Lucene search
K

91 matches found

CNNVD
CNNVD
added 2026/05/08 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an issue with TOCTOU function calls in the rustbinder module. This vulnerability could allow the...

7.8CVSS5.8AI score0.00099EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-39094

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Time-of-Check to Time-of-Use TOCTOU issue exists in the rust binder component. When a transaction is sent, the offsets array is copied into the target process's virtual memory area VMA...

7.8CVSS5.8AI score0.00099EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, caused by an error in the execution order of the one-way garbage detection logic in rustbinder, as well as the...

5.5CVSS5.9AI score0.00121EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/03/29 11:23 p.m.4 views

SUSE CVE-2026-23400

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/29 4:55 p.m.2 views

CVE-2026-23400

A flaw was found in the Linux kernel's rustbinder component. A local user could potentially trigger a deadlock condition. This occurs when the setnotificationdone function is called while the proc lock is already held and the current thread is not a 'looper' a thread designed to handle specific...

5.8AI score0.0009EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/29 3:30 p.m.4 views

EUVD-2026-16993

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.8AI score0.0009EPSS
Exploits0References4
NVD
NVD
added 2026/03/29 1:16 p.m.4 views

CVE-2026-23400

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.5CVSS0.0009EPSS
Exploits0References3
OSV
OSV
added 2026/03/29 1:16 p.m.4 views

UBUNTU-CVE-2026-23400

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/29 12:55 p.m.1 views

CVE-2026-23400

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.8AI score0.0009EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/03/29 12:55 p.m.25 views

CVE-2026-23400 rust_binder: call set_notification_done() without proc lock

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

0.0009EPSS
Exploits0References3
CVE
CVE
added 2026/03/29 12:55 p.m.23 views

CVE-2026-23400

Summary of CVE-2026-23400 : In the Linux kernel, the rust_binder component is affected by a deadlock risk when processing death notifications. The root cause is calling set_notification_done() while the process lock (proc lock) is still held and the current thread is not a looper, which can cause...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/29 12:55 p.m.3 views

CVE-2026-23400 rust_binder: call set_notification_done() without proc lock

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/03/29 12:55 p.m.4 views

CVE-2026-23400

In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of events on a death listener: 1. The remote process dies and sends a BRDEADBINDER message. 2. The local process invokes the...

5.5CVSS5.4AI score0.0009EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/29 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23400

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rustbinder: call setnotificationdone without proc lock Consider the following sequence of...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/29 12:0 a.m.5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from rustbinder calling setnotificationdone when holding the proc lock, potentially leading to a...

5.5CVSS5.8AI score0.0009EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/02/16 12:25 a.m.3 views

SUSE CVE-2026-23194

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

7.8CVSS5.5AI score0.00112EPSS
Exploits0References3
NVD
NVD
added 2026/02/14 5:15 p.m.9 views

CVE-2026-23194

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

7.8CVSS0.00112EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/14 5:15 p.m.4 views

CVE-2026-23194

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

7.8CVSS5.8AI score0.00112EPSS
Exploits0References4
OSV
OSV
added 2026/02/14 5:15 p.m.4 views

UBUNTU-CVE-2026-23194

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

7.8CVSS5.9AI score0.00112EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/14 4:27 p.m.5 views

CVE-2026-23194

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

5.4AI score0.00112EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder