Lucene search
K

21 matches found

EUVD
EUVD
added 2026/05/27 3:33 p.m.12 views

EUVD-2026-32384

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - don't deref NULL sksocket member after tcpclose When deleting a peer in case of keepalive expiration, the peer is removed from the OpenVPN hashtable and is temporary inserted in a "release list" for further processing...

5.9AI score0.00163EPSS
Exploits0References4
CVE
CVE
added 2026/05/27 12:17 p.m.29 views

CVE-2026-45918

CVE-2026-45918 concerns a race condition in the Linux kernel related to OpenVPN TCP handling. When a peer is kept alive and later removed, the kernel temporarily places the peer in a release list and detaches from the socket by restoring its proto and socket callbacks. If userspace closes the soc...

5.5CVSS5.9AI score0.00163EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.21 views

PT-2026-43785

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the OpenVPN implementation within the Linux kernel. When a peer is deleted due to keepalive expiration, it is moved to a release list for processing via the ov...

5.5CVSS5.8AI score0.00163EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43232

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: wan: farsync: Fix use-after-free bugs caused by unfinished tasklets When the FarSync T-series card is being detached, the fstcardinfo is deallocated in...

8.8CVSS7.1AI score0.00387EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987069 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: nci: add flushworkqueue to prevent uaf Our detector found a concurrent use-after-free bug wh...

7.8CVSS5.9AI score0.00285EPSS
Exploits0References4
OSV
OSV
added 2025/09/19 4:15 p.m.8 views

AZL-67563 CVE-2025-39863 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work The brcmfbtcoexdetach only shuts down the btcoex timer, if the flag timeron is false. However, the brcmfbtcoextimerfunc, which runs as timer handler, sets...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References1
OSV
OSV
added 2025/09/19 4:15 p.m.3 views

DEBIAN-CVE-2025-39863

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work The brcmfbtcoexdetach only shuts down the btcoex timer, if the flag timeron is false. However, the brcmfbtcoextimerfunc, which runs as timer handler, sets...

7.8CVSS6.5AI score0.00148EPSS
Exploits0References1
OSV
OSV
added 2025/09/19 4:15 p.m.5 views

UBUNTU-CVE-2025-39863

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work The brcmfbtcoexdetach only shuts down the btcoex timer, if the flag timeron is false. However, the brcmfbtcoextimerfunc, which runs as timer handler, sets...

7.8CVSS6.7AI score0.00148EPSS
Exploits0References17
Vulnrichment
Vulnrichment
added 2025/09/19 3:26 p.m.6 views

CVE-2025-39863 wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info work

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work The brcmfbtcoexdetach only shuts down the btcoex timer, if the flag timeron is false. However, the brcmfbtcoextimerfunc, which runs as timer handler, sets...

6.4AI score0.00148EPSS
Exploits0References6
OSV
OSV
added 2025/09/04 4:15 p.m.7 views

AZL-66860 CVE-2025-38687 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

4.7CVSS5.6AI score0.0011EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 4:15 p.m.2 views

UBUNTU-CVE-2025-38687

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

4.7CVSS5.7AI score0.0011EPSS
Exploits0References37
OSV
OSV
added 2025/09/04 3:32 p.m.3 views

CVE-2025-38687 comedi: fix race between polling and detaching

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

4.7CVSS7.3AI score0.0011EPSS
Exploits0References15
OSV
OSV
added 2025/05/16 9:14 p.m.13 views

CLSA-2025-1747430081 Fix of 50 CVEs

CVE-url: https://ubuntu.com/security/CVE-2021-47352 - virtio-net: Add validation for used length CVE-url: https://ubuntu.com/security/CVE-2024-46745 - Input: uinput - reject requests with unreasonable number of slots CVE-url: https://ubuntu.com/security/CVE-2024-44952 - driver core: Fix ueventsho...

7.8CVSS7AI score0.00351EPSS
Exploits3References1
OSV
OSV
added 2025/04/16 2:12 p.m.13 views

CVE-2025-22111 net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF.

In the Linux kernel, the following vulnerability has been resolved: net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF. SIOCBRDELIF is passed to devioctl first and later forwarded to brioctlcall, which causes unnecessary RTNL dance and the splat below 0 under RTNL pressure. Let's say Thread A...

5.5CVSS6.1AI score0.00178EPSS
Exploits0References9
OSV
OSV
added 2025/02/26 7:0 a.m.2 views

DEBIAN-CVE-2022-49059

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: add flushworkqueue to prevent uaf Our detector found a concurrent use-after-free bug when detaching an NCI device. The main reason for this bug is the unexpected scheduling between the used delayed mechanism timer and...

7.8CVSS5.7AI score0.00285EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/09 10:15 a.m.1 views

CVE-2024-50260 sock_map: fix a NULL pointer dereference in sock_map_link_update_prog()

In the Linux kernel, the following vulnerability has been resolved: sockmap: fix a NULL pointer dereference in sockmaplinkupdateprog The following race condition could trigger a NULL pointer dereference: sockmaplinkdetach: sockmaplinkupdateprog: mutexlock&sockmapmutex; ... sockmaplink-map = NULL;...

7.6AI score0.00166EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/04 6:35 p.m.27 views

CVE-2024-44952

...

Exploits0
CVE
CVE
added 2024/09/04 6:35 p.m.149 views

CVE-2024-44952

CVE-2024-44952 is associated with Siemens SCALANCE and RUGGEDCOM devices (OT environment). The issue is described as an improper locking that could lead to a deadlock in driver core during device detachment/attribute handling. The cited advisory fixes the problem by using synchronize_rcu() to pre...

7.3AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.10 views

SUSE CVE-2022-44032

An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open, aka a race condition between cmmopen and cm4000detach...

4.3CVSS7.8AI score0.00323EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2022/11/09 8:0 a.m.7 views

An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open() aka a race condition between cmm_open() and cm4000_detach().

...

6.4CVSS7.7AI score0.00323EPSS
Exploits0
Rows per page
Query Builder