CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: fixed a memory leak in bnxtnvmtest Free the kzalloc’ed buffer before returning on the success path...

5.8AI score0.00026EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: The bdcnt field in the TX BD must be properly masked. The bdcnt field in the TX BD specifies the total number of BDs for the TX packet. This field consists of 5 bits, and the maximum supported value is 32 with a value of ...

5.5CVSS5.2AI score0.0003EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix lockdep warning during rmmod The commit under the Fixes tag added a netdevassertlocked in bnxtfreentpfltrs. The lock should be held during normal run-time but the assert will be triggered see below during bnxtremoveon...

5.5CVSS5.7AI score0.00021EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fixed null pointer dereference in bnxtbsTraceCheckWrap. In older firmware versions, we might encounter the ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER for the firmware trace data type that has not been initialized. This could lea...

5.5AI score0.00026EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: bnxten: Avoid order-5 memory allocation for TPA data. The driver needs to keep track of all possible concurrent TPA GRO/LRO completions on the aggregation ring. On P5 chips, the maximum number of concurrent TPA is 256, and the...

5.5CVSS6.1AI score0.00028EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: bnxten: The backing store type is set based on the query type. The bnxthwrmfuncbackingstoreqcapsv2 function stores resp-type from the firmware response in ctxm-type, and then uses that value to index fixed backing-store metadata...

5.5CVSS5.7AI score0.00015EPSS

Exploits0References2

SUSE CVE•added 2026/05/09 2:40 a.m.•4 views

SUSE CVE-2026-43260

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix RSS context delete logic We need to free the corresponding RSS context VNIC in FW everytime an RSS context is deleted in driver. Commit 667ac333dbb7 added a check to delete the VNIC in FW only when netifrunning is tru...

7.8CVSS5.7AI score0.00015EPSS

RedhatCVE•added 2026/05/06 11:40 p.m.•3 views

CVE-2026-43260

A flaw was found in the bnxten driver of the Linux kernel. An issue in the RSS Receive Side Scaling context deletion logic can lead to a leak of VNICs Virtual Network Interface Controllers in the firmware. This can cause subsequent attempts to create new VNICs to fail, resulting in the loss of...

7.8CVSS5.8AI score0.00015EPSS

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27820

5.8AI score0.00015EPSS

Exploits0References5

NVD•added 2026/05/06 12:16 p.m.•6 views

CVE-2026-43260

7.8CVSS0.00015EPSS

CVE•added 2026/05/06 11:28 a.m.•8 views

CVE-2026-43260

The CVE concerns the bnxt_en driver in the Linux kernel. The vulnerability stems from RSS context deletion logic that could leak VNICs in firmware when deleting RSS contexts with the interface down, leading to failures when re-opening and restoring RSS contexts. The fix removes the netif_running(...

7.8CVSS5.8AI score0.00015EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/06 11:28 a.m.•25 views

CVE-2026-43260 bnxt_en: Fix RSS context delete logic

0.00015EPSS

NVD•added 2026/05/01 3:16 p.m.•4 views

CVE-2026-43034

In the Linux kernel, the following vulnerability has been resolved: bnxten: set backing store type from query type bnxthwrmfuncbackingstoreqcapsv2 stores resp-type from the firmware response in ctxm-type and later uses that value to index fixed backing-store metadata arrays such as ctxarr and...

5.5CVSS0.00015EPSS

ATTACKERKB•added 2026/05/01 2:15 p.m.•2 views

CVE-2026-43034

5.7AI score0.00015EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/01 2:15 p.m.•2 views

CVE-2026-43034

5.5CVSS5.7AI score0.00015EPSS

Exploits0

EUVD•added 2026/05/01 2:15 p.m.•4 views

EUVD-2026-26633

5.8AI score0.00015EPSS

Positive Technologies•added 2026/05/01 12:0 a.m.•2 views

PT-2026-36451

In the Linux kernel, the following vulnerability has been resolved: bnxt en: set backing store type from query type bnxt hwrm func backing store qcaps v2 stores resp-type from the firmware response in ctxm-type and later uses that value to index fixed backing-store metadata arrays such as ctx arr...

5.8AI score0.00015EPSS

NVD•added 2026/04/03 4:16 p.m.•1 views

CVE-2026-31395

In the Linux kernel, the following vulnerability has been resolved: bnxten: fix OOB access in DBGBUFPRODUCER async event handler The ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER handler in bnxtasynceventprocess uses a firmware-supplied 'type' field directly as an index into bp-bstrace without bounds...

7.1CVSS0.00021EPSS