CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/28 12:0 a.m.•5 views

PT-2026-44288

In the Linux kernel, the following vulnerability has been resolved: openvswitch: vport: fix self-deadlock on release of tunnel ports vports are used concurrently and protected by RCU, so netdev put must happen after the RCU grace period. So, either in an RCU call or after the synchronize net. The...

5.8AI score0.00032EPSS

Exploits0References6

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: ila: Call nfunregisternethooks earlier. A use-after-free condition was found in ilanfinput 1. The issue arises from ilaxlatexitnet freeing the rhashtable, followed by the call to nfunregisternethooks. This should be done in th...

7.8CVSS6.5AI score0.00022EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: ppp: Fixed race conditions in pppfillforwardpath. pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and listfirstentry, as ppplock is not held. If the only channel is deleted in...

4.7CVSS6.9AI score0.0002EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: iio: accel: fxls8962af: Fixed an issue where fxls8962affifoflush used indiodev-activescanmask without ensuring that indiodev remained in buffer mode. There is a race condition if indiodev exits buffer mode during the interrupt...

7.8CVSS6.5AI score0.00071EPSS

SUSE CVE•added 2026/05/13 3:34 a.m.•2 views

SUSE CVE-2026-43374

In the Linux kernel, the following vulnerability has been resolved: net: nexthop: fix percpu use-after-free in removenhgrpentry When removing a nexthop from a group, removenhgrpentry publishes the new group via rcuassignpointer then immediately frees the removed entry's percpu stats with...

EUVD•added 2026/05/08 3:31 p.m.•2 views

Exploits0References3

EUVD-2026-28680

5.8AI score0.00013EPSS

NVD•added 2026/05/08 3:16 p.m.•1 views

CVE-2026-43374

UbuntuCve•added 2026/05/08 3:16 p.m.•3 views

Exploits0References4

CVE-2026-43374

ATTACKERKB•added 2026/05/08 2:21 p.m.•3 views

Exploits0References6

CVE-2026-43374

5.7AI score0.00013EPSS

Exploits0References5Affected Software1

NVD•added 2026/05/08 2:16 p.m.•5 views

CVE-2026-43324

In the Linux kernel, the following vulnerability has been resolved: USB: dummy-hcd: Fix interrupt synchronization error This fixes an error in synchronization in the dummy-hcd driver. The error has a somewhat involved history. The synchronization mechanism was introduced by commit 7dbd8f4cabd9...

CVE•added 2026/05/08 1:31 p.m.•8 views

Exploits0References7

CVE-2026-43324

The CVE-2026-43324 entry covers a Linux kernel USB dummy-hcd synchronization bug. The issue stems from an emulated synchronize_irq() that ran before emulated interrupt-disable, allowing potential callback races when a gadget driver is unbound. The fix moved synchronization to the dummy_udc_async_...

7.8CVSS5.7AI score0.00013EPSS

Exploits0References7Affected Software1

Tenable Nessus•added 2026/05/08 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-43374

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: nexthop: fix percpu use-after-free in removenhgrpentry When removing a nexthop from a group, removenhgrpentry publishes the new group via rcuassignpointer...

NVD•added 2026/05/06 10:16 a.m.•4 views

Exploits0References3

CVE-2026-43091

In the Linux kernel, the following vulnerability has been resolved: xfrm: Wait for RCU readers during policy netns exit xfrmpolicyfini frees the policybydst hash tables after flushing the policy work items and deleting all policies, but it does not wait for concurrent RCU readers to leave their...

Cvelist•added 2026/05/06 7:40 a.m.•24 views

CVE-2026-43091 xfrm: Wait for RCU readers during policy netns exit

CVE•added 2026/05/06 7:40 a.m.•6 views

CVE-2026-43091

The CVE-2026-43091 vulnerability affects the Linux kernel xfrm policy handling during netns exit. The root cause is that xfrm_policy_fini() frees the policy_bydst hash tables after flushing work items and deleting policies, but does not wait for concurrent RCU readers to exit read-side critical s...

Exploits0References5Affected Software1

OSV•added 2026/05/05 11:41 p.m.•3 views

CLSA-2026-1777974224 libwebp: Fix of 6 CVEs

CVE-2018-25009: fix out-of-bounds read in GetLE16 by validating VP8X chunk size - CVE-2018-25010: fix heap-based buffer overflow in ApplyFilter by limiting filter radius to image dimensions - CVE-2018-25011: fix heap-based buffer overflow in PutLE16 by rejecting multiple image chunks in ANMF...

9.8CVSS7.5AI score0.00575EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: padata: fix UAF in padatareorder A bug was found when run ltp test: BUG: KASAN: slab-use-after-free in padatafindnext+0x29/0x1a0 Read of size 4 at addr ffff88bbfe003524 by task kworker/u113:2/3039206 CPU: 0 PID: 3039206 Comm:...

7.8CVSS6.3AI score0.00025EPSS