Lucene search
K

168 matches found

ATTACKERKB
ATTACKERKB
added last week6 views

CVE-2026-58583

FluxInk formerly Sunia SPB Peripheral Color Management Driver TcnPeripheral64.sys 1.0.7.2 allows local privilege escalation for a standard user account via arbitrary physical memory mapping at \Device\PhysicalMemory. Fixed in version 1.0.7.6. The fixed driver is currently available in the Windows...

8.4CVSS6AI score0.00101EPSS
Exploits0References4
NVD
NVD
added 2026/06/08 5:16 p.m.12 views

CVE-2026-46280

In the Linux kernel, the following vulnerability has been resolved: lib: testhmm: evict device pages on file close to avoid use-after-free Patch series "Minor hmmtest fixes and cleanups". Two bugfixes a cleanup for the HMM kernel selftests. These were mostly reported by Zenghui Yu with special...

7.8CVSS0.00126EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/08 3:41 p.m.10 views

EUVD-2026-35145

In the Linux kernel, the following vulnerability has been resolved: lib: testhmm: evict device pages on file close to avoid use-after-free Patch series "Minor hmmtest fixes and cleanups". Two bugfixes a cleanup for the HMM kernel selftests. These were mostly reported by Zenghui Yu with special...

5.4AI score0.00126EPSS
Exploits0References5
CVE
CVE
added 2026/06/08 3:41 p.m.25 views

CVE-2026-46280

CVE-2026-46280 affects the Linux kernel in the HMM selftest path for device memory (dmirror) handling. The root cause is in dmirror_fops_release(), which frees the dmirror struct without migrating device-private pages back to system memory, leaving a stale zone_device_data pointer. If a fault occ...

7.8CVSS5.4AI score0.00126EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-46280

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lib: testhmm: evict device pages on file close to avoid use-after-free Patch series Minor hmmtest fixes and cleanups. Two bugfixes a cleanup for the HMM kernel...

7.8CVSS6AI score0.00126EPSS
Exploits0References4
NVD
NVD
added 2026/05/28 10:16 a.m.15 views

CVE-2026-46115

In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovecphysmergeable biovecphysmergeable is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous bvec segments can be coalesced into one. It currently h...

9.8CVSS0.00491EPSS
Exploits0References5
OSV
OSV
added 2026/05/28 10:16 a.m.17 views

UBUNTU-CVE-2026-46115

In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovecphysmergeable biovecphysmergeable is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous bvec segments can be coalesced into one. It currently h...

9.8CVSS5.7AI score0.00491EPSS
Exploits0References24
CVE
CVE
added 2026/05/28 9:35 a.m.48 views

CVE-2026-46115

In the Linux kernel block subsystem, CVE-2026-46115 was addressed by adding a check so that zone_device_pages_have_same_pgmap() prevents merging bvec segments that span different dev_pagemaps in biovec_phys_mergeable. Root cause: biovec_phys_mergeable() did not verify that two physically contiguo...

9.8CVSS5.7AI score0.00491EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/28 9:35 a.m.14 views

EUVD-2026-32874

In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovecphysmergeable biovecphysmergeable is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous bvec segments can be coalesced into one. It currently h...

5.7AI score0.00491EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/28 9:35 a.m.33 views

CVE-2026-46115 block: add pgmap check to biovec_phys_mergeable

In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovecphysmergeable biovecphysmergeable is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous bvec segments can be coalesced into one. It currently h...

9.8CVSS0.00491EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.35 views

PT-2026-44238

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description The biovec phys mergeable function, used in request merge, DMA mapping, and integrity merge paths, fails to verify if physically contiguous bvec segments belong to different dev pagemaps...

9.8CVSS5.9AI score0.00491EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: HID: nvidia-shield: Reference to hiddevice for devm allocation of the inputdev name. Using hiddevice for devm allocation of the inputdev name helps prevent use-after-free issues. inputunregisterdevice will trigger the cleanup of...

7.8CVSS5.3AI score0.00133EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: clk: imx93 – fixed a memory leak and the missing unwind goto in imx93clocksprobe. In the function probe, it returns directly without unregistered hws when an error occurs. This issue was fixed by adding goto unregisterhws; on...

6.1AI score0.00168EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: Avoid scanning potential huge holes. When using devmrequestfreememregion and devmmemremappages to add ZONEDEVICE memory, if the end PFN of the requested free memory region is huge e.g., 0x400000000, the nodeendpfn wi...

5.5CVSS6.1AI score0.00168EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/01 3:48 p.m.2 views

CVE-2026-22167 GPU DDK - Cache resident PM buffers writable by other GPU requestors, leading to arbitrary write to physical memory

Software installed and run as a non-privileged user may conduct improper GPU system calls to force GPU to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kernel an...

5.9AI score0.00148EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.5 views

CVE-2026-31576

In the Linux kernel, the following vulnerability has been resolved: media: hackrf: fix to not free memory after the device is registered in hackrfprobe In hackrf driver, the following race condition occurs: CPU0 CPU1 hackrfprobe kzalloc; // alloc hackrfdev .... v4l2deviceregister; .... fd =...

7.8CVSS5.4AI score0.00128EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007371)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007371 advisory. In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree...

5.8AI score0.00179EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/01/27 4:14 p.m.5 views

Security update for xen

This update for xen fixes the following issues: Security fixes: CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 CVE-2026-23553: Fixed incomplete IBPB for vCPU isolation XSA-479 bsc1256747 CVE-2025-58149: Fixed incorrect removal od permissions on PCI device...

7CVSS6AI score0.00435EPSS
Exploits0References22
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Check the device memory pointer before using it. Add a NULL check before accessing device memory to prevent a crash if the dev-dm allocation in mlx5initonce fails...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: tpm: Changed to kvalloc in eventlog/acpi.c The following failure was reported on HPE ProLiant D320: 10.693310 T1 tpmtis STM0925:00: 2.0 TPM device-id 0x3, rev-id 0 10.848132 T1 ------------ Cut here ------------ 10.853559 T1...

5.5CVSS6.4AI score0.00222EPSS
Exploits0References3
Rows per page
Query Builder