Lucene search
+L

712 matches found

UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.9 views

CVE-2026-43378

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2open The opinfo pointer obtained via rcudereferencefp-fopinfo is dereferenced after rcureadunlock, creating a use-after-free window...

9.8CVSS5.7AI score0.00308EPSS
Exploits0References22
Cvelist
Cvelist
added 2026/05/08 2:21 p.m.45 views

CVE-2026-43379 ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smblazyparentleasebreakclose opinfo pointer obtained via rcudereferencefp-fopinfo is being accessed after rcureadunlock has been called. This creates a race condition where the memory could be freed b...

9.8CVSS0.00444EPSS
Exploits0References5
CVE
CVE
added 2026/05/08 2:21 p.m.19 views

CVE-2026-43378

CVE-2026-43378 affects the Linux kernel SMB server (smb2_open). A use-after-free arises because the opinfo pointer obtained via rcu_dereference(fp->f_opinfo) is dereferenced after rcu_read_unlock(), creating a use-after-free window. Multiple sources (SUSE, Red Hat, Debian OSV, Ubuntu, Debian t...

9.8CVSS5.8AI score0.00308EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:21 p.m.9 views

CVE-2026-43378

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2open The opinfo pointer obtained via rcudereferencefp-fopinfo is dereferenced after rcureadunlock, creating a use-after-free window...

5.7AI score0.00308EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/05/08 2:21 p.m.43 views

CVE-2026-43378 smb: server: fix use-after-free in smb2_open()

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2open The opinfo pointer obtained via rcudereferencefp-fopinfo is dereferenced after rcureadunlock, creating a use-after-free window...

9.8CVSS0.00308EPSS
Exploits0References6
OSV
OSV
added 2026/05/08 2:21 p.m.5 views

CVE-2026-43378 smb: server: fix use-after-free in smb2_open()

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2open The opinfo pointer obtained via rcudereferencefp-fopinfo is dereferenced after rcureadunlock, creating a use-after-free window...

9.8CVSS5.8AI score0.00308EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43378

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: server: fix use-after-free in smb2open The opinfo pointer obtained via rcudereferencefp-fopinfo is dereferenced after rcureadunlock, creating a...

9.8CVSS6.1AI score0.00308EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.18 views

PT-2026-39039

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the SMB server component. The opinfo pointer, obtained through the rcu dereferencefp-f opinfo function, is dereferenced after the rcu read unlock functio...

9.8CVSS5.8AI score0.00308EPSS
Exploits0
GithubExploit
GithubExploit
added 2026/05/04 10:3 p.m.177 views

Exploit for CVE-2026-31717

CVE-2026-31717: ksmbd DHnC Durable-Handle Reconnect Access-Con...

8.8CVSS5.8AI score0.00437EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2026/05/02 8:4 a.m.10 views

smb: server: fix active_num_conn leak on transport allocation failure

...

7.5CVSS5.8AI score0.00542EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.16 views

SUSE CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS5.8AI score0.00542EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 2:16 p.m.10 views

CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS0.00542EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.5 views

CVE-2026-31717

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate owner of durable handle on reconnect Currently, ksmbd does not verify if the user attempting to reconnect to a durable handle is the same user who originally opened the file. This allows any authenticated user to...

8.8CVSS5.8AI score0.00437EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/05/01 1:56 p.m.28 views

CVE-2026-31711

CVE-2026-31711 concerns the Linux kernel ksmbd server where a leak of active_num_conn occurs during transport allocation failure. The issue lets an unauthenticated remote attacker exacerbate memory pressure by holding connections with large RFC1002 lengths, causing the max_connections pool to be ...

7.5CVSS5.8AI score0.00542EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.3 views

CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS5.8AI score0.00542EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 1:56 p.m.6 views

CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS5.7AI score0.00542EPSS
Exploits0
EUVD
EUVD
added 2026/05/01 1:56 p.m.14 views

EUVD-2026-26520

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

5.8AI score0.00542EPSS
Exploits0References5
OSV
OSV
added 2026/05/01 1:56 p.m.2 views

CVE-2026-31711 smb: server: fix active_num_conn leak on transport allocation failure

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS6.6AI score0.00542EPSS
Exploits0References10
CVE
CVE
added 2026/05/01 1:56 p.m.16 views

CVE-2026-31706

In ksmbd (Linux kernel), CVE-2026-31706 is due to a validation flaw in smb_inherit_dacl(): the on-disk num_aces from a parent directory’s security.NTACL is trusted to size a heap allocation (kmalloc(sizeof(struct smb_ace) * num_aces * 2)) without verifying consistency with pdacl_size. An authenti...

8.8CVSS6AI score0.00369EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the smb server failing to correctly reduce the activenumconn count when transmission failure...

7.5CVSS5.8AI score0.00542EPSS
Exploits0References1
Rows per page
Query Builder