Lucene search
K

36 matches found

Amazon
Amazon
added 2026/06/22 12:0 a.m.5 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: handle attrsetsize errors when truncating files CVE-2025-71289 In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it in cifsacl...

9.3CVSS6.3AI score0.00339EPSS
Exploits0
Amazon
Amazon
added 2026/05/26 12:0 a.m.11 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: mm: call -freefolio directly in foliounmapinvalidate CVE-2026-31589 In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers/xen/sys-hypervisor.c CVE-2026-31786 In the Linux...

9.8CVSS6.4AI score0.00554EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.36 views

Amazon Linux 2023 : bpftool6.18, kernel6.18, kernel6.18-devel (ALAS2023-2026-1709)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1709 advisory. In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers CVE-2026-43503 In the Linux kernel, the following...

8.8CVSS6.2AI score0.03663EPSS
Exploits18References6
Amazon
Amazon
added 2026/05/09 12:0 a.m.21 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: afunix: Give up GC if MSGPEEK intervened. CVE-2026-23394 In the Linux kernel, the following vulnerability has been resolved: ipv6: add NULL checks for idev in SRv6 paths CVE-2026-23442 In the Linux kernel, the...

9.8CVSS6AI score0.00514EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/05/07 2:38 a.m.13 views

Talos Linux has a local privilege escalation from untrusted workloads

Summary A vulnerability in the Linux kernel's algifaead subsystem CVE-2026-31431, "copy.fail" allows an unprivileged container workload to corrupt arbitrary file page-cache pages via the AFALG crypto interface and splice. On Talos Linux, this vulnerability can be chained into a complete node...

7.8CVSS8AI score0.96267EPSS
Exploits228References6Affected Software1
Amazon
Amazon
added 2026/05/05 12:0 a.m.16 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of the algifaead module by running the following commands as an administrator user: echo...

7.8CVSS7AI score0.96267EPSS
Exploits228
SUSE CVE
SUSE CVE
added 2026/04/25 1:40 a.m.4 views

SUSE CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.5AI score0.00426EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

5.4AI score0.00426EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/04/24 2:30 p.m.6 views

EUVD-2026-25431

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

5.4AI score0.00426EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.3AI score0.00426EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.18 views

Amazon Linux 2023 : bpftool6.18, kernel6.18, kernel6.18-devel (ALAS2023-2026-1514)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1514 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent CVE-2025-71268 In the Linux kernel, the followi...

9.8CVSS5.5AI score0.00686EPSS
Exploits0References165
Amazon
Amazon
added 2026/03/27 12:0 a.m.9 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent CVE-2025-71268 In the Linux kernel, the following vulnerability has been resolved: btrfs: do not free data reservation in fallback from...

9.8CVSS5.5AI score0.00686EPSS
Exploits0
EUVD
EUVD
added 2026/03/25 12:30 p.m.7 views

EUVD-2026-15251

In the Linux kernel, the following vulnerability has been resolved: tracing: Add NULL pointer check to triggerdatafree If triggerdataalloc fails and returns NULL, eventhisttriggerparse jumps to the outfree error path. While kfree safely handles a NULL pointer, triggerdatafree does not. This cause...

5.7AI score0.00123EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.7 views

CVE-2026-23157

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not strictly require dirty metadata threshold for metadata writepages BUG There is an internal report that over 1000 processes are waiting at the ioscheduletimeout of balancedirtypages, causing a system hang and trigger...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References4
NVD
NVD
added 2026/01/22 5:16 p.m.4 views

CVE-2026-22461

Missing Authorization vulnerability in WebAppick CTX Feed webappick-product-feed-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CTX Feed: from n/a through = 6.6.18...

5.3CVSS0.00314EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:52 p.m.9 views

CVE-2026-22461

The CVE-2026-22461 entry describes a Missing Authorization vulnerability in the WebAppick CTX Feed plugin for WordPress WooCommerce (CTX Feed). Affected component: WordPress CTX Feed plugin (WebAppick CTX Feed for WooCommerce). Root cause: Incorrectly configured/ Missing authorization control, i....

5.3CVSS5.4AI score0.00314EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-6116

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0 10 Description The Linux kernel contains a flaw within the virtio net subsystem. Specifically, an inconsistency exists in how memory is allocated and freed for the RSS header. The initial allocation uses...

5.4AI score0.00176EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.9 views

PT-2026-27674

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to a NULL pointer dereference within the trigger data free function. This occurs when trigger data alloc fails and returns NULL, leading to an...

6AI score0.00123EPSS
Exploits0References12
OSV
OSV
added 2025/11/21 11:27 a.m.8 views

RHSA-2025:21886 Red Hat Security Advisory: Satellite 6.18.1 Async Update

Bulletin has no description...

5CVSS6.9AI score0.00348EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-24593

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00423EPSS
Exploits0References2
Rows per page
Query Builder