Lucene search
+L

306 matches found

Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-38951

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A system hang can occur when stopping a RAID array using the device-mapper's dm-raid target. This happens when a dm-raid managed device tree is suspended from top to bottom and the...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-38948

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A type mismatch occurs in the Linux kernel when CONFIG CFI Control Flow Integrity, a security mechanism that ensures indirect function calls target the correct function type is enabled...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References18
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a mismatch in the type of the bpf encryption kfunc destructor function. This vulnerability may...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43309

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - md raid: fix hang when stopping arrays with metadata through dm-raid When using device-mapper's dm-raid target, stopping a RAID array can cause the system to ha...

5.5CVSS6.1AI score0.00121EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-43306

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: crypto: Use the correct destructor kfunc type With CONFIGCFI enabled, the kernel strictly enforces that indirect function calls use a function pointer type...

5.5CVSS6.2AI score0.00122EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/24 1:29 a.m.7 views

SUSE CVE-2026-31532

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

6.4CVSS5.7AI score0.00124EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/23 12:31 p.m.12 views

EUVD-2026-25219

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

5.7AI score0.00124EPSS
Exploits0References5
NVD
NVD
added 2026/04/23 12:17 p.m.6 views

CVE-2026-31532

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

7.8CVSS0.00124EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/04/23 11:12 a.m.8 views

CVE-2026-31532

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

7.8CVSS5.6AI score0.00124EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/04/23 11:12 a.m.1 views

CVE-2026-31532 can: raw: fix ro->uniq use-after-free in raw_rcv()

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

7.8CVSS5.8AI score0.00124EPSS
Exploits0References12
Cvelist
Cvelist
added 2026/04/23 11:12 a.m.39 views

CVE-2026-31532 can: raw: fix ro->uniq use-after-free in raw_rcv()

In the Linux kernel, the following vulnerability has been resolved: can: raw: fix ro-uniq use-after-free in rawrcv rawrelease unregisters raw CAN receive filters via canrxunregister, but receiver deletion is deferred with callrcu. This leaves a window where rawrcv may still be running in an RCU...

7.8CVSS0.00124EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.9 views

SUSE CVE-2026-31474

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in isotpsendmsg isotpsendmsg uses only cmpxchg on so-tx.state to serialize access to so-tx.buf. isotprelease waits for ISOTPIDLE via waiteventinterruptible and then calls kfreeso-tx.buf. If a...

5.5CVSS5.6AI score0.00104EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.10 views

PT-2026-34658

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the SocketCAN subsystem of the Linux kernel. The raw release function unregisters raw CAN receive filters through can rx unregister, but the deletion of the...

7.8CVSS5.9AI score0.00124EPSS
Exploits0
NVD
NVD
added 2026/04/22 2:16 p.m.5 views

CVE-2026-31474

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in isotpsendmsg isotpsendmsg uses only cmpxchg on so-tx.state to serialize access to so-tx.buf. isotprelease waits for ISOTPIDLE via waiteventinterruptible and then calls kfreeso-tx.buf. If a...

7.8CVSS0.00104EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2026/03/19 12:27 a.m.6 views

SUSE CVE-2026-23251

In the Linux kernel, the following vulnerability has been resolved: xfs: only call xfarray,blobdestroy if we have a valid pointer Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of...

5.6AI score0.00122EPSS
Exploits0References3
NVD
NVD
added 2026/03/18 6:16 p.m.6 views

CVE-2026-23251

In the Linux kernel, the following vulnerability has been resolved: xfs: only call xfarray,blobdestroy if we have a valid pointer Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of...

5.5CVSS0.00122EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/18 6:16 p.m.7 views

CVE-2026-23251

In the Linux kernel, the following vulnerability has been resolved: xfs: only call xfarray,blobdestroy if we have a valid pointer Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/03/18 5:1 p.m.2 views

CVE-2026-23251

In the Linux kernel, the following vulnerability has been resolved: xfs: only call xfarray,blobdestroy if we have a valid pointer Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of...

5.7AI score0.00122EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/03/18 5:1 p.m.5 views

CVE-2026-23251 xfs: only call xf{array,blob}_destroy if we have a valid pointer

In the Linux kernel, the following vulnerability has been resolved: xfs: only call xfarray,blobdestroy if we have a valid pointer Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References7
CVE
CVE
added 2026/03/18 5:1 p.m.20 views

CVE-2026-23251

The CVE-2026-23251 issue affects the Linux kernel XFS code: destructors xfarray/xfblob were invoked on possibly-invalid pointers. The patch ensures xf{array,blob}_destroy is only called for a valid pointer and clears it afterwards, improving memory safety. The fix was merged in commits between 6....

5.5CVSS5.7AI score0.00122EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder