Lucene search
+L

18 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: mmc: vub300 – fixed a use-after-free issue upon disconnection. The vub300 driver maintains a explicit reference count for the controller and its driver data. In theory, this reference count can be dropped after the driver is...

7.8CVSS6AI score0.00115EPSS
Exploits0References1
mscve
mscve
added 2026/04/29 8:1 a.m.6 views

EDAC/mc: Fix error path ordering in edac_mc_alloc()

...

5.5CVSS5.8AI score0.00115EPSS
Exploits0
osv
osv
added 2026/04/24 3:16 p.m.7 views

DEBIAN-CVE-2026-31650

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix use-after-free on disconnect The vub300 driver maintains an explicit reference count for the controller and its driver data and the last reference can in theory be dropped after the driver has been unbound. This...

7.8CVSS5.3AI score0.00115EPSS
Exploits0References1
euvd
euvd
added 2026/04/24 2:45 p.m.14 views

EUVD-2026-25543

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix use-after-free on disconnect The vub300 driver maintains an explicit reference count for the controller and its driver data and the last reference can in theory be dropped after the driver has been unbound. This...

5.5AI score0.00115EPSS
Exploits0References3
cvelist
cvelist
added 2026/04/24 2:45 p.m.54 views

CVE-2026-31650 mmc: vub300: fix use-after-free on disconnect

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix use-after-free on disconnect The vub300 driver maintains an explicit reference count for the controller and its driver data and the last reference can in theory be dropped after the driver has been unbound. This...

0.00115EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/04/24 12:0 a.m.6 views

PT-2026-35002

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the mmc vub300 driver. The driver maintains an explicit reference count for the controller and its driver data, but the last reference could be dropped...

5.2AI score0.00115EPSS
Exploits0References7
nessus
nessus
added 2026/04/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23475

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves ...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References3
susecve
susecve
added 2026/04/03 11:26 p.m.8 views

SUSE CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

4.7CVSS5.7AI score0.00123EPSS
Exploits0References16
euvd
euvd
added 2026/04/03 6:31 p.m.12 views

EUVD-2026-18750

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.7AI score0.00123EPSS
Exploits0References7
nvd
nvd
added 2026/04/03 4:16 p.m.5 views

CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.5CVSS0.00123EPSS
Exploits0References8
ubuntucve
ubuntucve
added 2026/04/03 4:16 p.m.4 views

CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8
osv
osv
added 2026/04/03 4:16 p.m.7 views

UBUNTU-CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
cve
cve
added 2026/04/03 3:15 p.m.17 views

CVE-2026-23475

CVE-2026-23475 affects the Linux kernel SPI subsystem. The issue was a NULL pointer dereference window in per‑CPU controller statistics: stats were allocated only after controller registration with driver core, so early sysfs access could dereference NULL. The fix moves statistics allocation to t...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
attackerkb
attackerkb
added 2026/04/03 3:15 p.m.3 views

CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.7AI score0.00123EPSS
Exploits0References7Affected Software1
osv
osv
added 2026/04/03 3:15 p.m.1 views

CVE-2026-23475 spi: fix statistics allocation

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References11
cvelist
cvelist
added 2026/04/03 3:15 p.m.24 views

CVE-2026-23475 spi: fix statistics allocation

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

0.00123EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/04/03 12:0 a.m.16 views

PT-2026-30169

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw where controller per-cpu statistics were not allocated until after the controller was registered, creating a window where accessing sysfs attributes cou...

9.8CVSS6.1AI score0.00459EPSS
Exploits0References493
nessus
nessus
added 2026/01/22 12:0 a.m.3 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49992)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49992 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/stm: Avoid use-after-free issues wit...

7.8CVSS6.3AI score0.00239EPSS
Exploits0References2
Rows per page
Query Builder