Lucene search
K

103894 matches found

RedHat Linux
RedHat Linux
added 4 hours ago7 views

kernel: gfs2: Fix use-after-free in iomap inline data write path

A flaw was found in the Linux kernel's GFS2 filesystem. This memory corruption vulnerability, a use-after-free, occurs in the iomap inline data write path. The issue arises because a data buffer is released prematurely while still being referenced, leading to a write to freed memory. This could...

7.8CVSS6.8AI score0.0031EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 4 hours ago5 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()

A use-after-free flaw was found in the Linux kernel's iSCSI target subsystem. In the iscsitdecconnusagecount function, complete is called while still holding the conn-connusagelock spinlock. The waiting thread such as iscsitcloseconnection may wake up immediately and free the iscsitconn structure...

7.8CVSS6.9AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 4 hours ago4 views

Important: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS6.8AI score0.0031EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added yesterday13 views

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

8.4CVSS6AI score0.00425EPSS
Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2025-59617

CVE-2025-59617 describes a memory corruption issue (Use After Free) in Computer Vision when multiple IOCTL calls reuse the same buffer file descriptor input. The CVSS metrics indicate a local attacker with high attack complexity and low privileges, requiring user interaction, with impact to integ...

6.6CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added yesterday11 views

CVE-2025-59617 Use After Free in Computer Vision

Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input...

6.6CVSS
Exploits0References1
CVE
CVE
added yesterday3 views

CVE-2025-59616

CVE-2025-59616 : Memory corruption (use-after-free) when processing multiple IOCTL calls using the same buffer file descriptor input, due to accessing memory that has already been freed. Affects the described Computer Vision context; underlying issue is use-after-free in the handling of repeated ...

6.6CVSS6.1AI score
Exploits0References1
Cvelist
Cvelist
added yesterday11 views

CVE-2025-59616 Use After Free in Computer Vision

Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory...

6.6CVSS
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2025-59615

CVE-2025-59615 describes a Use-After-Free memory corruption in computer vision code triggered by device IOCTL operations for mapping/unmapping persistent memory buffers, caused by improper synchronization. The issue is rated CVSS v3.1 base score 6.6 (Medium): LOCAL attack, HIGH exploit complexity...

6.6CVSS6AI score
Exploits0References1
RedhatCVE
RedhatCVE
added yesterday3 views

CVE-2026-9080

A flaw was found in libcurl. When curleasypause is called within the event-based CURLMOPTSOCKETFUNCTION callback, a use-after-free vulnerability is triggered. This occurs because libcurl attempts to store a flag using a pointer to memory that has already been freed. An attacker could potentially...

7.3CVSS6AI score0.00206EPSS
Exploits0References6
The Hacker News
The Hacker News
added yesterday5 views

16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems

A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The publ...

5.9AI score0.00176EPSS
Exploits1
OSV
OSV
added yesterday6 views

BIT-PYTHON-2026-6100 Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile after re-use under memory pressure

Use-after-free UAF was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile when a memory allocation fails with a MemoryError and the decompression instance is re-used. This scenario can be triggered if the process is under memory pressure. The fix cleans up the dangling...

9.1CVSS5.7AI score0.00579EPSS
Exploits0References54
OSV
OSV
added yesterday2 views

BIT-LIBPYTHON-2026-6100 Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile after re-use under memory pressure

Use-after-free UAF was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile when a memory allocation fails with a MemoryError and the decompression instance is re-used. This scenario can be triggered if the process is under memory pressure. The fix cleans up the dangling...

9.1CVSS5.7AI score0.00579EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added yesterday4 views

kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold

A flaw was found in the Linux kernel's Bluetooth SCO Synchronous Connection-Oriented protocol implementation. The scorecvframe function fails to properly hold a reference to a socket after releasing a lock. This oversight allows a concurrent operation to free the socket while it is still being...

8.8CVSS6.2AI score0.003EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added yesterday3 views

kernel: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold

A flaw was found in the Linux kernel's Bluetooth SCO Synchronous Connection-Oriented protocol implementation. The scorecvframe function fails to properly hold a reference to a socket after releasing a lock. This oversight allows a concurrent operation to free the socket while it is still being...

8.8CVSS6.2AI score0.003EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added yesterday5 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerabilit...

9.8CVSS6.3AI score0.004EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added yesterday2 views

kernel: gfs2: Fix use-after-free in iomap inline data write path

A flaw was found in the Linux kernel's GFS2 filesystem. This memory corruption vulnerability, a use-after-free, occurs in the iomap inline data write path. The issue arises because a data buffer is released prematurely while still being referenced, leading to a write to freed memory. This could...

7.8CVSS6.8AI score0.0031EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added yesterday3 views

kernel: mptcp: fix slab-use-after-free in __inet_lookup_established

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. Due to incorrect memory allocation for IPv6 subflow child sockets, a use-after-free vulnerability exists. A remote attacker could exploit this by triggering concurrent lookups in the kernel's hash table, potentially leadin...

9.8CVSS6.6AI score0.004EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added yesterday6 views

CVE-2026-14788

A flaw was found in radare2. A local attacker could trigger a use-after-free vulnerability within the rcorebinload function. This issue can lead to memory corruption, resulting in a denial of service DoS for the application. Mitigation To mitigate this issue, ensure that only trusted users have...

4.8CVSS5.9AI score0.00115EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added yesterday5 views

CVE-2026-14760

A flaw was found in radareorg radare2. This vulnerability, a use-after-free, affects the regprofile Handler component. A local attacker can exploit this flaw by performing a specific manipulation, which could lead to a denial of service, making the application unavailable. Mitigation To mitigate...

4.8CVSS5.9AI score0.00115EPSS
Exploits0References10
Rows per page
Query Builder