Lucene search
K

233 matches found

CVE
CVE
added 2026/02/26 2:45 a.m.338 views

CVE-2026-23999

CVE-2026-23999 affects Fleet open source device management before version 4.80.1. The vulnerability stems from a predictable 6‑digit PIN (device lock/wipe) derived from the current Unix timestamp without secret entropy, allowing an attacker with physical access and knowledge of approximate lock t...

5.5CVSS5.6AI score0.00124EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/19 12:26 a.m.5 views

SUSE CVE-2026-23221

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

5.3CVSS5.7AI score0.00121EPSS
Exploits0References19
NVD
NVD
added 2026/02/18 4:22 p.m.10 views

CVE-2026-23221

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

7.8CVSS0.00121EPSS
Exploits0References7
OSV
OSV
added 2026/02/18 4:22 p.m.4 views

UBUNTU-CVE-2026-23221

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

7.8CVSS5.7AI score0.00121EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/02/18 4:22 p.m.6 views

CVE-2026-23221

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

7.8CVSS5.7AI score0.00121EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/18 2:53 p.m.29 views

CVE-2026-23221 bus: fsl-mc: fix use-after-free in driver_override_show()

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

0.00121EPSS
Exploits0References7
OSV
OSV
added 2026/02/18 2:53 p.m.6 views

CVE-2026-23221 bus: fsl-mc: fix use-after-free in driver_override_show()

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

7.8CVSS5.2AI score0.00121EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/02/18 2:53 p.m.4 views

CVE-2026-23221

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However, driveroverridestore uses driversetoverride, which modifies and frees t...

5.1AI score0.00121EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/02/18 2:53 p.m.39 views

CVE-2026-23221

CVE-2026-23221 – Linux kernel (bus/fsl-mc driver) : The vulnerability arises from reading the driver_override string in driver_override_show() without holding the device_lock while driver_override_store() uses driver_set_override() to modify/free the string while the lock is held. This can cause ...

7.8CVSS5.2AI score0.00121EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from not holding the device lock when reading it. This vulnerability could lead to reuse of the device...

7.8CVSS5.8AI score0.00121EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/02/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-23221

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bus: fsl-mc: fix use-after-free in driveroverrideshow The driveroverrideshow function reads the driveroverride string without holding the devicelock. However,...

7.8CVSS7AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/02/14 4:15 p.m.11 views

CVE-2026-23165

In the Linux kernel, the following vulnerability has been resolved: sfc: fix deadlock in RSS config read Since cited commit, core locks the netdevice's rsslock when handling ethtool -x command, so driver's implementation should not lock it again. Remove the latter...

5.5CVSS0.0008EPSS
Exploits0References2
OSV
OSV
added 2026/02/14 4:15 p.m.4 views

UBUNTU-CVE-2026-23165

In the Linux kernel, the following vulnerability has been resolved: sfc: fix deadlock in RSS config read Since cited commit, core locks the netdevice's rsslock when handling ethtool -x command, so driver's implementation should not lock it again. Remove the latter...

5.5CVSS5.7AI score0.0008EPSS
Exploits0References5
OSV
OSV
added 2026/02/14 4:1 p.m.6 views

CVE-2026-23165 sfc: fix deadlock in RSS config read

In the Linux kernel, the following vulnerability has been resolved: sfc: fix deadlock in RSS config read Since cited commit, core locks the netdevice's rsslock when handling ethtool -x command, so driver's implementation should not lock it again. Remove the latter...

5.5CVSS5.2AI score0.0008EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-23163)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-23163 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: vlan: don't propagate flags on ope...

5.5CVSS5.3AI score0.00128EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/15 5:38 p.m.5 views

CVE-2025-71079

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix deadlock between nfcunregisterdevice and rfkillfopwrite A deadlock can occur between nfcunregisterdevice and rfkillfopwrite due to lock ordering inversion between devicelock and rfkillglobalmutex. The problematic lo...

5.4AI score0.00089EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/14 12:25 a.m.4 views

SUSE CVE-2025-71079

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix deadlock between nfcunregisterdevice and rfkillfopwrite A deadlock can occur between nfcunregisterdevice and rfkillfopwrite due to lock ordering inversion between devicelock and rfkillglobalmutex. The problematic lo...

4.1CVSS6AI score0.00089EPSS
Exploits0References20
UbuntuCve
UbuntuCve
added 2026/01/13 4:16 p.m.5 views

CVE-2025-71079

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix deadlock between nfcunregisterdevice and rfkillfopwrite A deadlock can occur between nfcunregisterdevice and rfkillfopwrite due to lock ordering inversion between devicelock and rfkillglobalmutex. The problematic lo...

5.5CVSS5.6AI score0.00089EPSS
Exploits0References36
Cvelist
Cvelist
added 2026/01/13 3:34 p.m.26 views

CVE-2025-71079 net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix deadlock between nfcunregisterdevice and rfkillfopwrite A deadlock can occur between nfcunregisterdevice and rfkillfopwrite due to lock ordering inversion between devicelock and rfkillglobalmutex. The problematic lo...

0.00089EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/01/13 3:34 p.m.2 views

CVE-2025-71079

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix deadlock between nfcunregisterdevice and rfkillfopwrite A deadlock can occur between nfcunregisterdevice and rfkillfopwrite due to lock ordering inversion between devicelock and rfkillglobalmutex. The problematic lo...

5AI score0.00089EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder