da9da2cc7b4d25b8537f66db5c8331c40. As reported by Al Viro, the TCP ULP support for SMC is fundamentally broken. The implementation attempts to convert an acti...

7.8CVSS5.3AI score0.00112EPSS
Exploits0References3
cvelist
cvelist
added 2026/06/09 12:25 p.m.36 views

CVE-2026-46330 Revert "net/smc: Introduce TCP ULP support"

In the Linux kernel, the following vulnerability has been resolved: Revert "net/smc: Introduce TCP ULP support" This reverts commit d7cd421da9da2cc7b4d25b8537f66db5c8331c40. As reported by Al Viro, the TCP ULP support for SMC is fundamentally broken. The implementation attempts to convert an acti...

7.8CVSS0.00112EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/06/09 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from design flaws in the TCP ULP support implemented in the net/smc module. This vulnerability allows an...

7.8CVSS5.3AI score0.00112EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/27 8:21 p.m.11 views

CVE-2026-46027

A flaw was found in the Linux kernel's net/smc component. A remote attacker could exploit this by sending a Connection Less Connection CLC decline message during an early handshake stage. This causes the system to attempt to update link-group level synchronization state before it is properly...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References4
nvd
nvd
added 2026/05/27 2:17 p.m.11 views

CVE-2026-46027

In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid early lgr access in smcclcwaitmsg A CLC decline can be received while the handshake is still in an early stage, before the connection has been associated with a link group. The decline handling in smcclcwaitmsg...

7.5CVSS0.00501EPSS
Exploits0References8
nessus
nessus
added 2026/05/27 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-46027

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/smc: avoid early lgr access in smcclcwaitmsg A CLC decline can be received while the handshake is still in an early stage, before the connection has been...

7.5CVSS5.9AI score0.00501EPSS
Exploits0References3
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: net/smc: A NULL pointer dereferencing issue was addressed in smcpnetfindib. The devname function was called with dev.parent as an argument, but without performing a NULL-check before using it. This issue was resolved by checking...

5.5CVSS6.2AI score0.00252EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: net/smc: Fixed the LGR and link use-after-free issue. We encountered a use-after-free issue with the LGR/link reference count. This issue manifested when the LGR/link reference count reached 0 prematurely and entered a clearin...

7.8CVSS6.5AI score0.00222EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: net/smc: fixed a deadlock that was triggered by canceldelayedworksyn The following LOCKDEP was detected: Workqueue: events smclgrfreework smc WARNING: possible circular locking dependency detected...

5.5CVSS6.1AI score0.0011EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net/smc: Avoid overwriting the copies of clcsock callback functions. The clcsock callback functions will be saved and replaced during the fallback process. However, if the fallback occurs more than once, the copies of these...

5.5CVSS6.3AI score0.00225EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net/smc: fixed the connection leak issue. There is a potential leak issue under the following execution sequence: smcrelease, smcconnectwork if sk-skstate == SMCINIT sendclcconfirim tcpabort; ... sk-skstate = SMCACTIVE...

5.5CVSS5.9AI score0.00238EPSS
Exploits0References2
osv
osv
added 2026/04/22 1:54 p.m.1 views

CVE-2026-31507 net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix double-free of smcspdpriv when tee duplicates splice pipe buffer smcrxsplice allocates one smcspdpriv per pipebuffer and stores the pointer in pipebuffer.private. The pipebufoperations for these buffers used .get =...

7.8CVSS5.9AI score0.00131EPSS
Exploits0References13
cve
cve
added 2026/04/22 1:54 p.m.17 views

CVE-2026-31507

CVE-2026-31507 affects the Linux kernel SMC module (net/smc). The vulnerability is a double-free of the per-buffer state (smc_spd_priv) when tee(2) duplicates a splice pipe buffer, leading to a use-after-free and a kernel NULL pointer dereference, ultimately causing a kernel panic. The root cause...

7.8CVSS5.8AI score0.00131EPSS
Exploits0References10Affected Software1
nessus
nessus
added 2026/04/22 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013656)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013656 advisory. In the Linux kernel, the following vulnerability has been resolved: net/smc: Reset connection when trying to use SMCRv2 fails. We found a crash when using SMCRv2 wi...

5.5CVSS5.7AI score0.00134EPSS
Exploits0References4
nessus
nessus
added 2026/04/22 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013483)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013483 advisory. In the Linux kernel, the following vulnerability has been resolved: net/smc: Transitional solution for clcsock race issue We encountered a crash in smcsetsockopt and...

4.7CVSS5.7AI score0.0021EPSS
Exploits0References3
nessus
nessus
added 2026/04/22 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013543)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013543 advisory. In the Linux kernel, the following vulnerability has been resolved: net/smc: fix potential panic dues to unprotected smcllcsrvaddlink There is a certain chance to...

5.6AI score0.00166EPSS
Exploits0References4
Rows per page
Query Builder