Lucene search
K

752 matches found

Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.12 views

PT-2026-46032

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the k230 pinctrl driver during the probing process when parsing the devicetree. The issue arises within the k230 pinctrl parse functions function,...

5.5CVSS5.7AI score0.00113EPSS
Exploits0References15
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the k230 pinctrl driver’s parsing of the device tree. This parsing process involves accessing...

5.5CVSS5.3AI score0.00113EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-45874

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - phy: freescale: imx8qm-hsio: fix NULL pointer dereference During the probe the refclkpad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-46228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than...

5.5CVSS6.2AI score0.00117EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 10:16 a.m.16 views

CVE-2026-46228

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.5CVSS0.00117EPSS
Exploits0References3
OSV
OSV
added 2026/05/28 10:16 a.m.5 views

UBUNTU-CVE-2026-46228

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:40 a.m.11 views

CVE-2026-46228

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.8AI score0.00117EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/28 9:40 a.m.13 views

EUVD-2026-32855

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

5.8AI score0.00117EPSS
Exploits0References3
CVE
CVE
added 2026/05/28 9:40 a.m.23 views

CVE-2026-46228

CVE-2026-46228 affects the Linux kernel, in the spi: ch341 driver, due to incorrect management of device resources (devres) lifetime. When a USB driver is unbound (e.g., probe deferral or config changes), resources tied to the interface could leak because their lifetimes weren’t released with the...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/28 9:40 a.m.31 views

CVE-2026-46228 spi: ch341: fix devres lifetime

In the Linux kernel, the following vulnerability has been resolved: spi: ch341: fix devres lifetime USB drivers bind to USB interfaces and any device managed resources should have their lifetime tied to the interface rather than parent USB device. This avoids issues like memory leaks when drivers...

0.00117EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/28 3:54 a.m.17 views

SUSE CVE-2026-45989

In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrvprobe The function testdrvprobe retrieves the devicenode from the PCI device, applies an overlay, and then immediately calls ofnodeputdn. This releases the reference held by the PCI core...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.15 views

PT-2026-44351

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the spi: ch341 driver where device managed resources were tied to the parent USB device instead of the USB interface. This can lead to memory leaks when drivers are...

9.8CVSS6AI score0.03663EPSS
Exploits16References279
EUVD
EUVD
added 2026/05/27 3:33 p.m.10 views

EUVD-2026-32285

In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrvprobe The function testdrvprobe retrieves the devicenode from the PCI device, applies an overlay, and then immediately calls ofnodeputdn. This releases the reference held by the PCI core...

5.7AI score0.00159EPSS
Exploits0References6
OSV
OSV
added 2026/05/27 2:17 p.m.8 views

UBUNTU-CVE-2026-45874

In the Linux kernel, the following vulnerability has been resolved: phy: freescale: imx8qm-hsio: fix NULL pointer dereference During the probe the refclkpad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not defined in the devicetree node. But in imxhsioconfigureclkpad this point...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References3
NVD
NVD
added 2026/05/27 2:17 p.m.12 views

CVE-2026-45874

In the Linux kernel, the following vulnerability has been resolved: phy: freescale: imx8qm-hsio: fix NULL pointer dereference During the probe the refclkpad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not defined in the devicetree node. But in imxhsioconfigureclkpad this point...

5.5CVSS0.00155EPSS
Exploits0References4
CVE
CVE
added 2026/05/27 12:18 p.m.24 views

CVE-2026-45968

The CVE-2026-45968 issue is in the Linux kernel cpuidle: when only a single idle state is available (e.g., certain PowerNV platforms), the ladder governor can select an out-of-bounds state. The fix adds a bail-out in cpuidle_select() to return state 0 directly when state_count <= 1, bypassing ...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/05/27 12:15 p.m.23 views

CVE-2026-45868

CVE-2026-45868 affects the Linux kernel pinctrl: single subsystem (pcs_add_gpio_func). The of_parse_phandle_with_args() path increments a device_node refcount and loops through phandles without releasing it, causing a refcount leak. The fix adds of_node_put() to release the reference after extrac...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability stems from the refclkpad pointer in the imx8qm-hsio PHY driver being set to NULL when it is not defin...

5.8AI score0.00155EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the EDAC driver’s mcprobe function. This function fails to release the device nodes referenced by...

5.8AI score0.00121EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-43856

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A use-after-free issue exists in the testdrv probe function. The function retrieves the device node from the PCI device,...

7.8CVSS5.9AI score0.00159EPSS
Exploits0
Rows per page
Query Builder