Lucene search
K

397 matches found

UbuntuCve
UbuntuCve
added 2025/12/24 11:16 a.m.3 views

CVE-2025-68366

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbdgenlconnect There is one use-after-free warning when running NBDCMDCONNECT and NBDCLEARSOCK: nbdgenlconnect nbdallocandinitconfig // configrefs=1 nbdstartdevice // configrefs=2 set NBDRTHASCONFIGREF...

5.9AI score0.00165EPSS
Exploits0References34
NVD
NVD
added 2025/12/24 11:16 a.m.4 views

CVE-2025-68372

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

0.00165EPSS
Exploits0References8
OSV
OSV
added 2025/12/24 11:16 a.m.10 views

UBUNTU-CVE-2025-68366

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbdgenlconnect There is one use-after-free warning when running NBDCMDCONNECT and NBDCLEARSOCK: nbdgenlconnect nbdallocandinitconfig // configrefs=1 nbdstartdevice // configrefs=2 set NBDRTHASCONFIGREF...

5.7AI score0.00165EPSS
Exploits0References36
OSV
OSV
added 2025/12/24 11:16 a.m.9 views

AZL-73123 CVE-2025-68372 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

5.8AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/12/24 11:16 a.m.4 views

UBUNTU-CVE-2025-68372

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

5.8AI score0.00165EPSS
Exploits0References36
UbuntuCve
UbuntuCve
added 2025/12/24 11:16 a.m.4 views

CVE-2025-68372

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

5.8AI score0.00165EPSS
Exploits0References34
Cvelist
Cvelist
added 2025/12/24 10:33 a.m.25 views

CVE-2025-68372 nbd: defer config put in recv_work

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

0.00165EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2025/12/24 10:33 a.m.3 views

CVE-2025-68372

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

5.2AI score0.00165EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2025/12/24 10:33 a.m.5 views

CVE-2025-68372 nbd: defer config put in recv_work

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

6.3AI score0.00165EPSS
Exploits0References11
OSV
OSV
added 2025/12/24 10:32 a.m.3 views

CVE-2025-68366 nbd: defer config unlock in nbd_genl_connect

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbdgenlconnect There is one use-after-free warning when running NBDCMDCONNECT and NBDCLEARSOCK: nbdgenlconnect nbdallocandinitconfig // configrefs=1 nbdstartdevice // configrefs=2 set NBDRTHASCONFIGREF...

6.4AI score0.00165EPSS
Exploits0References11
CVE
CVE
added 2025/12/24 10:32 a.m.47 views

CVE-2025-68366

CVE-2025-68366 is a Linux kernel use-after-free in NBD config handling. The issue stemmed from a faulty refcount path in nbd_genl_connect where config_refs could be incremented after a pending config work, leading to use-after-free when NBD commands were processed. Connected docs show the fix def...

6.2AI score0.00165EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2025/12/24 10:32 a.m.2 views

CVE-2025-68366

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbdgenlconnect There is one use-after-free warning when running NBDCMDCONNECT and NBDCLEARSOCK: nbdgenlconnect nbdallocandinitconfig // configrefs=1 nbdstartdevice // configrefs=2 set NBDRTHASCONFIGREF...

5.2AI score0.00165EPSS
Exploits0References9Affected Software1
RedHat Linux
RedHat Linux
added 2025/12/17 3:33 a.m.3 views

kernel: nbd: fix incomplete validation of ioctl arg

A flaw has been found in the Linux kernel’s NBD drivers.The issue stems from incomplete validation of IOCTL arguments passed to the NBD driver. Specifically, oversized or unchecked arguments may lead to a signed integer overflow in blockwritefullpage and misuse of argument values cast to int in...

5.5CVSS7.2AI score0.00136EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2025/12/04 9:3 a.m.6 views

kernel-rt security update

An update is available for kernel-rt. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel-rt packages provide the Real Time Linux Kernel, which enables...

7.8CVSS7.1AI score0.00163EPSS
Exploits0
OSV
OSV
added 2025/12/04 9:2 a.m.5 views

RLSA-2025:22388 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: handle getclientlocked failure in nfsd4setclientidconfirm CVE-2025-38724 kernel: smb: client: fix race with concurrent opens in rename2 CVE-2025-39825 kernel: mm/memory-failure: fix...

7.6CVSS6.3AI score0.00163EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.10 views

RockyLinux 8 : kernel (RLSA-2025:22388)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:22388 advisory. kernel: nfsd: handle getclientlocked failure in nfsd4setclientidconfirm CVE-2025-38724 kernel: smb: client: fix race with concurrent opens in rename2...

7.8CVSS7.1AI score0.00163EPSS
Exploits0References12
OSV
OSV
added 2025/12/03 2:39 p.m.5 views

CLSA-2025-1764772736 libnbd: Fix of CVE-2024-7383

CVE-2024-7383: verify NBD server's certificate to prevent man-in-the-middle attack on NBD traffic...

7.4CVSS7.1AI score0.0039EPSS
Exploits0References1
OSV
OSV
added 2025/12/03 10:10 a.m.13 views

USN-7774-1 linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-nvidia-tegra, linux-nvidia-tegra-5.15, linux-oracle, linux-raspi, linux-xilinx-zynqmp vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Serial ATA and Parallel ATA...

7.8CVSS6.5AI score0.01345EPSS
Exploits8References143
RedHat Linux
RedHat Linux
added 2025/12/01 6:11 a.m.6 views

kernel: nbd: fix incomplete validation of ioctl arg

A flaw has been found in the Linux kernel’s NBD drivers.The issue stems from incomplete validation of IOCTL arguments passed to the NBD driver. Specifically, oversized or unchecked arguments may lead to a signed integer overflow in blockwritefullpage and misuse of argument values cast to int in...

5.5CVSS7.2AI score0.00136EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 6:11 a.m.16 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS6.7AI score0.00207EPSS
Exploits0References7
Rows per page
Query Builder