Lucene search
K

115 matches found

EUVD
EUVD
added 2026/06/25 8:39 a.m.6 views

EUVD-2026-39225

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix sleep-inside-lock in smcsetsockopt causing local DoS A logic flaw in smcsetsockopt allows a local unprivileged user to cause a Denial of Service DoS by holding the socket lock indefinitely. The function smcsetsockopt...

5.9AI score0.00126EPSS
Exploits0References6
CVE
CVE
added 2026/06/25 8:39 a.m.24 views

CVE-2026-53274

CVE-2026-53274 affects the Linux kernel net/smc code. A logic flaw in __smc_setsockopt() allowed a local unprivileged user to cause a Denial of Service by keeping the socket lock held during a copy_from_sockptr() operation. The vulnerability occurs because the copy is performed while holding lock...

5.5CVSS5.9AI score0.00126EPSS
Exploits0References6Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:2 a.m.12 views

mptcp: fix scheduling with atomic in timestamp sockopt

...

5.5CVSS5.4AI score0.00128EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.17 views

SUSE CVE-2026-46168

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix scheduling with atomic in timestamp sockopt Using locksockfast atomic context around socksettimestamp and socksettimestamping is unsafe, as both helpers can sleep. Replace locksockfast with sleepable locksock/releaseso...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.9 views

CVE-2026-46168

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix scheduling with atomic in timestamp sockopt Using locksockfast atomic context around socksettimestamp and socksettimestamping is unsafe, as both helpers can sleep. Replace locksockfast with sleepable locksock/releaseso...

5.5CVSS5.7AI score0.00128EPSS
Exploits0
OSV
OSV
added 2026/05/08 3:16 p.m.4 views

UBUNTU-CVE-2026-43411

In the Linux kernel, the following vulnerability has been resolved: tipc: fix divide-by-zero in tipcskfilterconnect A user can set conntimeout to any value via setsockoptTIPCCONNTIMEOUT, including values less than 4. When a SYN is rejected with TIPCERROVERLOAD and the retry path in...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.9 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011294)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011294 advisory. In the Linux kernel, the following vulnerability has been resolved: dccp: fix data-race around dp-dccpsmsscache dccpsendmsg reads dp-dccpsmsscache before locking the...

5.9AI score0.00225EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005059)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005059 advisory. In the Linux kernel, the following vulnerability has been resolved: xsk: validate user input for XDPUMEM|COMPLETIONFILLRING syzbot reported an illegal copy in...

6.7CVSS6.7AI score0.00256EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001251)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001251 advisory. An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land an...

7.8CVSS7.3AI score0.00839EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002784)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002784 advisory. An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land an...

7.8CVSS7.3AI score0.00839EPSS
Exploits1References16
OSV
OSV
added 2025/12/09 4:17 p.m.4 views

UBUNTU-CVE-2023-53839

In the Linux kernel, the following vulnerability has been resolved: dccp: fix data-race around dp-dccpsmsscache dccpsendmsg reads dp-dccpsmsscache before locking the socket. Same thing in dodccpgetsockopt. Add READONCE/WRITEONCE annotations, and change dccpsendmsg to check again dccpsmsscache aft...

5.7AI score0.00225EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2025/12/04 12:50 p.m.4 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS7.1AI score0.00188EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/13 5:3 p.m.5 views

CVE-2025-40149

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

5CVSS5.2AI score0.00142EPSS
Exploits0References4
NVD
NVD
added 2025/11/12 11:15 a.m.5 views

CVE-2025-40149

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

7.8CVSS0.00142EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/07 3:19 p.m.7 views

CVE-2022-50531 tipc: fix an information leak in tipc_topsrv_kern_subscr

In the Linux kernel, the following vulnerability has been resolved: tipc: fix an information leak in tipctopsrvkernsubscr Use a 8-byte write to initialize sub.usrhandle in tipctopsrvkernsubscr, otherwise four bytes remain uninitialized when issuing setsockopt..., SOLTIPC, .... This resulted in an...

0.00147EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-0423

Malware in sbrugna...

7.2CVSS6.1AI score0.01238EPSS
Exploits1References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-9625

Malware in sbrugna...

7.8CVSS7AI score0.00839EPSS
Exploits1References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-4775

Malware in sbrugna...

4.9CVSS6.4AI score0.00343EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-411720)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-411720 advisory. In the Linux kernel, the following vulnerability has been resolved: xsk: validate user input for XDPUMEM|COMPLETIONFILLRING syzbot reported an illegal copy in...

6.7CVSS6.1AI score0.00256EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-423016)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-423016 advisory. In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tlsinit In tlsinit, a write memory barrier is missing, and...

5.5CVSS6.2AI score0.00253EPSS
Exploits0References3
Rows per page
Query Builder