Lucene search
K

170 matches found

SUSE CVE
SUSE CVE
added 2026/07/03 3:5 a.m.8 views

SUSE CVE-2026-53097

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix use-after-free bugs in mt7996macdumpwork When the mt7996 pci chip is detaching, the mt7996crashdata is released in mt7996coredumpunregister. However, the work item dumpwork may still be running or pending,...

5.8AI score0.00168EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38847

In the Linux kernel, the following vulnerability has been resolved: net: psp: check for device unregister when creating assoc pspassocdevicegetlocked obtains a pspdev reference via pspdevgetforsock which uses pspdevtryget under RCU; it then acquires psd-lock and drops the reference. Before the lo...

5.7AI score0.00166EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.7 views

CVE-2026-52979

In the Linux kernel, the following vulnerability has been resolved: net: psp: check for device unregister when creating assoc pspassocdevicegetlocked obtains a pspdev reference via pspdevgetforsock which uses pspdevtryget under RCU; it then acquires psd-lock and drops the reference. Before the lo...

5.5CVSS0.00166EPSS
Exploits0References3
CVE
CVE
added 2026/06/24 4:30 p.m.23 views

CVE-2026-53097

CVE-2026-53097 describes a use-after-free in the Linux kernel’s mt76 mt7996 driver. During PCI device removal, crash_data is freed in mt7996_coredump_unregister() while a pending/delayed work item (dump_work) may still reference it, causing UAF in mt7996_mac_dump_work(). The fix cancels pending o...

5.7AI score0.00168EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.7 views

EUVD-2026-38965

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix use-after-free bugs in mt7996macdumpwork When the mt7996 pci chip is detaching, the mt7996crashdata is released in mt7996coredumpunregister. However, the work item dumpwork may still be running or pending,...

5.7AI score0.00168EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.10 views

EUVD-2026-38966

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix use-after-free bugs in mt7915macdumpwork When the mt7915 pci chip is detaching, the mt7915crashdata is released in mt7915coredumpunregister. However, the work item dumpwork may still be running or pending,...

5.7AI score0.00168EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52979

In the Linux kernel, the following vulnerability has been resolved: net: psp: check for device unregister when creating assoc pspassocdevicegetlocked obtains a pspdev reference via pspdevgetforsock which uses pspdevtryget under RCU; it then acquires psd-lock and drops the reference. Before the lo...

5.6AI score0.00166EPSS
Exploits0References4Affected Software1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939sessionactivate fail if the device is no longer registered. syzbot still reports that unregisternetdevice: waiting for vcan0 to become free. Usage count = 2. Even after commit 93a27b5891b8 “can: j1939: add...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: - For the media module, in the mtk-mdp component, error handling in the probe function has been fixed. - The function mtkmdpunregisterm2mdevice has been added to the error handling path to prevent resource leaks. - A check for...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.8 views

PT-2026-51873

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the network subsystem where the psp assoc device get locked function obtains a psp dev reference through psp dev get for sock, which utilizes psp dev tryget under...

6AI score0.00166EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.12 views

PT-2026-51991

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the mt76 wireless driver for the mt7996 PCI chip. A race condition occurs when the chip is detaching; the mt7996 coredump unregister function releases...

5.8AI score0.00168EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-45866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - serial: caif: fix use-after-free in caifserial ldiscclose There is a use-after-free bug in caifserial where handletx may access ser-tty after the tty has been...

7.8CVSS6.9AI score0.0016EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: gpu: host1x – Fixed memory leak related to device names. The device names allocated by devsetname need to be freed before module unloading. However, this cannot be done because the reference count of the kobject, set during...

5.5CVSS5.2AI score0.00135EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: NET: caif: Fixed a use-after-free in cfusbldevicenotify. syzbot reported a use-after-free in cfusbldevicenotify 1. This causes a stack trace like below: BUG: KASAN: Use-after-free in cfusbldevicenotify, line 0x7c9/0x870,...

7.8CVSS6.2AI score0.00159EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: gpio: mockup: Fixed a NULL pointer dereferencing issue when removing debugfs. We now remove the debugfs entries of the device when unbinding the driver. This now causes a NULL-pointer dereferencing issue at the end of the module,...

5.5CVSS5.2AI score0.00226EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: dma: fixed a memory leak that occurred during the mt76dmatxcleanup routine. Fixed the memory leak caused by unregistering devices, and ensured that all configured rx queues are always cleaned up during the...

5.5CVSS6.1AI score0.00119EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: The can: bcm module has been updated to remove the proc entry when the device is not registered. Syzkaller reported a warning in the bcmconnect function below. 0 The repro code calls connect on vxcan1, removes vxcan1, and then...

5.5CVSS6.4AI score0.00264EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/06 7:53 p.m.9 views

CVE-2026-43167

A flaw was found in the Linux kernel's xfrm subsystem, which handles IPsec Internet Protocol Security transformations. This vulnerability is caused by a reference count leak in xfrmstate objects when a network device is unregistered. An attacker with local access and privileges to configure netwo...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 12:30 p.m.9 views

EUVD-2026-27743

In the Linux kernel, the following vulnerability has been resolved: gpio: sysfs: fix chip removal with GPIOs exported over sysfs Currently if we export a GPIO over sysfs and unbind the parent GPIO controller, the exported attribute will remain under /sys/class/gpio because once we remove the pare...

5.8AI score0.00126EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.9 views

CVE-2026-43167

In the Linux kernel, the following vulnerability has been resolved: xfrm: always flush state and policy upon NETDEVUNREGISTER event syzbot is reporting that "struct xfrmstate" refcount is leaking. unregisternetdevice: waiting for netdevsim0 to become free. Usage count = 2 reftracker:...

5.5CVSS5.6AI score0.00127EPSS
Exploits0
Rows per page
Query Builder