Lucene search
K

15 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Ensure that rdmaaddrcancel is called before issuing more requests. The FSM can enter a loop, allowing rdmaresolveip to be called twice with the same idpriv. Although this cannot occur without going through this process,...

7.8CVSS6.1AI score0.00241EPSS
Exploits0References2
OSV
OSV
added 2026/01/31 12:16 p.m.3 views

UBUNTU-CVE-2025-71182

In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939sessionactivate fail if device is no longer registered syzbot is still reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 even after commit 93a27b5891b8 "can: j1939: add missing...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References29
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.8 views

EulerOS 2.0 SP13 : golang (EulerOS-SA-2025-2500)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a...

9.1CVSS7AI score0.00724EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.4 views

EulerOS 2.0 SP10 : golang (EulerOS-SA-2025-2386)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : If the PATH environment variable contains paths which are executables rather than just directories, passing certain strings to LookPath '', '.', a...

7CVSS6.8AI score0.00489EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.3 views

EulerOS 2.0 SP12 : golang (EulerOS-SA-2025-2358)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Cancelling a query e.g. by cancelling the context passed to one of the query methods during a call to the Scan method of the returned Rows can...

7CVSS6.8AI score0.00489EPSS
Exploits1References3
OSV
OSV
added 2025/10/28 12:15 p.m.4 views

UBUNTU-CVE-2025-40047

In the Linux kernel, the following vulnerability has been resolved: iouring/waitid: always prune wait queue entry in iowaitidwait For a successful return, always remove our entry from the wait queue entry list. Previously this was skipped if a cancelation was in progress, but this can race with...

5.7AI score0.00194EPSS
Exploits0References21
CVE
CVE
added 2025/10/28 11:48 a.m.23 views

CVE-2025-40047

CVE-2025-40047 affects the Linux kernel io_uring waitid path. The root cause was a race where a wait queue entry could remain due to cancellation in progress, leading to missed cleanup. The connected advisories confirm the fix as: always prune the wait queue entry in io_waitid_wait() on successfu...

6AI score0.00194EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/28 11:48 a.m.4 views

EUVD-2025-36481

In the Linux kernel, the following vulnerability has been resolved: iouring/waitid: always prune wait queue entry in iowaitidwait For a successful return, always remove our entry from the wait queue entry list. Previously this was skipped if a cancelation was in progress, but this can race with...

5.9AI score0.00194EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/28 11:48 a.m.12 views

CVE-2025-40047 io_uring/waitid: always prune wait queue entry in io_waitid_wait()

In the Linux kernel, the following vulnerability has been resolved: iouring/waitid: always prune wait queue entry in iowaitidwait For a successful return, always remove our entry from the wait queue entry list. Previously this was skipped if a cancelation was in progress, but this can race with...

0.00194EPSS
Exploits0References3
OSV
OSV
added 2025/10/18 8:3 a.m.3 views

CVE-2025-40003 net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work

In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work The origin code calls canceldelayedwork in ocelotstatsdeinit to cancel the cyclic delayed work item ocelot-statswork. However, canceldelayedwork may fail to canc...

6.6AI score0.00222EPSS
Exploits0References6
OSV
OSV
added 2025/09/05 12:43 p.m.3 views

OESA-2025-2182 golang security update

. Security Fixes: The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VC...

8.6CVSS7AI score0.00489EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-47907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cancelling a query e.g. by cancelling the context passed to one of the query methods during a call to the Scan method of the returned Rows can result in...

7CVSS6.8AI score0.00355EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/01/10 12:21 a.m.4 views

SUSE CVE-2024-56641

In the Linux kernel, the following vulnerability has been resolved: net/smc: initialize closework early to avoid warning We encountered a warning that closework was canceled before initialization. WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 flushwork+0x19e/0x1b0 Workqueue: events...

5.5CVSS7.6AI score0.00213EPSS
Exploits0References28
OSV
OSV
added 2024/07/19 11:8 a.m.5 views

OESA-2024-1860 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Ensure rdmaaddrcancel happens before issuing more requests The FSM can run in a circle allowing rdmaresolveip to be called twice on the same idpriv...

8.8CVSS7AI score0.26864EPSS
Exploits1References23
OSV
OSV
added 2023/06/28 8:15 p.m.1 views

DEBIAN-CVE-2023-3389

A use-after-free vulnerability in the Linux Kernel iouring subsystem can be exploited to achieve local privilege escalation. Racing a iouring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59...

7.8CVSS6.5AI score0.00718EPSS
Exploits0References1
Rows per page
Query Builder