Lucene search
K

1624 matches found

Vulnrichment
Vulnrichment
added 2026/04/22 2:23 a.m.2 views

CVE-2026-5398 Kernel use-after-free bug in the TIOCNOTTY handler

The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A malicious process can abuse the...

5.7AI score0.00165EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/22 2:23 a.m.35 views

CVE-2026-5398 Kernel use-after-free bug in the TIOCNOTTY handler

The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A malicious process can abuse the...

0.00165EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.9 views

FreeBSD 资源管理错误漏洞

FreeBSD is a Unix-like operating system developed by the FreeBSD Foundation. There is a resource management vulnerability in FreeBSD, which stems from the TIOCNOTTY implementation failing to clear the pointer pointing to the control terminal structure of the calling process. This could allow...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34416

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A dangling pointer issue exists in the Bluetooth MGMT component. The problem occurs during the execution of mgmt add adv patterns monitor complete when the condition checking fails to...

7.8CVSS7AI score0.00378EPSS
Exploits0References118
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34241

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The implementation of TIOCNOTTY fails to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper conditional checks in the mgmtaddadvpatternsmonitorcomplete function. This leads to the...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

FreeBSD : FreeBSD -- Kernel use-after-free bug in the TIOCNOTTY handler (971b5528-3def-11f1-bb07-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 971b5528-3def-11f1-bb07-bc241121aa0a advisory. The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the...

8.4CVSS5.8AI score0.00165EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a NETDEVUP condition that allows for the reuse of freed fanout resources after release. This can...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31504

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: fix fanout UAF in packetrelease via NETDEVUP race packetrelease has a race window where NETDEVUP can re-register a socket into a fanout group's arr array...

7.8CVSS6.3AI score0.00288EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-31511

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: MGMT: Fix dangling pointer on mgmtaddadvpatternsmonitorcomplete This fixes the condition checking so mgmtpendingvalid is executed whenever status !=...

7.8CVSS7.1AI score0.00129EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.11 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012951)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012951 advisory. In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into accoun...

4.7CVSS6.5AI score0.00193EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2026/04/21 12:0 a.m.7 views

FreeBSD Security Advisory - FreeBSD-SA-26:10.tty

FreeBSD Security Advisory - The implementation of TIOCNOTTY failed to clear a back-pointer from the structure representing the controlling terminal to the calling process' session. If the invoking process then exits, the terminal structure may end up containing a pointer to freed memory. A...

5.7AI score0.00165EPSS
Exploits0
NVD
NVD
added 2026/04/20 6:16 p.m.10 views

CVE-2026-26399

A stack-use-after-return issue exists in the ArduinoCoreSTM32 library prior to version 1.7.0. The pwmstart function allocates a TIMHandleTypeDef structure on the stack and passes its address to HAL initialization routines, where it is stored in a global timer handle registry. After the function...

5.3CVSS0.00179EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-6068

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and...

9.6CVSS7.1AI score0.00414EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.13 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007286)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007286 advisory. In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into accoun...

4.7CVSS6.2AI score0.00193EPSS
Exploits0References4
OSV
OSV
added 2026/04/13 5:15 p.m.4 views

PSF-0000-CVE-2026-6100

Use-after-free UAF was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile when a memory allocation fails with a MemoryError and the decompression instance is re-used. This scenario can be triggered if the process is under memory pressure. The fix cleans up the dangling...

9.1CVSS5.8AI score0.00579EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/10 3:31 p.m.3 views

EUVD-2026-21380

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or unexpected behavior...

6.5CVSS6AI score0.00414EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/10 3:12 p.m.4 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the response file processing due to a dangling pointer to freed memory being stored in the global dependfile and later dereferenced after the response-file buffer is freed. An attacker can cause data corruption or...

9.6CVSS6AI score0.00414EPSS
Exploits1References2
OSV
OSV
added 2026/04/10 2:16 p.m.2 views

DEBIAN-CVE-2026-6068

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or remote code executi...

9.6CVSS6.3AI score0.00414EPSS
Exploits1References1
OSV
OSV
added 2026/04/10 2:16 p.m.6 views

UBUNTU-CVE-2026-6068

NASM contains a heap use after free vulnerability in response file -@ processing where a dangling pointer to freed memory is stored in the global dependfile and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or remote code executi...

9.6CVSS6.3AI score0.00414EPSS
Exploits1References3
Rows per page
Query Builder