CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1723 matches found

CVE•added 2025/10/04 7:31 a.m.•469 views

CVE-2025-39946

CVE-2025-39946 affects the Linux kernel TLS/record parsing path. When a record header is bogus and data arrives in small chunks, tls_rx_msg_size() may not abort early enough, risking skb space overflow due to repeated partial parsing. The fixed behavior aborts the TLS stream as soon as an invalid...

9.8CVSS6.4AI score0.09072EPSS

Exploits1References5Affected Software1

OSV•added 2025/10/04 7:31 a.m.•6 views

CVE-2025-39946 tls: make sure to abort the stream if headers are bogus

In the Linux kernel, the following vulnerability has been resolved: tls: make sure to abort the stream if headers are bogus Normally we wait for the socket to buffer up the whole record before we service it. If the socket has a tiny buffer, however, we read out the data sooner, to prevent...

9.8CVSS6.8AI score0.09072EPSS

Exploits1References8

OSV•added 2025/10/04 7:30 a.m.•9 views

CVE-2025-39931 crypto: af_alg - Set merge to zero early in af_alg_sendmsg

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Set merge to zero early in afalgsendmsg If an error causes afalgsendmsg to abort, ctx-merge may contain a garbage value from the previous loop. This may then trigger a crash on the next entry into afalgsendmsg whe...

5.5CVSS6.5AI score0.00134EPSS

Exploits0References8

Positive Technologies•added 2025/10/04 12:0 a.m.•3 views

PT-2025-40727

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SCSI subsystem, specifically within the qla2xxx driver. A crash can occur during CPU hotplug operations when an I/O abort times out, leading to...

6.1AI score0.00142EPSS

Exploits0References11