Lucene search
+L

333 matches found

nessus
nessus
added 2 days ago3 views

SUSE SLES12: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2026:2914-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2914-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-53995:...

9.8CVSS6.9AI score0.93235EPSS
Exploits49References196
redhat
redhat
added 2026/07/08 4:12 a.m.6 views

kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service

A flaw was found in the Linux kernel's bonding driver. A local attacker with low privileges could exploit a use-after-free vulnerability in the bondxmitbroadcast function. This occurs due to a race condition during concurrent slave enslave/release operations, which can lead to the original socket...

7.8CVSS6.1AI score0.00124EPSS
Exploits0References5
redhat
redhat
added 2026/07/08 4:9 a.m.7 views

kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service

A flaw was found in the Linux kernel's bonding driver. A local attacker with low privileges could exploit a use-after-free vulnerability in the bondxmitbroadcast function. This occurs due to a race condition during concurrent slave enslave/release operations, which can lead to the original socket...

7.8CVSS6.1AI score0.00124EPSS
Exploits0References5
euvd
euvd
added 2026/07/01 1:32 p.m.8 views

EUVD-2026-40971

In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix NULL pointer dereference in bonddoioctl In bonddoioctl, slavedev is obtained via devgetbyname which can return NULL if the requested interface name does not exist. However, the subsequent slavedbg call is placed...

5.8AI score0.00164EPSS
Exploits0References8
astralinux
astralinux
added 2026/06/24 3:11 p.m.8 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: Bonding: alb: fixed a UAF in rlbarprecv during bond up/down. The ALB RX path may access rxhashtbl concurrently with bond teardown. During rapid bond up/down cycles, rlbdeinitialize frees rxhashtbl while RX handlers are still...

7.8CVSS6.4AI score0.00126EPSS
Exploits0References2
redhat
redhat
added 2026/06/11 11:39 a.m.9 views

kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service

A flaw was found in the Linux kernel's bonding driver. A local attacker with low privileges could exploit a use-after-free vulnerability in the bondxmitbroadcast function. This occurs due to a race condition during concurrent slave enslave/release operations, which can lead to the original socket...

7.8CVSS5.6AI score0.00124EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/06/05 7:44 p.m.12 views

CVE-2026-0050

In handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.6AI score0.00068EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:11 p.m.14 views

CVE-2026-8676

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond...

8.8CVSS5.5AI score0.00202EPSS
Exploits0References1
redhat
redhat
added 2026/06/04 1:4 p.m.9 views

kernel: Linux kernel: Use-after-free in bonding driver leads to denial of service

A flaw was found in the Linux kernel's bonding driver. A local attacker with low privileges could exploit a use-after-free vulnerability in the bondxmitbroadcast function. This occurs due to a race condition during concurrent slave enslave/release operations, which can lead to the original socket...

7.8CVSS5.9AI score0.00124EPSS
Exploits0References5
euvd
euvd
added 2026/06/02 12:31 a.m.18 views

EUVD-2026-33779

In handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score0.00068EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/01 9:14 p.m.9 views

CVE-2026-0050

In handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score0.00068EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/06/01 9:14 p.m.10 views

CVE-2026-0050

In handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00068EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/01 9:14 p.m.36 views

CVE-2026-0050

In handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00068EPSS
Exploits0References1
cve
cve
added 2026/06/01 9:14 p.m.31 views

CVE-2026-0050

Technical details are not publicly available in the provided documents for CVE-2026-0050. Monitor for updates from official advisories.

3.3CVSS5.9AI score0.00068EPSS
Exploits0References1Affected Software1
osv
osv
added 2026/06/01 12:0 a.m.13 views

ASB-A-290364858

In handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score0.00068EPSS
Exploits0References1
susecve
susecve
added 2026/05/28 3:55 a.m.11 views

SUSE CVE-2026-45970

In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlbarprecv during bond up/down The ALB RX path may access rxhashtbl concurrently with bond teardown. During rapid bond up/down cycles, rlbdeinitialize frees rxhashtbl while RX handlers are still running,...

7CVSS5.7AI score0.00126EPSS
Exploits0References24
euvd
euvd
added 2026/05/27 3:33 p.m.11 views

EUVD-2026-32257

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix UMR hang in LAG error state unload During firmware reset in LAG mode, a race condition causes the driver to hang indefinitely while waiting for UMR completion during device unload. See 1. In LAG mode the bond devic...

5.8AI score0.00155EPSS
Exploits0References5
nvd
nvd
added 2026/05/27 2:17 p.m.13 views

CVE-2026-45973

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix UMR hang in LAG error state unload During firmware reset in LAG mode, a race condition causes the driver to hang indefinitely while waiting for UMR completion during device unload. See 1. In LAG mode the bond devic...

5.5CVSS0.00155EPSS
Exploits0References4
nvd
nvd
added 2026/05/27 2:17 p.m.12 views

CVE-2026-45970

In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlbarprecv during bond up/down The ALB RX path may access rxhashtbl concurrently with bond teardown. During rapid bond up/down cycles, rlbdeinitialize frees rxhashtbl while RX handlers are still running,...

7.8CVSS0.00126EPSS
Exploits0References8
osv
osv
added 2026/05/27 2:17 p.m.13 views

UBUNTU-CVE-2026-45973

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix UMR hang in LAG error state unload During firmware reset in LAG mode, a race condition causes the driver to hang indefinitely while waiting for UMR completion during device unload. See 1. In LAG mode the bond devic...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References11
Rows per page
Query Builder