Lucene search
+L

712 matches found

Cvelist
Cvelist
added 2026/04/24 2:30 p.m.38 views

CVE-2026-31538 smb: server: make use of smbdirect_socket.recv_io.credits.available

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS0.00426EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5AI score0.00121EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/24 2:30 p.m.38 views

CVE-2026-31537 smb: server: make use of smbdirect_socket.send_io.bcredits

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/24 2:30 p.m.6 views

EUVD-2026-25429

In the Linux kernel, the following vulnerability has been resolved: smb: server: let senddone handle a completion without IBSENDSIGNALED With smbdirectsendbatch processing we likely have requests without IBSENDSIGNALED, which will be destroyed in the final request that has IBSENDSIGNALED set. If...

5.4AI score0.00442EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:30 p.m.3 views

CVE-2026-31536

In the Linux kernel, the following vulnerability has been resolved: smb: server: let senddone handle a completion without IBSENDSIGNALED With smbdirectsendbatch processing we likely have requests without IBSENDSIGNALED, which will be destroyed in the final request that has IBSENDSIGNALED set. If...

5.4AI score0.00442EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/04/24 2:30 p.m.8 views

CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5CVSS5.4AI score0.00121EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/24 2:30 p.m.35 views

CVE-2026-31536 smb: server: let send_done handle a completion without IB_SEND_SIGNALED

In the Linux kernel, the following vulnerability has been resolved: smb: server: let senddone handle a completion without IBSENDSIGNALED With smbdirectsendbatch processing we likely have requests without IBSENDSIGNALED, which will be destroyed in the final request that has IBSENDSIGNALED set. If...

9.8CVSS0.00442EPSS
Exploits0References3
CVE
CVE
added 2026/04/24 2:30 p.m.29 views

CVE-2026-31536

The vulnerability CVE-2026-31536 affects the Linux kernel SMB direct server implementation. In smb: server: let send_done handle a completion without IB_SEND_SIGNALED, during smbdirect_send_batch processing requests may be processed without IB_SEND_SIGNALED and could be destroyed in the final req...

9.8CVSS5.4AI score0.00442EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/04/24 2:30 p.m.19 views

CVE-2026-31537

In the Linux kernel SMB server, CVE-2026-31537 arises from improper handling of smbdirect_socket.send_io.bcredits, which can corrupt the stream of reassembled data transfer messages when triggering an immediate (empty) send. The fix introduces a single batch credit per connection; code obtaining ...

5.5CVSS5.5AI score0.00121EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31537 smb: server: make use of smbdirect_socket.send_io.bcredits

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5CVSS6AI score0.00121EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.15 views

PT-2026-34890

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirect socket.recv io.credits.available The logic off managing recv credits by counting posted recv io and granted credits is racy. That's because the peer might already consumed a credit, but between...

5.4AI score0.00426EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.14 views

PT-2026-34889

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw in the SMB server implementation causes corruption of the stream of reassembled data transfer messages when an immediate empty send is triggered. This occurs due to the improper...

5.5CVSS5.3AI score0.00121EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.22 views

PT-2026-34888

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the SMB server component where the send done function needs to handle completions that lack the IB SEND SIGNALED flag. During smbdirect send batch processing, requests...

9.8CVSS7.7AI score0.00442EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.6 views

SUSE SLES15 Security Update : kernel (Live Patch 19 for SUSE Linux Enterprise 15 SP6) (SUSE-SU-2026:1274-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1274-1 advisory. This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.84 fixes various security issues The following security issues were fixed: -...

7.8CVSS5.9AI score0.00344EPSS
Exploits7References18
SUSE CVE
SUSE CVE
added 2026/04/03 11:28 p.m.7 views

SUSE CVE-2026-23428

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of shareconf in compound request smb2getksmbdtcon reuses work-tcon in compound requests without validating tcon-tstate. ksmbdtreeconnlookup checks tstate == TREECONNECTED on the initial lookup path, but...

9.8CVSS5.8AI score0.00331EPSS
Exploits0References3
Redos
Redos
added 2026/04/03 12:0 a.m.6 views

ROS-20260403-73-0003

A vulnerability in the ksmbdsessionrpcopen function in the fs/smb/server/mgmt/usersession.c module of the Linux kernel SMB server support is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availabili...

7.8CVSS6.6AI score0.00195EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 3:0 p.m.5 views

CVE-2026-24294

Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.02762EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.5 views

CVE-2026-23364

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Compare MACs in constant time To prevent timing attacks, MAC comparisons need to be constant-time. Replace the memcmp with the correct function, cryptomemneq...

7.4CVSS5.1AI score0.00392EPSS
Exploits0
Redos
Redos
added 2026/03/24 12:0 a.m.14 views

ROS-20260324-73-0001

A vulnerability in the smb2sesssetup function in the fs/smb/server/smb2pdu.c module of the Linux kernel SMB server support is related to synchronization errors when using a shared resource. Exploitation of the vulnerability may allow a remote attacker to affect confidentiality, integrity and...

8.5CVSS6.5AI score0.00391EPSS
Exploits1
Redos
Redos
added 2026/03/23 12:0 a.m.6 views

ROS-20260323-73-0030

A vulnerability in the smb2setea function of the fs/smb/server/smb2pdu.c module of the Linux kernel SMB server support is related to buffer copying without checking the size of the input data classic buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of...

5.5CVSS6AI score0.00232EPSS
Exploits1
Rows per page
Query Builder