Lucene search
K

24 matches found

OSV
OSV
added 2026/06/19 12:0 a.m.14 views

RLSA-2026:26427 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: mptcp: fix slab-use-after-free in inetlookupestablished CVE-2026-31669 kernel: xen/privcmd: fix double free via VMA splitting CVE-2026-31787 kernel: Buffer overflow in...

7.5CVSS5.3AI score0.004EPSS
Exploits0References9
Rockylinux
Rockylinux
added 2026/06/19 12:0 a.m.12 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

9.8CVSS5.3AI score0.004EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/16 6:39 p.m.16 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS5.5AI score0.004EPSS
Exploits0References9
CVE
CVE
added 2026/05/28 9:35 a.m.28 views

CVE-2026-46138

The CVE-2026-46138 issue affects the Linux kernel Bluetooth subsystem, specifically hci_le_create_big_complete_evt. A loop over BT_BOUND connections for a BIG handle may access ev->bis_handle[i++] without ensuring i

8.1CVSS5.7AI score0.00277EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/05/27 12:57 p.m.12 views

CVE-2026-46056

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: fix potential UAF in SSP passkey handlers hciconn lookup and field access must be covered by hdev lock in hciuserpasskeynotifyevt and hcikeypressnotifyevt, otherwise the connection can be freed concurrently...

8.8CVSS5.7AI score0.00262EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a potential issue with the SSP password key handling function in Bluetooth hcievent, allowing for the...

8.8CVSS5.8AI score0.00262EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Check the length of skb for an unknown CC opcode. In hcicmdCompleteevt, if the command completion event has an unknown opcode, we assume that the first byte of skb-data contains the return status. However, th...

6AI score0.00162EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-6.1, Linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fixed handling of HCIEVIOCAPAREQUEST. If we receive HCIEVIOCAPAREQUEST while HCIOPREADREMOTEEXTFEATURES has not yet been responded to, assume that the remote supports SSP. Otherwise, this event should not be...

5.5CVSS6AI score0.00244EPSS
Exploits0References2
OSV
OSV
added 2026/05/01 2:15 p.m.1 views

CVE-2026-43018 Bluetooth: hci_event: fix potential UAF in hci_le_remote_conn_param_req_evt

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: fix potential UAF in hcileremoteconnparamreqevt hciconn lookup and field access must be covered by hdev lock in hcileremoteconnparamreqevt, otherwise it's possible it is freed concurrently. Extend the...

8.8CVSS6.6AI score0.00256EPSS
Exploits0References9
OSV
OSV
added 2026/01/08 9:25 a.m.19 views

CLSA-2026-1767864313 kernel: Fix of 46 CVEs

mm: hugetlb: fix UAF in hugetlbhandleuserfault CVE-2022-50630 - drm/amdkfd: fix potential kgdmem UAFs CVE-2023-53816 - net/mlx5e: Fix deadlock in tc route query code CVE-2023-53591 - PCI: Fix pcideviceispresent for VFs by checking PF CVE-2022-50636 - wifi: ath11k: fix monitor mode bringup crash...

7.8CVSS5.9AI score0.00272EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.5 views

SUSE CVE-2025-40301

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: validate skb length for unknown CC opcode In hcicmdcompleteevt, if the command complete event has an unknown opcode, we assume the first byte of the remaining skb-data contains the return status. However,...

4.4CVSS6.4AI score0.00162EPSS
Exploits0References22
OSV
OSV
added 2025/12/08 12:0 a.m.8 views

ALSA-2025:22854 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cifs: Fix oops due to uninitialised variable CVE-2025-38737 kernel: can: j1939: implement NETDEVUNREGISTER notification handler CVE-2025-39925 kernel: Bluetooth: hcievent: Fix UAF in...

5.5CVSS6.3AI score0.00194EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2025/11/20 3:41 p.m.22 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50327: ACPI: processor: idle: Check acpifetchacpidev return value bsc1249859. CVE-2022-50334: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam bsc1249857...

8.8CVSS7.9AI score0.21314EPSS
Exploits0References856
SUSE Linux
SUSE Linux
added 2025/11/18 5:31 p.m.7 views

Security update for the Linux Kernel

The SUSE Linux Enterprise FIXME kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50327: ACPI: processor: idle: Check acpifetchacpidev return value bsc1249859. CVE-2022-50334: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam bsc1249857...

8.8CVSS7.7AI score0.21314EPSS
Exploits0References192
Cvelist
Cvelist
added 2025/10/15 7:56 a.m.10 views

CVE-2025-39983 Bluetooth: hci_event: Fix UAF in hci_conn_tx_dequeue

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciconntxdequeue This fixes the following UAF caused by not properly locking hdev when processing HCIEVNUMCOMPPKTS: BUG: KASAN: slab-use-after-free in hciconntxdequeue+0x1be/0x220...

0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.10 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414606)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414606 advisory. In the Linux kernel before 5.12.4, net/bluetooth/hcievent.c has a use-after-free when destroying an hcichan, aka CID-5c4c8c954409. This leads to writing an arbitrary...

7.8CVSS6.6AI score0.00819EPSS
Exploits1References3
SUSE Linux
SUSE Linux
added 2025/08/18 3:57 p.m.6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-49138: Bluetooth: hcievent: Fix checking conn for leconncompleteevt bsc1238160. CVE-2023-52923: netfilter: nftables: split async and sync catchall in two...

8.5CVSS8.2AI score0.00334EPSS
Exploits2References116
SUSE Linux
SUSE Linux
added 2025/05/05 6:37 a.m.2 views

Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059164 fixes several issues. The following security issues were fixed: CVE-2024-8805: Bluetooth: hcievent: Align BR/EDR JUSTWORKS paring with LE bsc1240840. CVE-2023-52885: SUNRPC: Fix UAF in svctcplistendataready bsc1227753. CVE-2024-50205: ALSA:...

8.8CVSS8AI score0.02033EPSS
Exploits0References16
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.13 views

The vulnerability of the hci_user_confirm_request_evt() function in the net/bluetooth/hci_event.c module of the Linux operating system allows a intruder to compromise the confidentiality of the protected information.

The vulnerability of the hciuserconfirmrequestevt function in the net/bluetooth/hcievent.c module of the Linux kernel is related to improper authorization. Exploiting this vulnerability could allow an attacker to compromise the confidentiality of protected information...

7.8CVSS6.7AI score0.00261EPSS
Exploits0References20Affected Software7
OSV
OSV
added 2024/12/27 3:15 p.m.6 views

AZL-54910 CVE-2024-56654 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix using rcureadunlock while iterating The usage of rcureadunlock while inside listforeachentryrcu is not safe since for the most part entries fetched this way shall be treated as rcudereference: Note that t...

5.5CVSS6.7AI score0.00214EPSS
Exploits0References1
Rows per page
Query Builder