Lucene search
+L

638 matches found

redhat
redhat
added 2 days ago5 views

kernel: net: atm: fix crash due to unvalidated vcc pointer in sigd_send()

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM networking component. A local attacker, by acting as a malicious signaling daemon, could send a specially crafted message containing an unvalidated pointer. This unvalidated pointer would be directly used by the kernel, leading...

5.5CVSS6.1AI score0.00131EPSS
Exploits0References5
osv
osv
added 2026/07/07 4:16 p.m.3 views

DEBIAN-CVE-2026-14935

A logic vulnerability was found in GStreamer's webrtcbin component. The checksdpcrypto function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attack...

3.7CVSS6.1AI score0.0015EPSS
Exploits0References1
euvd
euvd
added 2026/07/07 3:37 p.m.8 views

EUVD-2026-42051

A logic vulnerability was found in GStreamer's webrtcbin component. The checksdpcrypto function contains an inverted boolean condition that causes it to accept remote SDP offers or answers that lack the required a=fingerprint attribute, while incorrectly rejecting those that include it. An attack...

3.7CVSS6AI score0.0015EPSS
Exploits0References4
cve
cve
added 2026/07/07 3:37 p.m.14 views

CVE-2026-14935

GStreamer webrtcbin contains a logic flaw in _check_sdp_crypto(): an inverted presence check allows remote SDP offers/answers without the a=fingerprint attribute, while rejecting ones that include it. This could let an attacker intercepting WebRTC signaling bypass the SDP-level DTLS certificate f...

3.7CVSS6AI score0.0015EPSS
Exploits0References4
nessus
nessus
added 2026/07/07 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-14935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic vulnerability was found in GStreamer's webrtcbin component. The checksdpcrypto function contains an inverted boolean condition that causes it to accept...

3.7CVSS6.1AI score0.0015EPSS
Exploits0References4
cvelist
cvelist
added 2026/07/04 9:45 a.m.39 views

CVE-2026-14623 omec-project amf NGAP Message RRCInactiveTransitionReport denial of service

A vulnerability was determined in omec-project amf up to 2.1.1. This issue affects the function RRCInactiveTransitionReport of the component NGAP Message Handler. Executing a manipulation can lead to denial of service. The attack may be performed from remote. The exploit has been publicly disclos...

5.3CVSS0.00522EPSS
Exploits0References8
redhatcve
redhatcve
added 2026/06/29 7:48 a.m.5 views

CVE-2026-53279

A flaw was found in the Linux kernel's drm/gma500/oaktraillvds component. This issue occurs during the initialization of the Low-Voltage Differential Signaling LVDS display interface. Due to improper error handling, the system may attempt to deregister an I2C adapter that is still in use, causing...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References4
nessus
nessus
added 2026/06/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-53208

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU a...

5.5CVSS6AI score0.00122EPSS
Exploits0References3
nvd
nvd
added 2026/06/27 9:16 a.m.9 views

CVE-2026-45259

sigqueue2 was marked as permitted in capability mode with the introduction of Capsicum in 2011, but the implementation of kernsigqueue did not include a capability mode check restricting signal delivery to the calling process's own PID. A process in capability mode can use sigqueue2 to send signa...

6.5CVSS0.00092EPSS
Exploits0References1
cve
cve
added 2026/06/27 8:59 a.m.42 views

CVE-2026-45259

CVE-2026-45259 affects FreeBSD where sigqueue(2) was allowed in capability mode but kern_sigqueue lacked a capability-mode check to restrict signal delivery to the caller’s own PID. The issue enables a capability-mode sandboxed process to signal other processes (including SIGKILL/SIGSTOP) within ...

6.5CVSS5.7AI score0.00092EPSS
Exploits0References1Affected Software1
cve
cve
added 2026/06/26 2:43 p.m.34 views

CVE-2026-45256

CVE-2026-45256 affects FreeBSD thr_kill2(2). The kernel failed to verify the result of p_cansignal() before delivering a signal, allowing unprivileged local users who know target PIDs to signal processes they normally could not, including root-owned ones. This can lead to stopping or terminating ...

5.5CVSS5.9AI score0.00092EPSS
Exploits0References1Affected Software1
susecve
susecve
added 2026/06/26 2:10 a.m.7 views

SUSE CVE-2026-53208

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/25 11:53 p.m.6 views

CVE-2026-53208

A flaw was found in the Linux kernel's Bluetooth subsystem. A remote attacker within radio range, before pairing, can send specially crafted Bluetooth BR/EDR Basic Rate/Enhanced Data Rate signaling packets that exceed the maximum transmission unit MTU for signaling. This improper handling of...

7CVSS5.9AI score0.00122EPSS
Exploits0References4
nvd
nvd
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53208

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

5.5CVSS0.00122EPSS
Exploits0References8
osv
osv
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53208

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References11
attackerkb
attackerkb
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53208

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

5.8AI score0.00122EPSS
Exploits0References9Affected Software1
cvelist
cvelist
added 2026/06/25 8:39 a.m.32 views

CVE-2026-53208 Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

0.00122EPSS
Exploits0References8
debiancve
debiancve
added 2026/06/25 8:39 a.m.7 views

CVE-2026-53208

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
euvd
euvd
added 2026/06/25 8:39 a.m.7 views

EUVD-2026-39299

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig net/bluetooth/l2capcore.c:l2capsigchannel accepts BR/EDR signaling packets up to the channel MTU and dispatches each command without enforcing the signaling MTU MTUsig...

5.8AI score0.00122EPSS
Exploits0References8
cve
cve
added 2026/06/25 8:39 a.m.18 views

CVE-2026-53208

The CVE-2026-53208 entry concerns the Linux kernel Bluetooth subsystem: BR/EDR signaling packets are not enforcing MTUsig, allowing a remote BR/EDR peer within radio range (before pairing) to send a single 681-byte signaling packet containing multiple L2CAP_ECHO_REQ commands, which can trigger 16...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder