Lucene search
K

20 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fixed Use-after-Free, failed to increment the ref count of the skb while it was in use. This patch addresses a Use-after-Free issue identified by the syzbot. The problem arises when a skb is taken from the per-session...

8.4CVSS6.2AI score0.00239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005004)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005004 advisory. In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found...

8.4CVSS5.7AI score0.00239EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.6 views

SUSE CVE-2026-22997

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: j1939xtprxrtssessionactive: deactivate session upon receiving the second rts Since j1939sessiondeactivateactivatenext in j1939tprxtimer is called only when the timer is enabled, we need to call...

5.5CVSS5.2AI score0.00424EPSS
Exploits0References20
OSV
OSV
added 2026/01/25 2:36 p.m.5 views

CVE-2026-22997 net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: j1939xtprxrtssessionactive: deactivate session upon receiving the second rts Since j1939sessiondeactivateactivatenext in j1939tprxtimer is called only when the timer is enabled, we need to call...

7.5CVSS5.3AI score0.00424EPSS
Exploits0References10
OSV
OSV
added 2025/12/08 12:0 a.m.8 views

ALSA-2025:22854 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cifs: Fix oops due to uninitialised variable CVE-2025-38737 kernel: can: j1939: implement NETDEVUNREGISTER notification handler CVE-2025-39925 kernel: Bluetooth: hcievent: Fix UAF in...

5.5CVSS6.3AI score0.00194EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986970)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986970 advisory. In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found...

8.4CVSS6.1AI score0.00239EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/02 11:43 a.m.7 views

CVE-2025-39925

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

7CVSS5.7AI score0.0012EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/01 8:7 a.m.6 views

CVE-2025-39925 can: j1939: implement NETDEV_UNREGISTER notification handler

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

0.0012EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/08/06 2:14 a.m.3 views

SUSE CVE-2023-52887

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: enhanced error handling for tightly received RTS messages in xtprxrtssessionnew This patch enhances error handling in scenarios with RTS Request to Send messages arriving closely. It replaces the less informative...

6.2AI score0.00226EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2024/08/01 12:0 a.m.48 views

Oracle Linux 9 : kernel (ELSA-2024-4928)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-4928 advisory. - mlxbfgige: call requestirq after NAPI initialized Kamal Heib RHEL-43012 RHEL-37179 CVE-2024-35907 - mlxbfgige: stop PHY during open error paths Kamal...

7.8CVSS6.9AI score0.00888EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2024/07/31 9:17 a.m.13 views

CVE-2024-42076

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize unused data in j1939sendone syzbot reported kernel-infoleak in rawrecvmsg 1. j1939sendone creates full frame including unused data, but it doesn't initialize it. This causes the kernel-infoleak issue...

5.5CVSS6.8AI score0.00225EPSS
Exploits0References4
OSV
OSV
added 2024/07/29 4:15 p.m.15 views

AZL-47219 CVE-2024-42076 affecting package kernel for versions less than 6.6.43.1-7

In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize unused data in j1939sendone syzbot reported kernel-infoleak in rawrecvmsg 1. j1939sendone creates full frame including unused data, but it doesn't initialize it. This causes the kernel-infoleak issue...

5.5CVSS6.3AI score0.00225EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/07/15 12:0 a.m.64 views

RHEL 9 : kernel (RHSA-2024:4533)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4533 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: TIPC message reassembly...

9.8CVSS7.3AI score0.01358EPSS
Exploits1References33
RedhatCVE
RedhatCVE
added 2024/05/23 2:1 p.m.25 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/23 3:5 a.m.3 views

SUSE CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

8.4CVSS6.4AI score0.00239EPSS
Exploits0References3
NVD
NVD
added 2024/05/21 3:15 p.m.26 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

8.4CVSS6.4AI score0.00239EPSS
Exploits0References4
OSV
OSV
added 2024/05/21 3:15 p.m.13 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

8.4CVSS6.3AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/05/21 3:15 p.m.17 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

8.4CVSS6.3AI score0.00239EPSS
Exploits0References6
CVE
CVE
added 2024/05/21 2:19 p.m.80 views

CVE-2021-47232

CVE-2021-47232 is a Linux kernel issue where a skb is taken from the per-session j1939 skb queue without incrementing the ref count, leading to a Use-after-Free if the skb is concurrently used. The patch "can: j1939: fix Use-after-Free, hold skb ref while in use" fixes this by holding a reference...

8.4CVSS8.1AI score0.00239EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2021/06/16 12:0 a.m.5 views

PT-2024-11240 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a Use-after-Free problem in the Linux kernel, specifically in the can: j1939 module. The problem occurs when a skb is taken from the per-session skb queue witho...

8.4CVSS7.8AI score0.00239EPSS
Exploits0References19
Rows per page
Query Builder