Lucene search
K

232 matches found

Positive Technologies
Positive Technologies
added 2026/06/27 12:0 a.m.13 views

PT-2026-53060

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An integer overflow occurs in the dsp mmap single function when validating requested mappings by summing a user-supplied offset and length against the buffer siz...

7.8CVSS6AI score0.00149EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: fbdev: In of: displaytiming, there is a fix for the refcount leak in ofgetdisplaytimings. The function ofparsephandle returns a devicenode with the refcount incremented. This value is stored in ‘entry’ and then copied to...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: thermal/of: Fixed a reference leak in thermalofcmlookup. In thermalofcmlookup, trnp is obtained via ofparsephandle, but it is never released. The freedevicenode cleanup attribute is used to automatically release the node and fix...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/08 7:40 p.m.10 views

CVE-2026-46288

A flaw was found in the Linux kernel. This vulnerability, a use-after-free UAF, occurs within the ofunittestchangeset function due to improper handling of device node references. An attacker could exploit this by causing a device node's memory to be freed while it is still in use. This could lead...

8.4CVSS5.4AI score0.0014EPSS
Exploits0References4
CVE
CVE
added 2026/06/08 3:41 p.m.30 views

CVE-2026-46288

CVE-2026-46288 (Linux kernel). The issue is a use-after-free in unittest changeset handling of device-tree nodes: a pointer (parent) shares the same struct device_node as nchangeset, and of_node_put(nchangeset) can drop the refcount to zero while code still uses parent to inspect properties, lead...

8.4CVSS5.5AI score0.0014EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-46030

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix devicenode leak in mcprobe ofparsephandle returns a devicenode reference...

5.5CVSS6.1AI score0.00121EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/28 3:57 a.m.16 views

CVE-2026-45868

A flaw was found in the Linux kernel's pinctrl: single subsystem. The pcsaddgpiofunc function does not properly release a device node reference after parsing, causing a reference count leak. This continuous leak of resources can lead to system instability and a denial of service DoS condition...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/28 3:54 a.m.10 views

SUSE CVE-2026-46030

In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix devicenode leak in mcprobe ofparsephandle returns a devicenode reference that must be released with ofnodeput. The original code never freed r5corenode on any exit path, causing a memory leak. Fix this by usin...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/28 1:7 a.m.12 views

CVE-2026-45925

A flaw was found in the Linux kernel's thermal management module. A reference leak occurs in the thermalofcmlookup function because a device node trnp obtained through ofparsephandle is not properly released. This issue can lead to resource exhaustion over time, potentially impacting system...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
NVD
NVD
added 2026/05/27 2:17 p.m.19 views

CVE-2026-46030

In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix devicenode leak in mcprobe ofparsephandle returns a devicenode reference that must be released with ofnodeput. The original code never freed r5corenode on any exit path, causing a memory leak. Fix this by usin...

5.5CVSS0.00121EPSS
Exploits0References3
NVD
NVD
added 2026/05/27 2:17 p.m.12 views

CVE-2026-45989

In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrvprobe The function testdrvprobe retrieves the devicenode from the PCI device, applies an overlay, and then immediately calls ofnodeputdn. This releases the reference held by the PCI core...

7.8CVSS0.00163EPSS
Exploits0References5
OSV
OSV
added 2026/05/27 2:17 p.m.7 views

UBUNTU-CVE-2026-45868

In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix refcount leak in pcsaddgpiofunc ofparsephandlewithargs returns a devicenode pointer with refcount incremented in gpiospec.np. The loop iterates through all phandles but never releases the reference, causing a...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References11
NVD
NVD
added 2026/05/27 2:17 p.m.13 views

CVE-2026-45868

In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix refcount leak in pcsaddgpiofunc ofparsephandlewithargs returns a devicenode pointer with refcount incremented in gpiospec.np. The loop iterates through all phandles but never releases the reference, causing a...

5.5CVSS0.00156EPSS
Exploits0References8
OSV
OSV
added 2026/05/27 2:17 p.m.13 views

UBUNTU-CVE-2026-45989

In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrvprobe The function testdrvprobe retrieves the devicenode from the PCI device, applies an overlay, and then immediately calls ofnodeputdn. This releases the reference held by the PCI core...

7.8CVSS5.7AI score0.00163EPSS
Exploits0References7
EUVD
EUVD
added 2026/05/27 12:56 p.m.12 views

EUVD-2026-32411

In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix devicenode leak in mcprobe ofparsephandle returns a devicenode reference that must be released with ofnodeput. The original code never freed r5corenode on any exit path, causing a memory leak. Fix this by usin...

5.8AI score0.00121EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/27 12:56 p.m.8 views

CVE-2026-46030

In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix devicenode leak in mcprobe ofparsephandle returns a devicenode reference that must be released with ofnodeput. The original code never freed r5corenode on any exit path, causing a memory leak. Fix this by usin...

5.5CVSS5.8AI score0.00121EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/27 12:55 p.m.40 views

CVE-2026-45989 of: unittest: fix use-after-free in testdrv_probe()

In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrvprobe The function testdrvprobe retrieves the devicenode from the PCI device, applies an overlay, and then immediately calls ofnodeputdn. This releases the reference held by the PCI core...

0.00163EPSS
Exploits0References5
CVE
CVE
added 2026/05/27 12:55 p.m.32 views

CVE-2026-45989

CVE-2026-45989: Linux kernel use-after-free in unittest testdrv_probe() is mitigated in openSUSE/Root environments by updating kernel-devel to 7.0.11-1.1. The initial description explains that testdrv_probe() retrieves a device_node from the PCI device, applies an overlay, and then calls of_node_...

7.8CVSS5.7AI score0.00163EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:17 p.m.41 views

CVE-2026-45925 thermal/of: Fix reference leak in thermal_of_cm_lookup()

In the Linux kernel, the following vulnerability has been resolved: thermal/of: Fix reference leak in thermalofcmlookup In thermalofcmlookup, trnp is obtained via ofparsephandle, but never released. Use the freedevicenode cleanup attribute to automatically release the node and fix the leak. rjw:...

0.00155EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/27 12:15 p.m.41 views

CVE-2026-45868 pinctrl: single: fix refcount leak in pcs_add_gpio_func()

In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix refcount leak in pcsaddgpiofunc ofparsephandlewithargs returns a devicenode pointer with refcount incremented in gpiospec.np. The loop iterates through all phandles but never releases the reference, causing a...

0.00156EPSS
Exploits0References8
Rows per page
Query Builder