Lucene search
+L

882 matches found

CVE
CVE
added 2026/05/01 2:15 p.m.27 views

CVE-2026-43007

The CVE-2026-43007 entry relates to the Linux kernel accel/qaic component. Root cause: when a DBC is released, QAIC sends QAIC_TRANS_DEACTIVATE_FROM_DEV and resources are freed via decode_deactivate() in qaic_manage_ioctl() context. If the initiating user process terminates before the deactivatio...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.9 views

PT-2026-36424

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Handle DBC deactivation if the owner went away When a DBC is released, the device sends a QAIC TRANS DEACTIVATE FROM DEV transaction to the host over the QAIC CONTROL MHI channel. QAIC handles this by calling decode...

5.7AI score0.00129EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the iio gyro mpu3050 driver using the wrong interrupt handler variable in freeirq, which could lead to a...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.8 views

PT-2026-36431

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak occurs in the net: macb component. Resources allocated using the clk register fixed rate function are not properly released because the clk unregister fixed rate function...

5.5CVSS5.5AI score0.00123EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2026/04/24 8:57 p.m.6 views

CVE-2026-31629

A flaw was found in the Linux kernel's Near Field Communication NFC Logical Link Control Protocol LLCP subsystem. Missing return statements after LLCPCLOSED checks in the nfcllcprecvhdlc and nfcllcprecvdisc functions can lead to a use-after-free vulnerability. This occurs because the system...

8.8CVSS5.4AI score0.00224EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from repeatedly calling smbdirectfreesendmsg after smbdirectFlushsendlist, resulting in double releases of...

9.8CVSS5.8AI score0.00457EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the PCI endpoint driver pci-epf-vntb not disabling the delay mechanism before cleaning up the BAR...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the vub300 driver releasing and reusing resources after disconnection, potentially leading to...

7.8CVSS5.8AI score0.00115EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/23 11:11 p.m.12 views

Squid: Squid: Denial of Service via crafted ICP traffic

A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...

8.7CVSS5.7AI score0.08931EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/04/23 1:24 a.m.10 views

SUSE CVE-2026-33595

A client can trigger excessive memory allocation by generating a lot of errors responses over a single DoQ and DoH3 connection, as some resources were not properly released until the end of the connection...

7.5CVSS5.8AI score0.00371EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/22 3:31 p.m.9 views

EUVD-2026-24771

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxdwqdisablecleanup which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty all its resourc...

5.7AI score0.00123EPSS
Exploits0References7
NVD
NVD
added 2026/04/22 2:16 p.m.6 views

CVE-2026-33595

A client can trigger excessive memory allocation by generating a lot of errors responses over a single DoQ and DoH3 connection, as some resources were not properly released until the end of the connection...

7.5CVSS0.00371EPSS
Exploits0References1
NVD
NVD
added 2026/04/22 2:16 p.m.6 views

CVE-2026-31441

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxdwqdisablecleanup which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty all its resourc...

5.5CVSS0.00123EPSS
Exploits0References8
CVE
CVE
added 2026/04/22 1:53 p.m.17 views

CVE-2026-31441

CVE-2026-31441 affects the Linux kernel in the dmaengine: idxd component, where a memory leak occurs on workqueue reset. Root cause: idxd_wq_disable_cleanup() resets the wq type to NONE before resources are released. The upstream patch fixes the leak by ensuring resources are released before clea...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.12 views

PowerDNS DNSdist 安全漏洞

PowerDNS DNSdist is a proxy software provided by PowerDNS that offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from the ability of clients to trigger excessive memory allocation by generating numerous error...

7.5CVSS5.8AI score0.00371EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34439

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description A client can trigger excessive memory allocation by generating numerous error responses over a single DoQ DNS over QUIC and DoH3 DNS over HTTP/3 connection,...

7.5CVSS5.1AI score0.00489EPSS
Exploits0References48
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013525)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013525 advisory. In the Linux kernel, the following vulnerability has been resolved: vdpa: fix use-after-free on vpvdparemove When vpvdpa driver is unbind, vpvdpa is freed in...

5.5CVSS5.6AI score0.00201EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34346

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the dmaengine idxd component when a workqueue is reset. The function idxd wq disable cleanup sets the workqueue type to NONE before its resources are released,...

7.8CVSS5.8AI score0.00378EPSS
Exploits0References142
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34434

In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix leakage in construct region Failing the first sysfs update group needs to explicitly kfree the resource as it is too early for cxl region iomem release to do so...

5.6AI score0.00107EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/21 6:11 a.m.8 views

Squid: Squid: Denial of Service via crafted ICP traffic

A flaw was found in Squid. A remote attacker can exploit this vulnerability by sending specially crafted ICP Internet Cache Protocol traffic. This can lead to a Denial of Service DoS due to premature resource release and use-after-free vulnerabilities. This attack is possible in Squid deployments...

8.7CVSS5.7AI score0.08931EPSS
Exploits0References7
Rows per page
Query Builder