Lucene search
K

1060 matches found

Cvelist
Cvelist
added 2026/06/25 8:38 a.m.29 views

CVE-2026-53157 net: phonet: free phonet_device after RCU grace period

In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonetdevice after RCU grace period phonetdevicedestroy removes a phonetdevice from the per-net device list with listdelrcu, but frees it immediately. RCU readers walking the same list can still hold a pointer t...

0.00135EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.12 views

PT-2026-52342

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk eth soc: Fix use-after-free in metadata dst teardown mtk free dev calls metadata dst free which frees the metadata dst with kfree immediately, bypassing the RCU grace period. In the RX path, skb dst set noref...

9.8CVSS5.7AI score0.00507EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38815

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix refcount saturation and potential UAF in qrtrportremove In qrtrportremove, the socket reference count is decremented via sockput before the port is removed from the qrtrports XArray and before the RCU grace period...

5.7AI score0.00135EPSS
Exploits0References9
NVD
NVD
added 2026/06/24 5:17 p.m.10 views

CVE-2026-53128

In the Linux kernel, the following vulnerability has been resolved: drbd: Balance RCU calls in drbdadmdumpdevices Make drbdadmdumpdevices call rcureadlock before rcureadunlock is called. This has been detected by the Clang thread-safety analyzer...

5.5CVSS0.00117EPSS
Exploits0References8
NVD
NVD
added 2026/06/24 5:17 p.m.10 views

CVE-2026-53096

In the Linux kernel, the following vulnerability has been resolved: bpf: Use RCU-safe iteration in devmapredirectmulti SKB path The DEVMAPHASH branch in devmapredirectmulti uses hlistforeachentrysafe to iterate hash buckets, but this function runs under RCU protection called from...

7.8CVSS0.00132EPSS
Exploits0References7
NVD
NVD
added 2026/06/24 5:17 p.m.5 views

CVE-2026-52975

In the Linux kernel, the following vulnerability has been resolved: bonding: 3ad: implement proper RCU rules for port-aggregator syzbot found a data-race in bond3adgetactiveagginfo / bond3adstatemachinehandler 1 which hints at lack of proper RCU implementation. Add rcu qualifier to port-aggregato...

7.8CVSS0.00138EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/24 4:30 p.m.5 views

EUVD-2026-38996

In the Linux kernel, the following vulnerability has been resolved: drbd: Balance RCU calls in drbdadmdumpdevices Make drbdadmdumpdevices call rcureadlock before rcureadunlock is called. This has been detected by the Clang thread-safety analyzer...

5.7AI score0.00117EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:30 p.m.9 views

CVE-2026-53128

CVE-2026-53128 affects the Linux kernel DRBD path, specifically drbd_adm_dump_devices(). The root cause is that rcu_read_lock() was not held across the RCU read section before rcu_read_unlock(), as flagged by the Clang thread-safety analyzer. The CVE is tracked in OSV and Debian advisories, with ...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/06/24 4:30 p.m.5 views

EUVD-2026-38974

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not allow deleting local storage in NMI Currently, local storage may deadlock when deferring freeing selem or local storage through kfreercu, callrcu or callrcutaskstrace in NMI or reentrant. Since deleting selem in NMI i...

5.8AI score0.00145EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 4:30 p.m.9 views

CVE-2026-53106

CVE-2026-53106 affects the Linux kernel BPF storage deletion flow. The issue arises when local storage is freed via kfree_rcu(), call_rcu(), or call_rcu_tasks_trace() in NMI or reentrant contexts, which can lead to a deadlock. The documented mitigation in NMI is to return an error from bpf_xxx_st...

5.8AI score0.00145EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 4:30 p.m.13 views

CVE-2026-53096

CVE-2026-53096 affects Linux kernel code path in BPF dev_map_redirect_multi() where DEVMAP_HASH uses hlist_for_each_entry_safe() under RCU protection. The function iterates hash buckets without rcu_dereference(), exposing risk of partially constructed nodes on weakly-ordered architectures (ARM64,...

7.8CVSS5.7AI score0.00132EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/24 4:30 p.m.29 views

CVE-2026-53096 bpf: Use RCU-safe iteration in dev_map_redirect_multi() SKB path

In the Linux kernel, the following vulnerability has been resolved: bpf: Use RCU-safe iteration in devmapredirectmulti SKB path The DEVMAPHASH branch in devmapredirectmulti uses hlistforeachentrysafe to iterate hash buckets, but this function runs under RCU protection called from...

7.8CVSS0.00132EPSS
Exploits0References7
CVE
CVE
added 2026/06/24 4:29 p.m.8 views

CVE-2026-53011

The CVE-2026-53011 issue affects the Linux kernel net/sched taprio code. In advance_sched(), when should_change_schedules() is true, switch_schedules() promotes the admin schedule to oper and queues the old oper for RCU freeing, but next may still point into the old oper. The subsequent end_time ...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/24 4:28 p.m.26 views

CVE-2026-52975 bonding: 3ad: implement proper RCU rules for port->aggregator

In the Linux kernel, the following vulnerability has been resolved: bonding: 3ad: implement proper RCU rules for port-aggregator syzbot found a data-race in bond3adgetactiveagginfo / bond3adstatemachinehandler 1 which hints at lack of proper RCU implementation. Add rcu qualifier to port-aggregato...

7.8CVSS0.00138EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.6 views

CVE-2026-52975

In the Linux kernel, the following vulnerability has been resolved: bonding: 3ad: implement proper RCU rules for port-aggregator syzbot found a data-race in bond3adgetactiveagginfo / bond3adstatemachinehandler 1 which hints at lack of proper RCU implementation. Add rcu qualifier to port-aggregato...

7.8CVSS5.7AI score0.00138EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/06/24 4:26 p.m.26 views

CVE-2026-52947 net: qrtr: fix refcount saturation and potential UAF in qrtr_port_remove

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix refcount saturation and potential UAF in qrtrportremove In qrtrportremove, the socket reference count is decremented via sockput before the port is removed from the qrtrports XArray and before the RCU grace period...

7.8CVSS0.00135EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:26 p.m.7 views

CVE-2026-52946

Summary of CVE-2026-52946 (Linux kernel) Root cause: A SOFTIRQ-unsafe lock order deadlock occurs in fasync signaling for process groups when signals are delivered. Specifically, send_sigio() and send_sigurg() traverse the task list under read_lock(&tasklist_lock) from softirq context, which can d...

7.5CVSS5.8AI score0.00612EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/06/24 4:26 p.m.27 views

CVE-2026-52946 fs/fcntl: fix SOFTIRQ-unsafe lock order in fasync signaling

In the Linux kernel, the following vulnerability has been resolved: fs/fcntl: fix SOFTIRQ-unsafe lock order in fasync signaling A SOFTIRQ-safe to SOFTIRQ-unsafe lock order deadlock can occur in sendsigio and sendsigurg when a process group receives a signal. When FASYNC is configured for a proces...

7.5CVSS0.00612EPSS
Exploits0References9
OSV
OSV
added 2026/06/24 8:16 a.m.6 views

UBUNTU-CVE-2026-52938

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL pointer dereference in bpfskstorageclone and diag paths bpfselemunlinknofail sets SDATAselem-smap to NULL before removing the selem from the storage hlist. A concurrent RCU reader in bpfskstorageclone can observe th...

5.6AI score0.00145EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 7:14 a.m.7 views

EUVD-2026-38728

In the Linux kernel, the following vulnerability has been resolved: vrf: Fix a potential NPD when removing a port from a VRF RCU readers that identified a net device as a VRF port using netifisl3slave assume that a subsequent call to netdevmasterupperdevgetrcu will return a VRF device. They then...

5.8AI score0.00164EPSS
Exploits0References8
Rows per page
Query Builder