CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/06 12:0 a.m.•7 views

PT-2026-37533

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4 file refcount leak in nfsd get dir deleg Claude pointed out that there is a nfs4 file refcount leak in nfsd get dir deleg. Ensure that the reference to "fp" is released before returning...

5.8AI score0.00112EPSS

Exploits0References3

RedHat Linux•added 2026/05/05 10:20 a.m.•12 views

kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache

A flaw was found in the Linux kernel's NFSv4.0 server nfsd. A remote, unauthenticated attacker can exploit this heap overflow vulnerability in the NFSv4.0 LOCK replay cache. By using two cooperating NFSv4.0 clients, where one sets a lock with a large owner string and another requests a conflictin...

9.8CVSS6.4AI score0.00644EPSS

Exploits0References5

RedHat Linux•added 2026/05/05 5:58 a.m.•5 views

kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache

9.8CVSS6.4AI score0.00644EPSS

Exploits0References5

Tenable Nessus•added 2026/05/05 12:0 a.m.•8 views

AlmaLinux 8 : kernel-rt (ALSA-2026:13578)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:13578 advisory. kernel: nvme: avoid double free special payload CVE-2024-41073 kernel: net: qlogic/qede: fix potential out-of-bounds read in qedetpacont and qedetpaend...

9.8CVSS6.8AI score0.96775EPSS

Exploits227References8

RedHat Linux•added 2026/05/04 10:20 p.m.•6 views

kernel: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache

9.8CVSS6.4AI score0.00644EPSS

Exploits0References5

RedHat Linux•added 2026/05/04 10:20 p.m.•14 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS6.1AI score0.96775EPSS

Exploits227References5

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Do not hold the layoutget locks across multiple RPC calls When performing layoutget as part of the open compound, we must be careful to release the layout locks before calling any further RPC calls, such as setattr. The...

5.5CVSS5.7AI score0.00202EPSS

5.5CVSS5.1AI score0.00235EPSS

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: cifs: Prevent NULL dereferencing in cifscomposemountoptions. The optional @ref parameter may contain a NULL nodename. Therefore, prevent dereferencing it in cifscomposemountoptions. Address-Coverity: 1476408 „Explicit NULL...

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerabilities have been resolved: NFS: Fixed a use-after-free in nfs4initclient. KASAN reported a use-after-free when attempting to mount two different exports through two different NICs that belong to the same server. Olga was able to exploit this issue with...

7.5CVSS6.3AI score0.01109EPSS

3.3CVSS6.5AI score0.004EPSS

Astra Linux – Vulnerability in Linux, Linux 5.10

A issue was discovered in fs/nfs/dir.c in the Linux kernel before version 5.16.5. If an application sets the ODIRECTORY flag and attempts to open a regular file, nfsatomicopen performs a regular lookup. If a regular file is found, ENOTDIR should be returned; however, the server instead returns...

5.5CVSS6.2AI score0.00166EPSS

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: nfs4: Fixed a memory leak when allocating slots failed. If one of the slot allocations fails, all other allocated slots should be cleaned up. Otherwise, the allocated slots will cause a leak: - Unreferenced object...

5.5CVSS5.8AI score0.00232EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: NFS: Avoid writeback threads getting stuck in mempoolalloc In situations with low memory availability, allow the NFS writeback code to fail without getting stuck in infinite loops in mempoolalloc...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: NFSD: Actions must be defined for the new timedeleg FATTR4 attributes. NFSv4 clients will not send legitimate GETATTR requests for these new attributes, as they are intended to be used only with CBGETATTR and SETATTR. However,...

5.5AI score0.00148EPSS

5.5CVSS6.5AI score0.00155EPSS

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: net: 9p: fix refcount leak in p9readwork error handling p9reqput need to be called when m-rreq-rc.sdata is NULL to avoid temporary refcount leak. Dominique: commit wording adjustments, p9reqput argument fixes for rebase...

5.5CVSS5.4AI score0.00146EPSS

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: NFS: Fixed an error in nfsdautomount When mounting from an NFSv4 reference, path-dentry may end up being a negative dentry. Therefore, the struct nfsserver structure is derived from the dentry itself instead...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: NFSv4/pNFS: The NFSINOLAYOUTCOMMIT field was cleared in pnfsmarklayoutstateidInvalidial. This fix prevents a crash occurring when the layout is null during this call stack: write inode - nfs4write inode - pnfslayoutcommit inode...

5.2AI score0.00177EPSS