Lucene search
K

32 matches found

NVD
NVD
added 2026/06/24 8:16 a.m.10 views

CVE-2026-52912

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfqueue: hold bridge skb-dev while queued brpassframeup rewrites skb-dev from the ingress port to the bridge master before queueing bridge LOCALIN packets. NFQUEUE only holds references on state.in/out and bridge...

7.8CVSS0.00142EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/24 7:14 a.m.9 views

EUVD-2026-38715

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfqueue: hold bridge skb-dev while queued brpassframeup rewrites skb-dev from the ingress port to the bridge master before queueing bridge LOCALIN packets. NFQUEUE only holds references on state.in/out and bridge...

5.7AI score0.00142EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/05/28 3:53 a.m.12 views

SUSE CVE-2026-46060

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix IRQ cleanup on 6xxx probe failure When adfdevup partially completes and then fails, the IRQ handlers registered during adfisrresourcealloc are not detached before the MSI-X vectors are released. Since the device...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:57 p.m.7 views

CVE-2026-46060

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix IRQ cleanup on 6xxx probe failure When adfdevup partially completes and then fails, the IRQ handlers registered during adfisrresourcealloc are not detached before the MSI-X vectors are released. Since the device...

5.8AI score0.00121EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:57 p.m.38 views

CVE-2026-46060 crypto: qat - fix IRQ cleanup on 6xxx probe failure

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix IRQ cleanup on 6xxx probe failure When adfdevup partially completes and then fails, the IRQ handlers registered during adfisrresourcealloc are not detached before the MSI-X vectors are released. Since the device...

0.00121EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/27 12:17 p.m.9 views

CVE-2026-45917

In the Linux kernel, the following vulnerability has been resolved: ipvs: do not keep destdst if dev is going down There is race between the netdev notifier ipvsdstevent and the code that caches dst with dev that is going down. As the FIB can be notified for the closed device after our handler...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
NVD
NVD
added 2026/05/27 11:16 a.m.16 views

CVE-2026-45846

In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudpfillmetadatadst bareudpfillmetadatadst passes bareudp-sock to udptunnel6dstlookup in the IPv6 path without a NULL check. The socket is only created in bareudpopen and NULLed in...

5.5CVSS0.00115EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/27 9:24 a.m.11 views

CVE-2026-45846

In the Linux kernel, the following vulnerability has been resolved: bareudp: fix NULL pointer dereference in bareudpfillmetadatadst bareudpfillmetadatadst passes bareudp-sock to udptunnel6dstlookup in the IPv6 path without a NULL check. The socket is only created in bareudpopen and NULLed in...

5.7AI score0.00115EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-45846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bareudp: fix NULL pointer dereference in bareudpfillmetadatadst bareudpfillmetadatadst passes bareudp-sock to udptunnel6dstlookup in the IPv6 path without a NUL...

5.5CVSS6.6AI score0.00115EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fixed a use-after-free in pm8001queuecommand The commit e29c47fe8946 “scsi: pm8001: Simplified pm8001taskexec” includes refactoring efforts for pm8001queuecommand. However, this refactoring introduced a potential...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007224)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007224 advisory. In the Linux kernel, the following vulnerability has been resolved: net/tls: Fix use-after-free after the TLS device goes down and up When a netdev with active TLS...

7.8CVSS6.3AI score0.00257EPSS
Exploits0References3
NVD
NVD
added 2026/03/25 11:16 a.m.4 views

CVE-2026-23306

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free in pm8001queuecommand Commit e29c47fe8946 "scsi: pm8001: Simplify pm8001taskexec" refactors pm8001queuecommand, however it introduces a potential cause of a double free scenario when it changes th...

7.8CVSS0.00126EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 11:16 a.m.7 views

UBUNTU-CVE-2026-23306

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free in pm8001queuecommand Commit e29c47fe8946 "scsi: pm8001: Simplify pm8001taskexec" refactors pm8001queuecommand, however it introduces a potential cause of a double free scenario when it changes th...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.9 views

CVE-2026-23306

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free in pm8001queuecommand Commit e29c47fe8946 "scsi: pm8001: Simplify pm8001taskexec" refactors pm8001queuecommand, however it introduces a potential cause of a double free scenario when it changes th...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-23306

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: pm8001: Fix use-after-free in pm8001queuecommand Commit e29c47fe8946 scsi: pm8001: Simplify pm8001taskexec refactors pm8001queuecommand, however it...

7.8CVSS6.2AI score0.00126EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005512)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005512 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ensure we call ipv6mcdown at most once There are two reasons for addrconfnotify to be...

5.5CVSS5.9AI score0.0021EPSS
Exploits0References3
OSV
OSV
added 2026/01/13 4:16 p.m.6 views

UBUNTU-CVE-2025-71086

In the Linux kernel, the following vulnerability has been resolved: net: rose: fix invalid array index in rosekillbydevice rosekillbydevice collects sockets into a local array and then iterates over them to disconnect sockets bound to a device being brought down. The loop mistakenly indexes...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References38
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989824)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989824 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ensure we call ipv6mcdown at most once There are two reasons for addrconfnotify to be...

5.5CVSS6.1AI score0.0021EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/09/04 4:53 a.m.9 views

rose: fix dangling neighbour pointers in rose_rt_device_down()

...

7.8CVSS7AI score0.00164EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-38377

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rose: fix dangling neighbour pointers in rosertdevicedown There are two bugs in rosertdevicedown that can cause use-after-free: 1. The loop bound t-count is...

7.8CVSS6.6AI score0.00164EPSS
Exploits0References2
Rows per page
Query Builder