CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: crypto: afalg – Corrected incorrect boolean values in afalgctx. The commit 1b34cbbf4f01 „crypto: afalg – Disallowed concurrent writes in afalgsendmsg“ changed some fields from bool to 1-bit u32 fields. However, some assignment...

5.7AI score0.00063EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: smb: client: The split caching of bitfields in cachedfid was introduced to avoid race conditions involving shared bytes in the Read-Modify-Write operations. The functions isopen, haslease, and onlist are stored in the same...

8.8CVSS5.9AI score0.0003EPSS

Exploits0References1

SUSE CVE•added 2026/02/19 12:26 a.m.•2 views

SUSE CVE-2026-23230

In the Linux kernel, the following vulnerability has been resolved: smb: client: split cachedfid bitfields to avoid shared-byte RMW races isopen, haslease and onlist are stored in the same bitfield byte in struct cachedfid but are updated in different code paths that may run concurrently. Bitfiel...

5.8CVSS5.7AI score0.0003EPSS

Exploits0References7

UbuntuCve•added 2026/02/18 4:22 p.m.•2 views

CVE-2026-23230

8.8CVSS5.8AI score0.0003EPSS

Exploits0References5

Cvelist•added 2026/02/18 2:53 p.m.•25 views

CVE-2026-23230 smb: client: split cached_fid bitfields to avoid shared-byte RMW races

8.8CVSS0.0003EPSS

Exploits0References6

OSV•added 2026/02/18 2:53 p.m.•1 views

CVE-2026-23230 smb: client: split cached_fid bitfields to avoid shared-byte RMW races

8.8CVSS5.4AI score0.0003EPSS

Exploits0References9

CVE•added 2026/02/18 2:53 p.m.•6 views

CVE-2026-23230

CVE-2026-23230 is a Linux kernel local race in the SMB/CIFS client code where cached_fid bitfields (is_open, has_lease, on_list) were updated via concurrent paths, causing read–modify–write races. The root cause is that these three flags shared a single byte, so an update to one could overwrite o...

8.8CVSS5.4AI score0.0003EPSS

Exploits0References7Affected Software1

ATTACKERKB•added 2026/02/18 2:53 p.m.•4 views

CVE-2026-23230

5.1AI score0.0003EPSS

Exploits0References7Affected Software1

Debian CVE•added 2026/02/18 2:53 p.m.•3 views

CVE-2026-23230

8.8CVSS5.3AI score0.0003EPSS

Exploits0

Tenable Nessus•added 2026/02/10 12:0 a.m.•3 views

Siemens S7-1500 Incorrect Type Conversion or Cast (CVE-2025-40022)

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Fix incorrect boolean values in afalgctx Commit 1b34cbbf4f01 crypto: afalg - Disallow concurrent writes in afalgsendmsg changed some fields from bool to 1-bit bitfields of type u32. However, some assignments to...

5.3AI score0.00063EPSS

Exploits0References2

Positive Technologies•added 2026/01/01 12:0 a.m.•2 views

PT-2026-20456

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the SMB client implementation related to cached file identifier cached fid bitfields. Specifically, the is open, has lease, and on list flags were stored...

9.8CVSS7.2AI score0.00765EPSS

Exploits1References420

SUSE CVE•added 2025/10/24 11:24 p.m.•2 views

SUSE CVE-2025-40022

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Fix incorrect boolean values in afalgctx Commit 1b34cbbf4f01 "crypto: afalg - Disallow concurrent writes in afalgsendmsg" changed some fields from bool to 1-bit bitfields of type u32. However, some assignments to...

6.5AI score0.00063EPSS

Exploits0References3

OSV•added 2025/10/24 1:15 p.m.•0 views

UBUNTU-CVE-2025-40022

5.7AI score0.00063EPSS

Exploits0References10

Cvelist•added 2025/10/24 12:24 p.m.•7 views

CVE-2025-40022 crypto: af_alg - Fix incorrect boolean values in af_alg_ctx

0.00063EPSS

Exploits0References7

EUVD•added 2025/10/24 12:24 p.m.•1 views

EUVD-2025-35837

6AI score0.00063EPSS

Exploits0References8

CVE•added 2025/10/24 12:24 p.m.•8 views

CVE-2025-40022

Summary (CVE-2025-40022) : In the Linux kernel, the af_alg crypto context used 1-bit bitfields of type u32 after a commit that disallowed concurrent writes. Some assignments to fields more/merge wrote values >1, which previously converted to bool, but with 1-bit bitfields the value mod 2 is us...

6.1AI score0.00063EPSS

Exploits0References8

OSV•added 2025/10/24 12:24 p.m.•2 views

CVE-2025-40022 crypto: af_alg - Fix incorrect boolean values in af_alg_ctx

6.5AI score0.00063EPSS

Exploits0References10

Positive Technologies•added 2025/10/24 12:0 a.m.•2 views

PT-2025-43618

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the crypto/af alg subsystem. A change introduced by commit 1b34cbbf4f01 altered data types from bool to 1-bit bitfields of type u32. This...

5.5CVSS7.6AI score0.00231EPSS

Exploits3References175

SUSE CVE•added 2025/02/28 2:22 a.m.•1 views

SUSE CVE-2025-21707

In the Linux kernel, the following vulnerability has been resolved: mptcp: consolidate suboption status MPTCP maintains the received sub-options status is the bitmask carrying the received suboptions and in several bitfields carrying per suboption additional info. Zeroing the bitmask before parsi...

5.5CVSS7.6AI score0.00031EPSS

Exploits0References16

NVD•added 2025/02/27 2:15 a.m.•10 views

CVE-2025-21707

5.5CVSS0.00031EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by