Lucene search
K

2994 matches found

UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.8 views

CVE-2025-38471

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.3AI score0.00152EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.3 views

CVE-2025-38476

In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpldosrhinline. Running lwtdstcacherefloop.sh in selftest with KASAN triggers the splat below 0. rpldosrhinline fetches ipv6hdrskb and accesses it after skbcowhead, which is illegal as the header could ...

7.8CVSS6.3AI score0.0015EPSS
Exploits0References38
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.1 views

CVE-2025-38491

In the Linux kernel, the following vulnerability has been resolved: mptcp: make fallback action and fallback decision atomic Syzkaller reported the following splat: WARNING: CPU: 1 PID: 7704 at net/mptcp/protocol.h:1223 mptcpdofallback net/mptcp/protocol.h:1223 inline WARNING: CPU: 1 PID: 7704 at...

5.5CVSS5.9AI score0.00107EPSS
Exploits0References27
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.1 views

CVE-2025-38489

In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Fix bpfarchtextpoke with newaddr == NULL again Commit 7ded842b356d "s390/bpf: Fix bpfplt pointer arithmetic" has accidentally removed the critical piece of commit c730fce7c70c "s390/bpf: Fix bpfarchtextpoke with newaddr...

5.5CVSS6.2AI score0.00136EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.2 views

CVE-2025-38487

In the Linux kernel, the following vulnerability has been resolved: soc: aspeed: lpc-snoop: Don't disable channels that aren't enabled Mitigate e.g. the following: echo 1e789080.lpc-snoop /sys/bus/platform/drivers/aspeed-lpc-snoop/unbind ... 120.363594 Unable to handle kernel NULL pointer...

5.5CVSS6.2AI score0.0015EPSS
Exploits0References38
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.5 views

CVE-2025-38472

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrack: fix crash due to removal of uninitialised entry A crash in conntrack was reported while trying to unlink the conntrack entry from the hash bucket list: exception RIP: nfctdeletefromlists+172 .. 7...

5.5CVSS5.9AI score0.00155EPSS
Exploits0References29
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.2 views

CVE-2025-38496

In the Linux kernel, the following vulnerability has been resolved: dm-bufio: fix sched in atomic context If "tryverifyintasklet" is set for dm-verity, DMBUFIOCLIENTNOSLEEP is enabled for dm-bufio. However, when bufio tries to evict buffers, there is a chance to trigger scheduling in spinlockbh,...

5.5CVSS6.1AI score0.00139EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/28 12:15 p.m.2 views

CVE-2025-38494

In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hidhwrawrequest hidhwrawrequest is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those checks and allowed invalid...

7.8CVSS6.3AI score0.002EPSS
Exploits0References38
UbuntuCve
UbuntuCve
added 2025/07/28 12:0 a.m.2 views

CVE-2023-53161

The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic...

5.3CVSS5.8AI score0.00332EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/07/27 10:15 p.m.4 views

CVE-2024-58266

The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the and \xa0 characters, which may facilitate command injection...

9.8CVSS5.8AI score0.0078EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.2 views

CVE-2025-38439

In the Linux kernel, the following vulnerability has been resolved: bnxten: Set DMA unmap len correctly for XDPREDIRECT When transmitting an XDPREDIRECT packet, call dmaunmaplenset with the proper length instead of 0. This bug triggers this warning on a system with IOMMU enabled: WARNING: CPU: 36...

5.5CVSS6.3AI score0.0017EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.3 views

CVE-2025-38448

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Fix race condition in TTY wakeup A race condition occurs when gsstartio calls either gsstartrx or gsstarttx, as those functions briefly drop the portlock for usbepqueue. This allows gsclose and...

4.7CVSS6.3AI score0.00115EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.3 views

CVE-2025-38447

In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix potential out-of-bounds page table access during batched unmap As pointed out by David1, the batched unmap logic in trytounmapone may read past the end of a PTE table when a large folio's PTE mappings are not fully...

7.1CVSS6.5AI score0.00156EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.2 views

CVE-2025-38446

In the Linux kernel, the following vulnerability has been resolved: clk: imx: Fix an out-of-bounds access in dispmixcsrclkdevdata When numparents is 4, clkregister occurs an out-of-bounds when accessing parentnames member. Use ARRAYSIZE instead of hardcode number here. BUG: KASAN:...

7.1CVSS6.6AI score0.00149EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.4 views

CVE-2025-38465

In the Linux kernel, the following vulnerability has been resolved: netlink: Fix wraparounds of sk-skrmemalloc. Netlink has this pattern in some places if atomicread&sk-skrmemalloc sk-skrcvbuf atomicaddskb-truesize, &sk-skrmemalloc; , which has the same problem fixed by commit 5a465a0da13e "udp:...

5.5CVSS6.3AI score0.00165EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.3 views

CVE-2025-38464

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

7.8CVSS6.4AI score0.00169EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.3 views

CVE-2025-38463

In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation Syzkaller reported a bug 1 where sk-skforwardalloc can overflow. When we send data, if an skb exists at the tail of the write queue, the kernel will attempt to append the...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.2 views

CVE-2025-38467

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: exynos7drmdecon: add vblank check in IRQ handling If there's support for another console device such as a TTY serial, the kernel occasionally panics during boot. The panic message and a relevant snippet of the call...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/25 4:15 p.m.3 views

CVE-2025-38460

In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix potential null-ptr-deref in toatmarpd. atmarpd is protected by RTNL since commit f3a0592b37b8 "ATM: clip causes unregister hang". However, it is not enough because toatmarpd is called without RTNL, especially...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References41
UbuntuCve
UbuntuCve
added 2025/07/25 3:15 p.m.2 views

CVE-2025-38434

In the Linux kernel, the following vulnerability has been resolved: Revert "riscv: Define TASKSIZEMAX for accessok" This reverts commit ad5643cf2f69 "riscv: Define TASKSIZEMAX for accessok". This commit changes TASKSIZEMAX to be LONGMAX to optimize accessok, because the previous TASKSIZEMAX defau...

5.5CVSS5.7AI score0.00157EPSS
Exploits0References11
Rows per page
Query Builder