Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 5 days ago9 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-2595)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Input: alps - fix use-after-free bugs caused by dev3registerworkCVE-2025-68822 ext4: reject mount if bigalloc with sfirstdatablock !=...

9.8CVSS6.9AI score0.0138EPSS
Exploits15References167
Cvelist
Cvelist
added 2026/06/24 4:28 p.m.30 views

CVE-2026-52972 crypto: af_alg - Cap AEAD AD length to 0x80000000

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

0.0014EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:28 p.m.20 views

CVE-2026-52972

CVE-2026-52972 affects the Linux kernel crypto/af_alg component, causing an arithmetic overflow when handling associated data lengths during the TX buffer size check. The root cause is the potential overflow if AD length is not capped; the fix caps the AD length to 0x80000000. Multiple OS vendors...

7CVSS5.7AI score0.0014EPSS
Exploits0References11Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/07 2:19 a.m.9 views

SUSE CVE-2026-43078

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Fix page reassignment overflow in afalgpulltsgl When page reassignment was added to afalgpulltsgl the original loop wasn't updated so it may try to reassign one more page than necessary. Add the check to the...

5.8AI score0.00129EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/06 1:24 p.m.9 views

CVE-2026-43078

A flaw was found in the Linux kernel. Specifically, within the crypto: afalg component, a page reassignment overflow could occur in the afalgpulltsgl function. This vulnerability arises because the original loop was not updated, potentially allowing it to reassign one more page than necessary. Th...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.4 views

Siemens S7-1500 Incorrect Type Conversion or Cast (CVE-2025-40022)

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Fix incorrect boolean values in afalgctx Commit 1b34cbbf4f01 crypto: afalg - Disallow concurrent writes in afalgsendmsg changed some fields from bool to 1-bit bitfields of type u32. However, some assignments to...

5.3AI score0.00193EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/01/14 3:5 p.m.3 views

CVE-2025-71113

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...

5.5CVSS5.4AI score0.00123EPSS
Exploits0
CVE
CVE
added 2025/10/24 12:24 p.m.43 views

CVE-2025-40022

Summary (CVE-2025-40022) : In the Linux kernel, the af_alg crypto context used 1-bit bitfields of type u32 after a commit that disallowed concurrent writes. Some assignments to fields more/merge wrote values >1, which previously converted to bool, but with 1-bit bitfields the value mod 2 is us...

6.1AI score0.00193EPSS
Exploits0References9
OSV
OSV
added 2025/10/13 2:15 p.m.9 views

AZL-68460 CVE-2025-39964 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Disallow concurrent writes in afalgsendmsg Issuing two writes to the same afalg socket is bogus as the data will be interleaved in an unpredictable fashion. Furthermore, concurrent writes may create inconsistencie...

3.3CVSS6.8AI score0.00232EPSS
Exploits0References1
OSV
OSV
added 2025/10/13 1:48 p.m.4 views

CVE-2025-39964 crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Disallow concurrent writes in afalgsendmsg Issuing two writes to the same afalg socket is bogus as the data will be interleaved in an unpredictable fashion. Furthermore, concurrent writes may create inconsistencie...

3.3CVSS6.4AI score0.00232EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/07/16 11:13 a.m.28 views

CVE-2022-48781 crypto: af_alg - get rid of alg_memory_allocated

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - get rid of algmemoryallocated algmemoryallocated does not seem to be really used. algproto does have a .memoryallocated field, but no corresponding .sysctlmem. This means skhasaccount returns true, but all...

0.00195EPSS
Exploits0References2
Rows per page
Query Builder