CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

EUVD-2026-38702

In the Linux kernel, the following vulnerability has been resolved: xfrm: ipcomp: Free destination pages on acomp errors Move the outfreereq label up by a couple of lines so that the allocated dst SG list gets freed on error as well as success...

5.7AI score0.00155EPSS

Exploits0References3

AstraLinux•added 6 days ago•3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: crypto: comp – Use the same definition for the context alloc and free operations. In commit 42d9f6c77479 “crypto: acomp – Move the scomp stream allocation code into acomp”, the cryptoacompstreams struct was designed to rely on th...

5.3AI score0.00154EPSS

Exploits0References2

Tenable Nessus•added 2026/06/03 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-46081

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: acomp - fix wrong pointer stored by acompsavereq acompsavereq stores &req-chain in req-base.data. When acompreqchaindone is invoked on asynchronous...

7.8CVSS5.9AI score0.00162EPSS

Exploits0References2

SUSE CVE•added 2026/05/28 3:53 a.m.•12 views

SUSE CVE-2026-46081

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - fix wrong pointer stored by acompsavereq acompsavereq stores &req-chain in req-base.data. When acompreqchaindone is invoked on asynchronous completion, it receives &req-chain as the data argument but casts it...

6.6CVSS5.8AI score0.00162EPSS

Exploits0References3

NVD•added 2026/05/27 2:17 p.m.•13 views

CVE-2026-46081

7.8CVSS0.00162EPSS

Exploits0References3

OSV•added 2026/05/27 2:17 p.m.•5 views

UBUNTU-CVE-2026-46081

7.8CVSS5.7AI score0.00162EPSS

Exploits0References3

EUVD•added 2026/05/27 12:58 p.m.•14 views

EUVD-2026-32464

5.8AI score0.00162EPSS

Exploits0References3

Cvelist•added 2026/05/27 12:58 p.m.•39 views

CVE-2026-46081 crypto: acomp - fix wrong pointer stored by acomp_save_req()

7.8CVSS0.00162EPSS

Exploits0References3

ATTACKERKB•added 2026/05/27 12:58 p.m.•7 views

CVE-2026-46081

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - fix wrong pointer stored by acompsavereq acompsavereq stores &req-;chain in req-base.data. When acompreqchaindone is invoked on asynchronous completion, it receives &req-;chain as the data argument but casts it...

5.7AI score0.00162EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/27 12:58 p.m.•9 views

CVE-2026-46081

7.8CVSS5.7AI score0.00162EPSS

Exploits0

UbuntuCve•added 2026/05/27 12:0 a.m.•11 views

CVE-2026-46081

crypto: acomp - fix wrong pointer stored by acompsavereq...

7.8CVSS5.8AI score0.00162EPSS

Exploits0References2

Positive Technologies•added 2026/05/27 12:0 a.m.•15 views

PT-2026-43948

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory corruption issue exists in the Linux kernel crypto acomp component. The function acomp save req incorrectly stores the address of the chain member &req-chain in req-base.data...

9.8CVSS6.1AI score0.03663EPSS

Exploits14References280

Cvelist•added 2026/02/04 4:0 p.m.•25 views

CVE-2026-23044 PM: hibernate: Fix crash when freeing invalid crypto compressor

In the Linux kernel, the following vulnerability has been resolved: PM: hibernate: Fix crash when freeing invalid crypto compressor When cryptoallocacomp fails, it returns an ERRPTR value, not NULL. The cleanup code in savecompressedimage and loadcompressedimage unconditionally calls...

0.00145EPSS

Exploits0References2

Tenable Nessus•added 2026/02/04 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23044

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PM: hibernate: Fix crash when freeing invalid crypto compressor When cryptoallocacomp fails, it returns an ERRPTR value, not NULL. The cleanup code in...

5.9AI score0.00145EPSS

Exploits0References2

RedHat Linux•added 2025/11/11 9:13 a.m.•7 views

kernel: mm: zswap: properly synchronize freeing resources during CPU hotunplug

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswapcompress and zswapdecompress, the per-CPU acompctx of the current CPU at the beginning of the operation is retrieved and used throughout. However, sin...

7.8CVSS6.8AI score0.00191EPSS

Exploits0References5

RedHat Linux•added 2025/11/11 8:21 a.m.•5 views

kernel: mm: zswap: properly synchronize freeing resources during CPU hotunplug

7.8CVSS6.8AI score0.00191EPSS

Exploits0References5

SUSE CVE•added 2025/10/29 12:24 a.m.•3 views

SUSE CVE-2025-40063

In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479 "crypto: acomp - Move scomp stream allocation code into acomp", the cryptoacompstreams struct was made to rely on having the allocctx and...

5.5CVSS6.5AI score0.00154EPSS

Exploits0References3

NVD•added 2025/10/28 12:15 p.m.•5 views

CVE-2025-40063

0.00154EPSS

Exploits0References2

OSV•added 2025/10/28 12:15 p.m.•2 views

UBUNTU-CVE-2025-40063

5.7AI score0.00154EPSS

Exploits0References10

CVE•added 2025/10/28 11:48 a.m.•11 views

CVE-2025-40063

In CVE-2025-40063, the Linux kernel fixed a cryptographic component mismatch: crypto_acomp_streams and scomp_alg relied on alloc_ctx/free_ctx in the same order, but structure layout randomization could desynchronize their definitions. The fix removes a union from scomp_alg so both structures shar...

6.1AI score0.00154EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by