Lucene search
K

519 matches found

NVD
NVD
added 2026/04/05 4:16 a.m.7 views

CVE-2026-5590

A race condition during TCP connection teardown can cause tcprecv to operate on a connection that has already been released. If tcpconnsearch returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcpbacklogisfull and dereferenced without validatio...

6.4CVSS0.00158EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/05 3:34 a.m.4 views

CVE-2026-5590

A race condition during TCP connection teardown can cause tcprecv to operate on a connection that has already been released. If tcpconnsearch returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcpbacklogisfull and dereferenced without validatio...

6.4CVSS5.8AI score0.00158EPSS
Exploits0References2
CVE
CVE
added 2026/04/05 3:34 a.m.20 views

CVE-2026-5590

CVE-2026-5590 describes a race condition during TCP connection teardown where tcp_recv() may operate on a released connection. If tcp_conn_search() returns NULL while processing a SYN, a NULL pointer from stale context data is passed to tcp_backlog_is_full() and dereferenced without validation, c...

6.4CVSS5.8AI score0.00158EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/05 3:34 a.m.5 views

EUVD-2026-19028

A race condition during TCP connection teardown can cause tcprecv to operate on a connection that has already been released. If tcpconnsearch returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcpbacklogisfull and dereferenced without validatio...

6.4CVSS5.8AI score0.00158EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/05 3:34 a.m.25 views

CVE-2026-5590 net: ip/tcp: Null pointer dereference can be triggered by a race condition

A race condition during TCP connection teardown can cause tcprecv to operate on a connection that has already been released. If tcpconnsearch returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcpbacklogisfull and dereferenced without validatio...

6.4CVSS0.00158EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/05 12:0 a.m.10 views

PT-2026-30411

A race condition during TCP connection teardown can cause tcp recv to operate on a connection that has already been released. If tcp conn search returns NULL while processing a SYN packet, a NULL pointer derived from stale context data is passed to tcp backlog is full and dereferenced without...

6.4CVSS5.8AI score0.00158EPSS
Exploits0References2
Redos
Redos
added 2026/03/13 12:0 a.m.6 views

ROS-20260313-73-0027

A vulnerability in the qdisctreereducebacklog function of the Linux kernel is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.3AI score0.00161EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005777)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005777 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005810)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005810 advisory. In the Linux kernel, the following vulnerability has been resolved: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue When enqueuing the first packet t...

7.8CVSS5.9AI score0.00179EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005809)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005809 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may...

7.8CVSS6.8AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005410)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005410 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may...

7.8CVSS6.5AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005560)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005560 advisory. In the Linux kernel, the following vulnerability has been resolved: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue When enqueuing the first packet t...

7.8CVSS6.8AI score0.00179EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/02/26 4:25 a.m.9 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/26 4:25 a.m.9 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.6AI score0.00544EPSS
Exploits3References11
RedHat Linux
RedHat Linux
added 2026/02/25 3:20 p.m.4 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/25 4:10 a.m.4 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/25 4:10 a.m.10 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring Syst...

7.8CVSS6.7AI score0.00544EPSS
Exploits3References11
RedHat Linux
RedHat Linux
added 2026/02/11 5:6 p.m.3 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 4:37 p.m.3 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2026/02/11 9:10 a.m.11 views

kernel-rt security update

An update is available for kernel-rt. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel-rt packages provide the Real Time Linux Kernel, which enables...

7.8CVSS8.6AI score0.00544EPSS
Exploits3
Rows per page
Query Builder