Lucene search
K

25 matches found

Debian CVE
Debian CVE
added 2026/06/08 3:50 p.m.6 views

CVE-2026-46312

In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: Set vmaflags in vb2dmasgmmap vb2dmacontig sets VMA flags VMDONTEXPAND and VMDONTDUMP and I do not see a reason why vb2dmasg should behave differently. This avoids hitting WARNON!vma-vmflags & VMDONTEXPAND; in...

5.3AI score0.00156EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/03 3:49 p.m.10 views

CVE-2026-46248

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: clear stale link mapping of ahvif-linksmap When an arvif is initialized in non-AP STA mode but MLO connection preparation fails before the arvif is created arvif-iscreated remains false, the error path attempts to...

5.5CVSS5.7AI score0.00121EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/06 12:16 p.m.8 views

CVE-2026-43131

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix null pointer dereference issue If SMU is disabled, during RAS initialization, there will be null pointer dereference issue here...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 10:16 a.m.8 views

CVE-2026-43109

In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstkpopsigframe doesn't check for errors from mmapreadlockkillable, which is a silly oversight, and also shows that we haven't marked those functions with...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/01 3:16 p.m.7 views

CVE-2026-43010

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobemulti programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. However, bpfkprobemultilinkattach did not validate whether the program being attached had the sleepable...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/04/22 2:16 p.m.7 views

CVE-2026-31518

In the Linux kernel, the following vulnerability has been resolved: esp: fix skb leak with espintcp and async crypto When the TX queue for espintcp is full, espoutputtailtcp will return an error and not free the skb, because with synchronous crypto, the common xfrm output code will drop the packe...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/03/11 2:16 p.m.3 views

CVE-2026-3904

Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x8664 systems, the client may call memcmp on inputs that are concurrently modified by other processes or threads and crash. The nscd client in the...

6.2CVSS5.9AI score0.00146EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23077

In the Linux kernel, the following vulnerability has been resolved: mm/vma: fix anonvma UAF on mremap faulted, unfaulted merge Patch series "mm/vma: fix anonvma UAF on mremap faulted, unfaulted merge", v2. Commit 879bca0a2c4f "mm/vma: fix incorrectly disallowed anonymous VMA merges" introduced th...

7.8CVSS5.3AI score0.00134EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/01/13 3:34 p.m.5 views

CVE-2025-71088

In the Linux kernel, the following vulnerability has been resolved: mptcp: fallback earlier on simult connection Syzkaller reports a simult-connect race leading to inconsistent fallback status: WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflowdataready+0x40b/0x7c0 net/mptcp/subflow.c:15...

5.5CVSS5.1AI score0.00121EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/01/13 3:31 p.m.4 views

CVE-2025-71068

In the Linux kernel, the following vulnerability has been resolved: svcrdma: bound check rqpages index in inline path svcrdmacopyinlinerange indexed rqstp-rqpagesrccurpage without verifying rccurpage stays within the allocated page array. Add guards before the first use and after advancing to a n...

7.8CVSS5.3AI score0.00129EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/24 1:6 p.m.3 views

CVE-2023-54147

In the Linux kernel, the following vulnerability has been resolved: media: platform: mtk-mdp3: Add missing check and free for idaalloc Add the check for the return value of the idaalloc in order to avoid NULL pointer dereference. Moreover, free allocated "ctx-id" if mdpm2mopen fails later in orde...

5.2AI score0.00168EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/24 10:56 a.m.5 views

CVE-2023-54042

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix VAS mm use after free The refcount on mm is dropped before the coprocessor is detached...

5.1AI score0.00157EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/24 10:55 a.m.3 views

CVE-2023-54002

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some things more complicated. The assertion of valid states when starting fro...

5.4AI score0.00168EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/24 10:32 a.m.2 views

CVE-2025-68366

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbdgenlconnect There is one use-after-free warning when running NBDCMDCONNECT and NBDCLEARSOCK: nbdgenlconnect nbdallocandinitconfig // configrefs=1 nbdstartdevice // configrefs=2 set NBDRTHASCONFIGREF...

5.4AI score0.00165EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/16 2:21 p.m.3 views

CVE-2025-68246

In the Linux kernel, the following vulnerability has been resolved: ksmbd: close accepted socket when per-IP limit rejects connection When the per-IP connection limit is exceeded in ksmbdkthreadfn, the code sets ret = -EAGAIN and continues the accept loop without closing the just-accepted socket...

5.3AI score0.00156EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/16 1:42 p.m.3 views

CVE-2025-68177

In the Linux kernel, the following vulnerability has been resolved: cpufreq/longhaul: handle NULL policy in longhaulexit longhaulexit was calling cpufreqcpuget0 without checking for a NULL policy pointer. On some systems, this could lead to a NULL dereference and a kernel warning or panic. This...

5.2AI score0.00177EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/16 1:39 p.m.2 views

CVE-2025-40360

In the Linux kernel, the following vulnerability has been resolved: drm/sysfb: Do not dereference NULL pointer in plane reset The plane state in drmgemresetshadowplane can be NULL. Do not deref that pointer, but forward NULL to the other plane-reset helpers. Clears plane-state to NULL. v2: - fix...

5.3AI score0.00173EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/10/22 1:23 p.m.4 views

CVE-2023-53694

In the Linux kernel, the following vulnerability has been resolved: riscv: ftrace: Fixup panic by disabling preemption In RISCV, we must use an AUIPC + JALR pair to encode an immediate, forming a jump that jumps to an address over 4K. This may cause errors if we want to enable kernel preemption a...

5.3AI score0.00193EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/10/04 3:44 p.m.3 views

CVE-2023-53603

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Avoid fcport pointer dereference Klocwork reported warning of NULL pointer may be dereferenced. The routine exits when sactl is NULL and fcport is allocated after the exit call thus causing NULL fcport pointer to...

5.5CVSS5.3AI score0.00136EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/10/04 3:44 p.m.3 views

CVE-2023-53594

In the Linux kernel, the following vulnerability has been resolved: driver core: fix resource leak in deviceadd When calling kobjectadd failed in deviceadd, it will call cleanupgluedir to free resource. But in kobjectadd, dev-kobj.parent has been set to NULL. This will cause resource leak. The...

5.5CVSS5.3AI score0.00135EPSS
Exploits0
Rows per page
Query Builder