Lucene search
+L

8 matches found

OSV
OSV
added 2026/05/28 10:16 a.m.7 views

UBUNTU-CVE-2026-46121

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: protect memcgpath kfree with damonsysfslock Patch series "mm/damon/sysfs-schemes: fix use-after-free for memcgpath". Reads of 'memcgpath' and 'path' files in DAMON sysfs interface could race with their...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References8
CVE
CVE
added 2026/05/28 9:35 a.m.32 views

CVE-2026-46121

The CVE-2026-46121 issue affects the Linux kernel DAMON sysfs interface (mm/damon/sysfs-schemes). A race between reads and writes of memcg_path and path can lead to a use-after-free when a user reads or writes the sysfs files while a buffer is being deallocated. The root cause is that user-direct...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/05/19 7:2 p.m.10 views

CLSA-2026-1779217317 systemd: Fix of CVE-2026-29111

CVE-2026-29111: core: validate input cgroup path more prudently...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References1
OSV
OSV
added 2026/04/29 5:13 p.m.8 views

CLSA-2026-1777482797 Fix CVE(s): CVE-2026-29111

SECURITY UPDATE: stack overwriting via crafted cgroup path - debian/patches/CVE-2026-29111.patch: validate input cgroup path in methodgetunitbycontrolgroup with pathisabsolute and pathisnormalized checks before passing to managergetunitbycgroup. - CVE-2026-29111...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References1
OSV
OSV
added 2026/04/13 4:52 p.m.9 views

CLSA-2026-1776099155 systemd: Fix of 2 CVEs

CVE-2026-29111: validate input cgroup path in GetUnitByControlGroup to prevent PID 1 assert/freeze on spurious IPC API calls - CVE-2026-4105: reject invalid class types when registering machines in systemd-machined to prevent privilege escalation...

6.7CVSS5.8AI score0.00142EPSS
Exploits0References1
OSV
OSV
added 2026/03/24 9:27 a.m.3 views

SUSE-SU-2026:20822-1 Security update for systemd

This update for systemd fixes the following issues: Security issues: - CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. - CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. - udev: check for invalid...

6.7CVSS5.9AI score0.00142EPSS
Exploits0References9
OSV
OSV
added 2026/03/23 8:47 p.m.7 views

USN-8119-2 systemd vulnerabilities

USN-8119-1 fixed vulnerabilities in systemd. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that systemd incorrectly handled certain cgroup paths. A local attacker could...

6.4CVSS6.1AI score0.00144EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/11/14 3:32 p.m.8 views

runc: Rootless runc makes `/sys/fs/cgroup` writable

A flaw was found in runc, where it is vulnerable to a denial of service caused by improper access control in the /sys/fs/cgroup endpoint. This flaw allows a local authenticated attacker to cause a denial of service...

6.3CVSS6.8AI score0.00327EPSS
Exploits1References6
Rows per page
Query Builder