CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2 days ago•9 views

CVE-2026-53222

The CVE-2026-53222 entry concerns the Linux kernel PTP subsystem (ptp: ocp). The vulnerability arises from an incorrect order of resource freeing and unregistration during driver removal: ptp_ocp_detach() freed resources before ptp_clock_unregister(), creating a use-after-free condition. The fix ...

5.8AI score0.00155EPSS

Debian CVE•added 2 days ago•3 views

CVE-2026-53222

In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: fix resource freeing order Commit a60fc3294a37 "ptp: rework ptpclockunregister to disable events" added a call to ptpdisableallevents which changes the configuration of pins if they support EXTTS events. In ptpocpdetach...

5.6AI score0.00155EPSS

Exploits0

Tenable Nessus•added 4 days ago•5 views

Oracle Linux 9 : kernel (ELSA-2026-19225)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-19225 advisory. - xfrm: esp: avoid in-place decrypt on shared skb frags Sabrina Dubroca RHEL-174563 CVE-2026-43284 - crypto: authencesn - Do not place hiseq at end of...

8.8CVSS7.2AI score0.96775EPSS

Exploits261References5

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fixed use-after-free bugs in otx2synctstamp. The original code relies on canceldelayedwork in otx2ptpDestroy, which does not ensure that the delayed work item synctstampwork has fully completed if it was already...

7.8CVSS6.7AI score0.00135EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: micrel: Fixed the issue of receiving the timestamp in the frame for lan8841. The related commit began using the ptp workqueue to retrieve the second part of the timestamp. When the port is disabled, this workqueue is stopped...

5.5CVSS6AI score0.00225EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ptp: Ensure that info-enable callback is always set. The ioctl and sysfs handlers call the -enable callback unconditionally. Not all drivers implement this callback, resulting in NULL dereferencing. Examples of affected drivers:...

5.5CVSS6.1AI score0.00207EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Networking: DSA: Microchip: Fixed the error path in PTP IRQ setup. If the requestthreadedirq function fails during the PTP message IRQ setup, the newly created IRQ mapping is never disposed of. In fact, the error path in...

5.5CVSS5.6AI score0.00122EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: net/mlx5e: Track xmit submissions to PTP WQ after populating the metadata map. Ensure that the skb is available in the metadata mapping to skbs before tracking the metadata index to detect undelivered CQEs. If the metadata ind...

5.5CVSS5.3AI score0.00235EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: - ice: fixed the issue where calls to PF PTP cleanup iceptpcleanuppf function and the ‘pslock’ mutex deinitialization were missed during error paths involving driver removal. The cleanup process for releasing PTP resources...

6AI score0.00166EPSS

RedHat Linux•added 2026/06/04 1:4 p.m.•19 views

kernel: Linux kernel: Denial of Service in ice driver due to race condition during VSI rebuild

A flaw was found in the Linux kernel's ice network driver. A local attacker could exploit a race condition during the Virtual Station Interface VSI rebuild process. This flaw occurs when the Precision Time Protocol PTP periodic work attempts to access uninitialized memory, leading to a NULL point...

4.7CVSS5.8AI score0.00106EPSS

Exploits0References5

RedHat Linux•added 2026/06/01 10:35 p.m.•9 views

kernel: Linux kernel: Denial of Service in ice driver due to race condition during VSI rebuild

4.7CVSS5.8AI score0.00106EPSS

Exploits0References5

RedhatCVE•added 2026/05/26 8:14 p.m.•15 views

CVE-2026-5072

A bitwise shift vulnerability in Zephyr's PTP subsystem allows a remote attacker to cause undefined behavior and potential system crashes. An attacker sends a crafted PTPMSGMANAGEMENT message to set an unvalidated negative logannounceinterval value in the port's data set. When a subsequent...

6.5CVSS5.9AI score0.00187EPSS

NVD•added 2026/05/22 8:16 a.m.•12 views

CVE-2026-5072

6.5CVSS0.00187EPSS

Positive Technologies•added 2026/05/22 12:0 a.m.•12 views

PT-2026-42731

A bitwise shift vulnerability in Zephyr's PTP subsystem allows a remote attacker to cause undefined behavior and potential system crashes. An attacker sends a crafted PTP MSG MANAGEMENT message to set an unvalidated negative log announce interval value in the port's data set. When a subsequent PT...

5.9AI score0.00187EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Ice: Fixed a NULL pointer dereferencing during VSI rebuild. A race condition occurred where PTP periodic work ran while VSI was being rebuilt, leading to access to NULL vsi-rxrings. The sequence was as follows: 1...

4.7CVSS5.2AI score0.00106EPSS

SUSE CVE•added 2026/05/11 2:13 p.m.•6 views

SUSE CVE-2026-43447

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f "iavf: periodically cache PHC time" introduced a worker to cache PHC time, but failed to stop it during reset or disable. This creates a race condition where...

7.8CVSS5.7AI score0.00124EPSS

Exploits0References3

RedhatCVE•added 2026/05/08 9:1 p.m.•16 views

CVE-2026-43372

A flaw was found in the Linux kernel's Microchip DSA Distributed Switch Architecture driver. During the setup of a PTP Precision Time Protocol interrupt, an error can occur where system resources are not properly released. This resource leak could allow a local attacker to cause a denial of servi...

5.5CVSS5.8AI score0.00122EPSS

RedhatCVE•added 2026/05/08 5:8 p.m.•11 views

CVE-2026-43447

A flaw was found in the Linux kernel's iavf driver. A race condition exists where the Precision Time Protocol PTP worker attempts to access adapter resources that have already been freed during a reset or disable operation. This use-after-free vulnerability can lead to a system crash, resulting i...

7.8CVSS5.8AI score0.00124EPSS

EUVD•added 2026/05/08 3:31 p.m.•10 views

EUVD-2026-28753

5.8AI score0.00124EPSS