Lucene search
K

21946 matches found

OSV
OSV
added 2026/04/03 4:16 p.m.8 views

UBUNTU-CVE-2026-31399

In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if deviceadd fails in ndasyncdeviceregister. Commit b6eae0f61db2 "libnvdimm: Hold reference on parent while...

7.8CVSS5.7AI score0.00119EPSS
Exploits0References9
OSV
OSV
added 2026/04/03 4:16 p.m.4 views

UBUNTU-CVE-2026-23458

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix use-after-free in ctnetlinkdumpexpct ctnetlinkdumpexpct stores a conntrack pointer in cb-data for the netlink dump callback ctnetlinkexpctdumptable, but drops the conntrack reference immediately after...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References9
EUVD
EUVD
added 2026/04/03 3:30 p.m.3 views

EUVD-2026-18636

In the Linux kernel, the following vulnerability has been resolved: net/rds: Fix circular locking dependency in rdstcptune syzbot reported a circular locking dependency in rdstcptune where sknetrefcntupgrade is called while holding the socket lock:...

5.8AI score0.00175EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/03 3:30 p.m.2 views

EUVD-2026-18650

In the Linux kernel, the following vulnerability has been resolved: drm/logicvc: Fix device node reference leak in logicvcdrmconfigparse The logicvcdrmconfigparse function calls ofgetchildbyname to find the "layers" node but fails to release the reference, leading to a device node reference leak...

5.7AI score0.00115EPSS
Exploits0References7
Circl
Circl
added 2026/04/03 3:23 p.m.4 views

GHSA-6FPF-248C-M7WM

creationtimestamp| type| source ---|---|--- 2026-04-03 15:23:03+00:00| seen| Telegram/DMrtbPbyVuvJyzUNlrr2TA99ljgvsTw1ZTHgoXyjyFD12Ec...

4.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:16 p.m.1 views

CVE-2026-31404

In the Linux kernel, the following vulnerability has been resolved: NFSD: Defer sub-object cleanup in export put callbacks svcexportput calls pathput and authdomainput immediately when the last reference drops, before the RCU grace period. RCU readers in eshow and cshow access both expath via...

5.8AI score0.00121EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:16 p.m.19 views

CVE-2026-31403 NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd

In the Linux kernel, the following vulnerability has been resolved: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module init and persists for the module's lifetime. exportsprocopen captures the caller's current network...

7.8CVSS0.00123EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/04/03 3:16 p.m.16 views

CVE-2026-31399 nvdimm/bus: Fix potential use after free in asynchronous initialization

In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if deviceadd fails in ndasyncdeviceregister. Commit b6eae0f61db2 "libnvdimm: Hold reference on parent while...

0.00119EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.3 views

CVE-2026-23471

In the Linux kernel, the following vulnerability has been resolved: drm: Fix use-after-free on framebuffers and property blobs when calling drmdevunplug When trying to do a rather aggressive test of igt's "xemoduleload --r reload" with a full desktop environment and game running I noticed a few...

5.8AI score0.00032EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.20 views

CVE-2026-23462 Bluetooth: HIDP: Fix possible UAF

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HIDP: Fix possible UAF This fixes the following trace caused by not dropping l2capconn reference when user-remove callback is called: 97.809249 l2capconnfree: freeing conn ffff88810a171c00 97.809907 CPU: 1 UID: 0 PID:...

8.8CVSS0.00262EPSS
Exploits0References8
CVE
CVE
added 2026/04/03 3:15 p.m.16 views

CVE-2026-23437

CVE-2026-23437 (Linux kernel) concerns the net: shaper module. A missing liveness check occurs when a netdev is looked up during prep of Netlink operations, a reference is taken, and later the code uses the netdev’s lock or RCU protections. The conversion from a ref to a locked netdev may proceed...

7.8CVSS5.7AI score0.00127EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.21 views

CVE-2026-23437 net: shaper: protect late read accesses to the hierarchy

In the Linux kernel, the following vulnerability has been resolved: net: shaper: protect late read accesses to the hierarchy We look up a netdev during prep of Netlink ops pre- callbacks and take a ref to it. Then later in the body of the callback we take its lock or RCU which are the actual...

7.8CVSS0.00127EPSS
Exploits0References3
CVE
CVE
added 2026/04/03 3:15 p.m.7 views

CVE-2026-23436

The CVE-2026-23436 issue affects the Linux kernel's net: shaper component. A race could occur when a netdev is unregistered between taking a reference during Netlink prep and locking/RCU in the callback, potentially leaking the hierarchy after a flush. The fix applies the instance lock in pre- st...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/04/03 2:16 p.m.3 views

CVE-2026-23426

In the Linux kernel, the following vulnerability has been resolved: drm/logicvc: Fix device node reference leak in logicvcdrmconfigparse The logicvcdrmconfigparse function calls ofgetchildbyname to find the "layers" node but fails to release the reference, leading to a device node reference leak...

5.5CVSS0.00115EPSS
Exploits0References6
NVD
NVD
added 2026/04/03 2:16 p.m.7 views

CVE-2026-23419

In the Linux kernel, the following vulnerability has been resolved: net/rds: Fix circular locking dependency in rdstcptune syzbot reported a circular locking dependency in rdstcptune where sknetrefcntupgrade is called while holding the socket lock:...

7.5CVSS0.00175EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/04/03 2:16 p.m.3 views

CVE-2026-23426

In the Linux kernel, the following vulnerability has been resolved: drm/logicvc: Fix device node reference leak in logicvcdrmconfigparse The logicvcdrmconfigparse function calls ofgetchildbyname to find the "layers" node but fails to release the reference, leading to a device node reference leak...

5.5CVSS5.7AI score0.00115EPSS
Exploits0References8
OSV
OSV
added 2026/04/03 2:16 p.m.4 views

UBUNTU-CVE-2026-23426

In the Linux kernel, the following vulnerability has been resolved: drm/logicvc: Fix device node reference leak in logicvcdrmconfigparse The logicvcdrmconfigparse function calls ofgetchildbyname to find the "layers" node but fails to release the reference, leading to a device node reference leak...

5.5CVSS5.7AI score0.00115EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/04/03 2:16 p.m.4 views

CVE-2026-23419

In the Linux kernel, the following vulnerability has been resolved: net/rds: Fix circular locking dependency in rdstcptune syzbot reported a circular locking dependency in rdstcptune where sknetrefcntupgrade is called while holding the socket lock:...

7.5CVSS5.8AI score0.00175EPSS
Exploits0References7
OSV
OSV
added 2026/04/03 2:2 p.m.1 views

MINI-M7CG-P949-J3M9

Bulletin has no description...

5.3CVSS5.8AI score0.0024EPSS
Exploits0
OSV
OSV
added 2026/04/03 2:2 p.m.0 views

MINI-V2G5-47F4-9X65

Bulletin has no description...

6.5CVSS5.9AI score0.00147EPSS
Exploits0
Rows per page
Query Builder