Lucene search
+L

34 matches found

SUSE CVE
SUSE CVE
added 2026/07/03 3:3 a.m.10 views

SUSE CVE-2026-53357

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix UAF in l2capsockcleanuplisten vs l2capconndel btacceptdequeue unlinks a not-yet-accepted child from the parent accept queue and releasesocks it before returning, so the returned sk has no caller reference and is...

5.8AI score0.00165EPSS
Exploits0References4
EUVD
EUVD
added 2026/07/02 1:43 p.m.8 views

EUVD-2026-41372

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix UAF in l2capsockcleanuplisten vs l2capconndel btacceptdequeue unlinks a not-yet-accepted child from the parent accept queue and releasesocks it before returning, so the returned sk has no caller reference and is...

7.8CVSS5.8AI score0.00165EPSS
Exploits0References8
CVE
CVE
added 2026/06/30 4:29 p.m.28 views

CVE-2026-10654

The CVE-2026-10654 issue is a race in Zephyr’s Bluetooth Classic RFCOMM host stack (subsys/bluetooth/host/classic/rfcomm.c): when one side initiates a session teardown and the peer simultaneously sends a DISC for DLCI 0, rfcomm_handle_disc() forces the session to DISCONNECTED without calling bt_l...

3.1CVSS5.8AI score0.00128EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/30 4:29 p.m.9 views

CVE-2026-10654 RFCOMM session-disconnect race leaks session/L2CAP and denies further RFCOMM service in Zephyr Bluetooth Classic

A race condition in the Zephyr Bluetooth Classic RFCOMM host stack subsys/bluetooth/host/classic/rfcomm.c mishandles a simultaneous bidirectional session disconnect. When the local device has initiated a session teardown state BTRFCOMMSTATEDISCONNECTING, DISC sent, RTX timer armed and the connect...

3.1CVSS5.8AI score0.00128EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/06/30 4:29 p.m.39 views

CVE-2026-10654 RFCOMM session-disconnect race leaks session/L2CAP and denies further RFCOMM service in Zephyr Bluetooth Classic

A race condition in the Zephyr Bluetooth Classic RFCOMM host stack subsys/bluetooth/host/classic/rfcomm.c mishandles a simultaneous bidirectional session disconnect. When the local device has initiated a session teardown state BTRFCOMMSTATEDISCONNECTING, DISC sent, RTX timer armed and the connect...

3.1CVSS0.00128EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-53024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - greybus: raw: fix use-after-free if write is called after disconnect If a user writes to the chardev after disconnect has been called, the kernel panics with th...

7.8CVSS6AI score0.00129EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/03/03 9:54 a.m.12 views

kernel: media: rc: fix races with imon_disconnect()

A use-after-free flaw exists in the Linux kernel’s media/rc subsystem. When the device is disconnected via imondisconnect, the driver may unconditionally release a usbdevice reference via usbputdev even while other operations such as vfdwrite, sendpacket, displayopen, lcdwrite are still in...

5.8AI score0.00218EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 5:6 p.m.7 views

kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service

A flaw was found in the Linux kernel's Common Internet File System CIFS component. This use-after-free vulnerability occurs due to improper handling of server hostname information during connection re-establishment. An attacker on an adjacent network could exploit this, potentially leading to a...

5.8AI score0.00162EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.10 views

RHEL 8 : kernel (RHSA-2026:2535)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2535 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: RDMA/core: Fix KASAN:...

7.8CVSS5.9AI score0.00211EPSS
Exploits0References25
Tenable Nessus
Tenable Nessus
added 2026/01/28 12:0 a.m.9 views

RHEL 8 : kernel (RHSA-2026:1512)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1512 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: e1000e: fix heap overflow in...

7.1AI score0.00319EPSS
Exploits0References13
Rockylinux
Rockylinux
added 2026/01/17 9:3 a.m.11 views

kernel-rt security update

An update is available for kernel-rt. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel-rt packages provide the Real Time Linux Kernel, which enables...

7AI score0.00218EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/17 12:0 a.m.8 views

RockyLinux 8 : kernel-rt (RLSA-2026:0443)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0443 advisory. kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing CVE-2025-40240...

7.3AI score0.00218EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

RHEL 8 : kernel-rt (RHSA-2026:0443)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0443 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

7.3AI score0.00218EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.8 views

RHEL 8 : kernel (RHSA-2026:0444)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0444 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: media: rc: fix races with...

7.1AI score0.00218EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2026/01/12 12:0 a.m.9 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: media: rc: fix races with imondisconnect CVE-2025-39993 kernel: sctp: avoid NULL dereference when chunk data buffer is missing...

7.3AI score0.00218EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000527)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000527 advisory. In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sasdiscover.c because of mishandling of port disconnection during...

4.7CVSS6.4AI score0.00654EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.3 views

CVE-2023-54159

In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix kernel panic at qmu transfer done irq handler When handle qmu transfer irq, it will unlock @mtu-lock before give back request, if another thread handle disconnect event at the same time, and try to disable ep, it m...

5.8AI score0.00173EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-39993

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: rc: fix races with imondisconnect Syzbot reports a KASAN issue as below: BUG: KASAN: use-after- free in createpipe include/linux/usb.h:1945 inline BUG:...

6AI score0.00218EPSS
Exploits0References2
OSV
OSV
added 2025/10/15 7:58 a.m.4 views

CVE-2025-39993 media: rc: fix races with imon_disconnect()

In the Linux kernel, the following vulnerability has been resolved: media: rc: fix races with imondisconnect Syzbot reports a KASAN issue as below: BUG: KASAN: use-after-free in createpipe include/linux/usb.h:1945 inline BUG: KASAN: use-after-free in sendpacket+0xa2d/0xbc0...

6.2AI score0.00218EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414569)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414569 advisory. A use-after-free flaw was found in the Linux kernels Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race...

7.9CVSS6.5AI score0.01736EPSS
Exploits1References3
Rows per page
Query Builder