Lucene search
K

306 matches found

NVD
NVD
added 2026/07/01 2:16 p.m.6 views

CVE-2026-53342

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: call pagetable dtor when freeing hot-removed page tables Since 5e8eb9aeeda3 "arm64: mm: always call PTE/PMD ctor in createpgdmapping" page-table allocation on ARM64 always calls pagetablepte,pmd,pud,p4dctor. This sets...

0.00154EPSS
Exploits0References3
OSV
OSV
added 2026/07/01 2:16 p.m.5 views

UBUNTU-CVE-2026-53342

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: call pagetable dtor when freeing hot-removed page tables Since 5e8eb9aeeda3 "arm64: mm: always call PTE/PMD ctor in createpgdmapping" page-table allocation on ARM64 always calls pagetablepte,pmd,pud,p4dctor. This sets...

5.7AI score0.00154EPSS
Exploits0References6
CVE
CVE
added 2026/07/01 1:32 p.m.20 views

CVE-2026-53342

Summary (CVE-2026-53342): In the ARM64 Linux kernel, page-table allocations performed during PGD mappings (pagetable_ctor calls) were not accompanied by matching destructor calls (pagetable_dtor) when freeing hot-removed page tables. This can produce kernel warnings about bad page state and may r...

5.8AI score0.00154EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 1:32 p.m.8 views

EUVD-2026-40976

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: call pagetable dtor when freeing hot-removed page tables Since 5e8eb9aeeda3 "arm64: mm: always call PTE/PMD ctor in createpgdmapping" page-table allocation on ARM64 always calls pagetablepte,pmd,pud,p4dctor. This sets...

5.8AI score0.00154EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/07/01 1:32 p.m.6 views

CVE-2026-53342

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: call pagetable dtor when freeing hot-removed page tables Since 5e8eb9aeeda3 "arm64: mm: always call PTE/PMD ctor in createpgdmapping" page-table allocation on ARM64 always calls pagetablepte,pmd,pud,p4dctor. This sets...

5.7AI score0.00154EPSS
Exploits0
OSV
OSV
added 2026/07/01 1:32 p.m.3 views

CVE-2026-53342 arm64: mm: call pagetable dtor when freeing hot-removed page tables

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: call pagetable dtor when freeing hot-removed page tables Since 5e8eb9aeeda3 "arm64: mm: always call PTE/PMD ctor in createpgdmapping" page-table allocation on ARM64 always calls pagetablepte,pmd,pud,p4dctor. This sets...

5.8AI score0.00154EPSS
Exploits0References6
CVE
CVE
added 2026/06/26 5:29 p.m.71 views

CVE-2026-48042

Envoy (open source edge and service proxy) contains a stack overflow vulnerability in the destructor of a JSON object when processing extremely nested structures. Affected versions are prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1. The issue is fixed in those same release lines (upgrade to 1.35.11...

7.5CVSS5.8AI score0.00557EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/26 5:29 p.m.15 views

CVE-2026-48042

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, destructor of JSON Object results in stack overflow when deeply O100K nested objects are present. This vulnerability is fixed in 1.35.11, 1.36.7, 1.37.3, and 1.38.1...

7.5CVSS5.8AI score0.00557EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/06/26 5:29 p.m.36 views

CVE-2026-48042 Envoy: Stack overflow in destructor of highly nested JSON

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, destructor of JSON Object results in stack overflow when deeply O100K nested objects are present. This vulnerability is fixed in 1.35.11, 1.36.7, 1.37.3, and 1.38.1...

7.5CVSS0.00557EPSS
Exploits1References2
OSV
OSV
added 2026/06/26 5:29 p.m.4 views

CVE-2026-48042 Envoy: Stack overflow in destructor of highly nested JSON

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, destructor of JSON Object results in stack overflow when deeply O100K nested objects are present. This vulnerability is fixed in 1.35.11, 1.36.7, 1.37.3, and 1.38.1...

7.5CVSS6AI score0.00557EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.12 views

PT-2026-52888

Name of the Vulnerable Software and Affected Versions Envoy versions prior to 1.35.11 Envoy versions prior to 1.36.7 Envoy versions prior to 1.37.3 Envoy versions prior to 1.38.1 Description A stack overflow occurs during the destructor process of a JSON Object when deeply nested objects, reachin...

7.5CVSS5.8AI score0.00557EPSS
Exploits2References21
SUSE CVE
SUSE CVE
added 2026/06/25 2:19 a.m.6 views

SUSE CVE-2026-52943

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskbcarve helpers pskbcarveinsideheader and pskbcarveinsidenonlinear both copy the old skbsharedinfo header into a new buffer via memcpy, which includes the destructorarg pointer uar...

7CVSS5.9AI score0.00238EPSS
Exploits0References12
NVD
NVD
added 2026/06/24 5:17 p.m.9 views

CVE-2026-53099

In the Linux kernel, the following vulnerability has been resolved: bpf: Switch CONFIGCFICLANG to CONFIGCFI This was renamed in commit 23ef9d439769 "kcfi: Rename CONFIGCFICLANG to CONFIGCFI" as it is now a compiler-agnostic option. Using the wrong name results in the code getting compiled out...

0.00156EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38967

In the Linux kernel, the following vulnerability has been resolved: bpf: Switch CONFIGCFICLANG to CONFIGCFI This was renamed in commit 23ef9d439769 "kcfi: Rename CONFIGCFICLANG to CONFIGCFI" as it is now a compiler-agnostic option. Using the wrong name results in the code getting compiled out...

5.8AI score0.00156EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net/handshake: The function handshakereqsubmit replaces sk-skdestruct, but it never restores it when submission fails before the request is hashed. As a result, handshakeskdestruct returns early, and the original destructor never...

3.3CVSS5.9AI score0.0011EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: BPF: crypto: Use the correct destructor kfunc type With CONFIGCFI enabled, the kernel strictly ensures that indirect function calls use a function pointer type that matches the target function. I encountered the following type...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 10:17 a.m.7 views

CVE-2026-52943

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskbcarve helpers pskbcarveinsideheader and pskbcarveinsidenonlinear both copy the old skbsharedinfo header into a new buffer via memcpy, which includes the destructorarg pointer uar...

7.8CVSS0.00238EPSS
Exploits0References11
OSV
OSV
added 2026/06/24 9:0 a.m.2 views

CVE-2026-52943 net: skbuff: fix missing zerocopy reference in pskb_carve helpers

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskbcarve helpers pskbcarveinsideheader and pskbcarveinsidenonlinear both copy the old skbsharedinfo header into a new buffer via memcpy, which includes the destructorarg pointer uar...

7.8CVSS5.9AI score0.00238EPSS
Exploits0References14
ATTACKERKB
ATTACKERKB
added 2026/06/24 9:0 a.m.6 views

CVE-2026-52943

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskbcarve helpers pskbcarveinsideheader and pskbcarveinsidenonlinear both copy the old skbsharedinfo header into a new buffer via memcpy, which includes the destructorarg pointer uar...

7.8CVSS5.8AI score0.00238EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/06/24 9:0 a.m.14 views

EUVD-2026-38732

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy reference in pskbcarve helpers pskbcarveinsideheader and pskbcarveinsidenonlinear both copy the old skbsharedinfo header into a new buffer via memcpy, which includes the destructorarg pointer uar...

5.9AI score0.00238EPSS
Exploits0References8
Rows per page
Query Builder