19 matches found
CVE-2026-52930
A flaw was found in the Linux kernel's inter-process communication IPC shared memory shm component. A synchronization issue exists where orphaned shared memory segments might be incorrectly destroyed while still in use due to a lack of serialization between cleanup and attachment updates. This...
CVE-2026-53094 bpf: Fix stale offload->prog pointer after constant blinding
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stale offload-prog pointer after constant blinding When a dev-bound-only BPF program BPFFXDPDEVBOUNDONLY undergoes JIT compilation with constant blinding enabled bpfjitharden = 2, bpfjitblindconstants clones the program...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a race condition between the cleanup of the hwrngfill function and the thread termination in the...
UBUNTU-CVE-2026-43502
In the Linux kernel, the following vulnerability has been resolved: net/rds: handle zerocopy send cleanup before the message is queued A zerocopy send can fail after user pages have been pinned but before the message is attached to the sending socket. The purge path currently infers zerocopy stat...
UBUNTU-CVE-2026-31406
In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix work re-schedule after cancel in xfrmnatkeepalivenetfini After canceldelayedworksync is called from xfrmnatkeepalivenetfini, xfrmstatefini flushes remaining states via xfrmstatedelete, which calls...
Azure Linux 3.0 Security Update: kernel (CVE-2024-49874)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49874 advisory. - In the Linux kernel, the following vulnerability has been resolved: i3c: master: svc: Fix use after free...
Siemens SCALANCE, Ruggedcom ROX Use After Free (CVE-2022-1734)
A flaw in Linux Kernel found in nfcmrvlnciunregisterdev in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine. This plugin only works with Tenable.ot. Please visit...
CVE-2023-54128
CVE-2023-54128 affects the Linux kernel and concerns a race condition in fs: drop peer group ids under namespace lock. The issue arises when cleaning up peer group ids in the failure path without holding the namespace lock, allowing another thread to concurrently change a mount from shared to non...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-401357)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-401357 advisory. In the Linux kernel, the following vulnerability has been resolved: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition In the...
PT-2025-49442
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.134-010.a1i5000.a18.x86 64 Description The Linux kernel contains a race condition within the amdgpu amdkfd device fini sw function and interrupt handling. This condition can occur if amdgpu amdkfd device fin...
Linux Distros Unpatched Vulnerability : CVE-2024-43891
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor EVENTFILEFLFREED When eventfs was introduced, special care h...
SUSE CVE-2025-38016
In the Linux kernel, the following vulnerability has been resolved: HID: bpf: abort dispatch if device destroyed The current HID bpf implementation assumes no output report/request will go through it after hidbpfdestroydevice has been called. This leads to a bug that unplugging certain types of H...
DEBIAN-CVE-2025-37838
In the Linux kernel, the following vulnerability has been resolved: HSI: ssiprotocol: Fix use after free vulnerability in ssiprotocol Driver Due to Race Condition In the ssiprotocolprobe function, &ssi-work is bound with ssipxmitwork, In ssippnsetup, the ssippnxmit function within the ssippnops...
UBUNTU-CVE-2025-37838
In the Linux kernel, the following vulnerability has been resolved: HSI: ssiprotocol: Fix use after free vulnerability in ssiprotocol Driver Due to Race Condition In the ssiprotocolprobe function, &ssi-work is bound with ssipxmitwork, In ssippnsetup, the ssippnxmit function within the ssippnops...
DEBIAN-CVE-2022-49168
In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clean up repair bio if submit fails The submit helper will always run bioendio on the bio if it fails to submit, so cleaning up the bio just leads to a variety of use-after-free and NULL pointer dereference bugs...
UBUNTU-CVE-2022-49129
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: fix crash when startup fails. If the nic fails to start, it is possible that the resetwork has already been scheduled. Ensure the work item is canceled so we do not have use-after-free crash in case cleanup is calle...
UBUNTU-CVE-2024-49925
In the Linux kernel, the following vulnerability has been resolved: fbdev: efifb: Register sysfs groups through driver core The driver core can register and cleanup sysfs groups already. Make use of that functionality to simplify the error handling and cleanup. Also avoid a UAF race during...
CVE-2022-1734
A flaw in Linux Kernel found in nfcmrvlnciunregisterdev in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine...
DEBIAN-CVE-2022-26357
race in VT-d domain ID cleanup Xen domain IDs are up to 15 bits wide. VT-d hardware may allow for only less than 15 bits to hold a domain ID associating a physical device with a particular domain. Therefore internally Xen domain IDs are mapped to the smaller value range. The cleaning up of the...