Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/06/24 4:29 p.m.30 views

CVE-2026-53046 ksmbd: fix use-after-free from async crypto on Qualcomm crypto engine

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free from async crypto on Qualcomm crypto engine ksmbdcryptmessage sets a NULL completion callback on AEAD requests and does not handle the -EINPROGRESS return code from async hardware crypto engines like the...

9.8CVSS0.00531EPSS
Exploits0References7
NVD
NVD
added 2025/07/28 12:15 p.m.15 views

CVE-2025-38488

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cryptmessage when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from cryptmessage, assuming all crypto operations are synchronous. However, when hardware crypto...

7.8CVSS0.00278EPSS
Exploits0References9
CVE
CVE
added 2025/07/28 11:21 a.m.89 views

CVE-2025-38488

CVE-2025-38488 affects the Linux kernel SMB client path (crypt_message) where async crypto could lead to use-after-free when hardware accelerators return -EINPROGRESS. The issue arose after CVE-2024-50047 fixed async handling for all operations but hardware offload could still complete asynchrono...

7.8CVSS7.7AI score0.00278EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2025/07/28 11:21 a.m.4 views

CVE-2025-38488 smb: client: fix use-after-free in crypt_message when using async crypto

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cryptmessage when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from cryptmessage, assuming all crypto operations are synchronous. However, when hardware crypto...

7.8CVSS6.5AI score0.00278EPSS
Exploits0References12
Rows per page
Query Builder