CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

757 matches found

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: dm mpath: Added the missing dmputdevice call when failing to obtain the scsi dh name. When commit fd81bc5cca8f “scsi: devicehandler: Returning an error pointer in scsidhattachedhandlername”, code was added to fail the parsing of...

5.5CVSS5.6AI score0.00112EPSS

Exploits0References1

AstraLinux•added 5 days ago•5 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: - dm clone: Fixed a UAF Use-after-Free in clonedtr. - Dmclone also has the same UAF issue when dmresume and dmdestroy are executed concurrently. Therefore, the timer is canceled again in clonedtr...

5.4AI score0.00206EPSS

Exploits0References1

SUSE CVE•added 2026/06/10 2:25 a.m.•7 views

SUSE CVE-2026-46327

In the Linux kernel, the following vulnerability has been resolved: dm: fix unlocked test for dmsuspendedmd The function dmblkreportzones tests if the device is suspended with the "dmsuspendedmd" call. However, this function is called without holding any locks, so the device may be suspended just...

7.8CVSS5.4AI score0.0012EPSS

Exploits0References3

RedhatCVE•added 2026/06/09 4:51 p.m.•7 views

CVE-2026-46327

A flaw was found in the Linux kernel's device mapper dm component. The dmblkreportzones function performs a check for the device's suspended state without proper locking. This allows the device to enter a suspended state immediately after the check, leading to an inconsistent state. This...

7.8CVSS5.4AI score0.0012EPSS

Exploits0References4

OSV•added 2026/06/09 2:16 p.m.•7 views

UBUNTU-CVE-2026-46327

7.8CVSS5.2AI score0.0012EPSS

Exploits0References3

EUVD•added 2026/06/09 12:25 p.m.•8 views

EUVD-2026-35428

5.4AI score0.0012EPSS

Exploits0References4

CVE•added 2026/06/09 12:25 p.m.•17 views

CVE-2026-46327

In the Linux kernel dm subsystem, the vulnerability centers on dm_blk_report_zones checking for suspended state without holding locks, allowing a race where the device may be suspended immediately after the check. The fix moves the dm_suspended_md check to occur after dm_get_live_table, ensuring ...

7.8CVSS5.4AI score0.0012EPSS

Exploits0References4

Debian CVE•added 2026/06/09 12:25 p.m.•9 views

CVE-2026-46327

7.8CVSS5.3AI score0.0012EPSS

Exploits0

SUSE CVE•added 2026/06/09 2:20 a.m.•10 views

SUSE CVE-2026-46294

In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl processing Tony Asleson using Claude found a buffer overflow in dm-ioctl in the function retrievestatus: 1. The code in retrievestatus checks that the output string fits into the output buffer a...

4.1CVSS5.8AI score0.00195EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•12 views

PT-2026-47785

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the Device Mapper component where the dm blk report zones function checks if a device is suspended using the dm suspended md call without holding the necessary...

7.8CVSS5.8AI score0.0012EPSS

Exploits0References14

Tenable Nessus•added 2026/06/09 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-46327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm: fix unlocked test for dmsuspendedmd The function dmblkreportzones tests if the device is suspended with the dmsuspendedmd call. However, this function is...

7.8CVSS5.4AI score0.0012EPSS

Exploits0References3

NVD•added 2026/06/08 5:16 p.m.•11 views

CVE-2026-46294

0.00195EPSS

Exploits0References8

OSV•added 2026/06/08 5:16 p.m.•2 views

UBUNTU-CVE-2026-46294

5.6AI score0.00195EPSS

Exploits0References11

Cvelist•added 2026/06/08 3:46 p.m.•35 views

CVE-2026-46294 dm: fix a buffer overflow in ioctl processing

0.00195EPSS

Exploits0References8

EUVD•added 2026/06/08 3:46 p.m.•20 views

EUVD-2026-35160

5.8AI score0.00195EPSS

Exploits0References8

CVE•added 2026/06/08 3:46 p.m.•27 views

CVE-2026-46294

Technical details about CVE-2026-46294 are not publicly available in the provided documents. Monitor for updates.

5.8AI score0.00195EPSS

Exploits0References8

ATTACKERKB•added 2026/06/08 3:46 p.m.•5 views

CVE-2026-46294

5.8AI score0.00195EPSS

Exploits0References9

Amazon•added 2026/06/08 12:0 a.m.•7 views

Medium: device-mapper-persistent-data

Issue Overview: An unsoundness issue RUSTSEC-2026-0097 was found in the bundled Rust rand crate used by device-mapper-persistent-data. ThreadRng methods use unsafe code that can create aliased mutable references when a custom logger accesses rand::rng or rand::threadrng during reseeding, resultin...

5.5AI score

Exploits0

Tenable Nessus•added 2026/06/08 12:0 a.m.•8 views

Amazon Linux 2023 : device-mapper-persistent-data (ALAS2023-2026-1791)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1791 advisory. An unsoundness issue RUSTSEC-2026-0097 was found in the bundled Rust rand crate used by device-mapper- persistent-data. ThreadRng methods use unsafe code that can create aliased mutable references when...

5.6AI score

Exploits0References2

Positive Technologies•added 2026/06/08 12:0 a.m.•9 views

PT-2026-47366

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow exists in the retrieve status function within dm-ioctl. The issue occurs when the outptr variable is aligned to the next 8-byte boundary using align ptroutptr without...

9.1CVSS5.6AI score0.00457EPSS

Exploits1References67

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by