Lucene search
K

34 matches found

CVE
CVE
added 2026/05/27 12:57 p.m.29 views

CVE-2026-46046

The CVE reports a refcount leak in ext4_xattr_inode_dec_ref_all() due to not releasing iloc with brelse() after ext4_get_inode_loc(), fixed by commit c8e008b6. OSV entries show patches in Root:Ubuntu 22.04/24.04, Debian, Debian-based RootIO builds, and openSUSE kernel-devel 7.0.11-1.1 for GA medi...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Tunnels: Fixed out-of-bounds access issues when generating IPv6 PMTU errors. If the ICMPv6 error is generated using a non-linear skb, the following issues arise: BUG: KASAN: Out-of-bounds access in docsum+0x220/0x240 Reading o...

7.1CVSS6.4AI score0.00237EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:3 a.m.5 views

can: gw: fix OOB heap access in cgw_csum_crc8_rel()

...

8.8CVSS5.2AI score0.00262EPSS
Exploits0
CVE
CVE
added 2026/04/25 8:47 a.m.24 views

CVE-2026-31684

The CVE-2026-31684 issue is in the Linux kernel’s net/sched pathology (act_csum) where tcf_csum_act() reads nested VLAN headers directly from skb->data if the payload contains VLAN tags, and may read VLAN_HLEN bytes before guaranteeing the full header is present. The root cause is that the cod...

5.5CVSS5.5AI score0.00117EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/04/25 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the nested VLAN headers in actcsum not being linearly present. This vulnerability may lead to the...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38059)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38059 advisory. - In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if...

5.5CVSS5.3AI score0.00155EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989774)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989774 advisory. In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum...

5.5CVSS5.8AI score0.00267EPSS
Exploits0References4
NVD
NVD
added 2025/10/22 2:15 p.m.5 views

CVE-2023-53726

In the Linux kernel, the following vulnerability has been resolved: arm64: csum: Fix OoB access in IP checksum code for negative lengths Although commit c2c24edb1d9c "arm64: csum: Fix pathological zero-length calls" added an early return for zero-length input, syzkaller has popped up with an...

0.00187EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414297)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414297 advisory. An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because...

5.5CVSS6.8AI score0.00247EPSS
Exploits0References3
NVD
NVD
added 2025/09/18 4:15 p.m.6 views

CVE-2023-53439

In the Linux kernel, the following vulnerability has been resolved: net: skbpartialcsumset fix against transport header magic value skb-transportheader uses the special 0xFFFF value to mark if the transport header was set or not. We must prevent callers to accidentaly set skb-transportheader to...

5.5CVSS0.00134EPSS
Exploits0References3
OSV
OSV
added 2025/09/18 4:15 p.m.3 views

UBUNTU-CVE-2023-53439

In the Linux kernel, the following vulnerability has been resolved: net: skbpartialcsumset fix against transport header magic value skb-transportheader uses the special 0xFFFF value to mark if the transport header was set or not. We must prevent callers to accidentaly set skb-transportheader to...

5.5CVSS5.7AI score0.00134EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/18 4:4 p.m.6 views

CVE-2023-53439 net: skb_partial_csum_set() fix against transport header magic value

In the Linux kernel, the following vulnerability has been resolved: net: skbpartialcsumset fix against transport header magic value skb-transportheader uses the special 0xFFFF value to mark if the transport header was set or not. We must prevent callers to accidentaly set skb-transportheader to...

0.00134EPSS
Exploits0References3
NVD
NVD
added 2025/09/11 5:15 p.m.8 views

CVE-2025-39770

In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6CSUM When performing Generic Segmentation Offload GSO on an IPv6 packet that contains extension headers, the kernel incorrectly requests checksum offload if the...

5.5CVSS0.00144EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/07/09 10:42 a.m.8 views

CVE-2025-38260 btrfs: handle csum tree error with rescue=ibadroots correctly

In the Linux kernel, the following vulnerability has been resolved: btrfs: handle csum tree error with rescue=ibadroots correctly BUG There is syzbot based reproducer that can crash the kernel, with the following call trace: With some debug output added DEBUG: rescue=ibadroots parsed BTRFS: devic...

0.00137EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.5 views

PT-2025-28888

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0-custom+ 249 Description: A flaw exists in the Linux kernel related to handling checksum tree errors when the rescue=ibadroots mount option is used. Specifically, if a corrupted checksum tree root is...

5.5CVSS6AI score0.00137EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/20 8:13 p.m.6 views

CVE-2025-38059

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if no valid csum tree BUG When trying read-only scrub on a btrfs with rescue=idatacsums mount option, it will crash with the following call trace: BUG: kernel NULL pointer dereference, addres...

5.5CVSS6.7AI score0.00155EPSS
Exploits0References4
CVE
CVE
added 2025/06/18 9:33 a.m.86 views

CVE-2025-38059

The CVE-2025-38059 entry documents a Linux kernel data integrity issue in btrfs: when using rescue=idatacsums, scrub can trigger a NULL pointer dereference due to not loading the csum tree. Concrete root cause: scrub path may call btrfs_search_slot() on a NULL pointer because the NO_DATA_CSUMS fl...

5.5CVSS6AI score0.00155EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/06/18 9:33 a.m.9 views

CVE-2025-38059 btrfs: avoid NULL pointer dereference if no valid csum tree

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if no valid csum tree BUG When trying read-only scrub on a btrfs with rescue=idatacsums mount option, it will crash with the following call trace: BUG: kernel NULL pointer dereference, addres...

0.00155EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/06/18 9:33 a.m.4 views

CVE-2025-38059

In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if no valid csum tree BUG When trying read-only scrub on a btrfs with rescue=idatacsums mount option, it will crash with the following call trace: BUG: kernel NULL pointer dereference, addres...

5.5CVSS5.6AI score0.00155EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.2 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: btrfs: Avoid NULL pointer dereferencing if no valid csum tree exists. BUG When attempting a read-only scrub operation on a btrfs volume with the rescue=idatacsums mount option, the operation will crash due to the following call...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References3
Rows per page
Query Builder