Lucene search
K

920 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Binder: Fixed a UAF in bindersnetlinkreport. Oneway transactions sent to frozen targets via bindersproctransaction return an BRTRANSACTIONPENDINGFROZEN error, but they are still treated as successful since the target is expected ...

7.8CVSS5.7AI score0.00019EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: rustbinder: Properly handles FDA objects with a length of zero. A bug has been fixed where an empty FDA fd array object with 0 fds could cause an out-of-bounds error. The previous implementation used skip == 0 to indicate “this i...

7.8CVSS5.9AI score0.00019EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: rustbinder: fixed oneway spam detection The spam detection logic in TreeRange was executed before the current request was inserted into the tree. As a result, the new request wasn’t taken into account in the spam calculation...

5.5CVSS5.7AI score0.00013EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: rustbinder: Avoid reading the written value in the offset array. When sending a transaction, its offset array is first copied into the target process’s virtual memory area vma. Then, the values are read back from there. This is...

7.8CVSS5.7AI score0.00012EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Binder: Signals for epoll threads that handle self-work tasks In epoll mode, threads often rely on I/O events to determine when data is ready for consumption. Within binder, a thread may initiate a command via BINDERWRITEREAD...

5.5CVSS6.1AI score0.00013EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Binder: Fixed another UAF in binderdevices. The commit e77aff5528a18 "binderfs: fixed a use-after-free in binderdevices" addressed a use-after-free where devices could be released without first being removed from the...

7.8CVSS5.8AI score0.00052EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.0 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: rustbinder: Check ownership before using vma When installing missing pages or updating them, Rust Binder will look up the vma in the memory management unit by address, and then call vminsertpage or zappagerangesingle. However, if...

7.8CVSS5.7AI score0.00013EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Binder: Fixed asyncfreespace accounting for empty parcels In version 4.13, commit 74310e06be4d “android: binder: Move buffer out of area shared with user space” fixed an issue related to the visibility of kernel structures. As pa...

5.5CVSS5.8AI score0.00017EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Binder: A memory leak was fixed in binderinit. In binderinit, the destruction of binderallocshrinkerinit is not performed in the correct path, which can lead to memory leaks. Therefore, this commit introduces...

5.8AI score0.00046EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-43434

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rustbinder: check ownership before using vma When installing missing pages or zapping them,...

7.8CVSS5.7AI score0.00013EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-43433

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rustbinder: avoid reading the written value in offsets array When sending a transaction, its...

7.8CVSS5.7AI score0.00012EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/13 3:34 a.m.3 views

SUSE CVE-2026-43435

In the Linux kernel, the following vulnerability has been resolved: rustbinder: fix oneway spam detection The spam detection logic in TreeRange was executed before the current request was inserted into the tree. So the new request was not being factored in the spam calculation. Fix this by moving...

5.7AI score0.00013EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/11 2:13 p.m.2 views

SUSE CVE-2026-43433

In the Linux kernel, the following vulnerability has been resolved: rustbinder: avoid reading the written value in offsets array When sending a transaction, its offsets array is first copied into the target proc's vma, and then the values are read back from there. This is normally fine because th...

7.8CVSS5.7AI score0.00012EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/05/10 5:43 p.m.111 views

Exploit for Use After Free in Google Android

CVE-2020-0423...

7.8CVSS5.8AI score0.00949EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/05/08 11:55 p.m.5 views

CVE-2026-43435

A flaw was found in the Linux kernel's rustbinder component. The oneway spam detection logic in both TreeRange and ArrayRange was incorrectly implemented or missing, allowing large spamming transactions to go undetected. A local attacker could exploit this vulnerability to cause a Denial of Servi...

5.5CVSS5.8AI score0.00013EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/08 11:52 p.m.3 views

CVE-2026-43434

A flaw was found in the rustbinder component of the Linux kernel. When installing or zapping pages, rustbinder may incorrectly look up and use a Virtual Memory Area VMA if it has been closed and replaced at the same address. This can allow a local attacker to write to normally read-only binder...

7.8CVSS5.7AI score0.00013EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/08 11:51 p.m.3 views

CVE-2026-43433

A flaw was found in the Linux kernel's rustbinder component. If a local process gains the ability to write to its own virtual memory area VMA, it could exploit a time-of-check to time-of-use TOCTOU vulnerability. This allows the process to alter the offsets array during a transaction before it is...

7.8CVSS5.8AI score0.00012EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.4 views

EUVD-2026-28741

In the Linux kernel, the following vulnerability has been resolved: rustbinder: fix oneway spam detection The spam detection logic in TreeRange was executed before the current request was inserted into the tree. So the new request was not being factored in the spam calculation. Fix this by moving...

5.7AI score0.00013EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.4 views

EUVD-2026-28740

In the Linux kernel, the following vulnerability has been resolved: rustbinder: check ownership before using vma When installing missing pages or zapping them, Rust Binder will look up the vma in the mm by address, and then call vminsertpage or zappagerangesingle. However, if the vma is closed an...

5.7AI score0.00013EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.6 views

EUVD-2026-28739

In the Linux kernel, the following vulnerability has been resolved: rustbinder: avoid reading the written value in offsets array When sending a transaction, its offsets array is first copied into the target proc's vma, and then the values are read back from there. This is normally fine because th...

5.7AI score0.00012EPSS
Exploits0References4
Rows per page
Query Builder