Lucene search
K

39 matches found

Tenable Nessus
Tenable Nessus
added 3 days ago9 views

Linux Distros Unpatched Vulnerability : CVE-2026-52978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: psp: require admin permission for dev-set and key-rotate The dev-set and key-rotate netlink operations modify shared device state PSP version configuration...

5.8AI score0.00173EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/24 6:32 p.m.3 views

EUVD-2026-38846

In the Linux kernel, the following vulnerability has been resolved: net: psp: require admin permission for dev-set and key-rotate The dev-set and key-rotate netlink operations modify shared device state PSP version configuration and cryptographic key material, respectively but do not require...

5.7AI score0.00173EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: Do not leak memory if devsetname fails. When devsetname fails, zcdncreate does not free the newly allocated resources. Fix this issue...

5.5CVSS5.2AI score0.00136EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipvs: fixed the NULL pointer dereference in the route error path of ipv4 null-ptr-deref. The IPv4 code path in ipvsgetoutrt calls dstlinkfailure, without ensuring that skb-dev is set. This leads to a NULL pointer dereference in...

5.9AI score0.00173EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvmem: core: fix cleanup after devsetname If devsetname fails, we may leak nvmem-wpgpio because the cleanup does not handle it properly. While a minimal fix would be to add the gpiodput call, we can improve the situation by...

5.5CVSS5.2AI score0.00226EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: rtc: class: Fix potential memleak in devmrtcallocatedevice devmrtcallocatedevice will alloc a rtcdevice first, and then run devsetname. If devsetname failed, the rtcdevice will memleak. Move devmaddactionorreset in front of...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28761

In the Linux kernel, the following vulnerability has been resolved: mctp: route: hold key-lock in mctpflowprepareoutput mctpflowprepareoutput checks key-dev and may call mctpdevsetkey, but it does not hold key-lock while doing so. mctpdevsetkey and mctpdevreleasekey are annotated with...

5.7AI score0.00114EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013502)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013502 advisory. In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix cleanup after devsetname If devsetname fails, we leak nvmem-wpgpio as the cleanu...

5.5CVSS5.2AI score0.00226EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010815)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010815 advisory. In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix cleanup after devsetname If devsetname fails, we leak nvmem-wpgpio as the cleanu...

5.5CVSS5.7AI score0.00226EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/15 12:25 a.m.2 views

SUSE CVE-2025-68813

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix ipv4 null-ptr-deref in route error path The IPv4 code path in ipvsgetoutrt calls dstlinkfailure without ensuring skb-dev is set, leading to a NULL pointer dereference in fibcomputespecdst when ipv4linkfailure attempts t...

7.5CVSS6.6AI score0.00173EPSS
Exploits0References162
OSV
OSV
added 2026/01/13 3:29 p.m.5 views

CVE-2025-68813 ipvs: fix ipv4 null-ptr-deref in route error path

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix ipv4 null-ptr-deref in route error path The IPv4 code path in ipvsgetoutrt calls dstlinkfailure without ensuring skb-dev is set, leading to a NULL pointer dereference in fibcomputespecdst when ipv4linkfailure attempts t...

6.5AI score0.00173EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2025/12/25 12:57 a.m.3 views

SUSE CVE-2023-54017

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: fix possible memory leak in ibmebusbusinit If deviceregister returns error in ibmebusbusinit, name of kobject which is allocated in devsetname called in deviceadd is leaked. As comment of deviceadd says, it shoul...

3.3CVSS6.5AI score0.00185EPSS
Exploits0References20
EUVD
EUVD
added 2025/11/12 12:30 p.m.3 views

EUVD-2025-124943

In the Linux kernel, the following vulnerability has been resolved: net: usb: Remove disruptive netifwakequeue in rtl8150setmulticast syzbot reported WARNING in rtl8150startxmit/usbsubmiturb. This is the sequence of events that leads to the warning: rtl8150startxmit netifstopqueue;...

5.8AI score0.00184EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989574)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989574 advisory. In the Linux kernel, the following vulnerability has been resolved: iio: trigger: sysfs: fix possible memory leak in iiosysfstriginit devsetname allocates memory for...

5.5CVSS6.1AI score0.0018EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/31 12:30 a.m.6 views

EUVD-2023-60040

Nagios XI versions prior to 2024R1 are vulnerable to cross-site scripting XSS via the Graph Explorer component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

5.1CVSS5.1AI score0.00535EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-53568

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if devsetname fails When devsetname fails, zcdncreate doesn't...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/05 2:56 a.m.4 views

SUSE CVE-2023-53568

In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if devsetname fails When devsetname fails, zcdncreate doesn't free the newly allocated resources. Do it...

5.5CVSS7.9AI score0.00136EPSS
Exploits0References20
NVD
NVD
added 2025/10/04 4:15 p.m.5 views

CVE-2023-53568

In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if devsetname fails When devsetname fails, zcdncreate doesn't free the newly allocated resources. Do it...

5.5CVSS0.00136EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/04 3:17 p.m.9 views

CVE-2023-53568 s390/zcrypt: don't leak memory if dev_set_name() fails

In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if devsetname fails When devsetname fails, zcdncreate doesn't free the newly allocated resources. Do it...

0.00136EPSS
Exploits0References6
OSV
OSV
added 2025/10/04 3:17 p.m.5 views

CVE-2023-53568 s390/zcrypt: don't leak memory if dev_set_name() fails

In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if devsetname fails When devsetname fails, zcdncreate doesn't free the newly allocated resources. Do it...

5.5CVSS6.5AI score0.00136EPSS
Exploits0References9
Rows per page
Query Builder