Lucene search
K

8 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/10 8:3 a.m.5 views

mtd: docg3: fix use-after-free in docg3_release()

...

7.1CVSS5.8AI score0.00177EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/09 2:21 a.m.11 views

SUSE CVE-2026-46285

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

5.5CVSS5.4AI score0.00177EPSS
Exploits0References3
NVD
NVD
added 2026/06/08 5:16 p.m.13 views

CVE-2026-46285

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

0.00177EPSS
Exploits0References8
OSV
OSV
added 2026/06/08 5:16 p.m.6 views

UBUNTU-CVE-2026-46285

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

5.3AI score0.00177EPSS
Exploits0References13
CVE
CVE
added 2026/06/08 3:41 p.m.28 views

CVE-2026-46285

In the Linux kernel vulnerability CVE-2026-46285, a use-after-free occurs in mtd: docg3_release(): the docg3 pointer is obtained from cascade->floors[0]->priv and freed via doc_release_device() in a loop. After freeing docg3, code dereferences docg3->cascade->bch, which is undefined b...

5.4AI score0.00177EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:41 p.m.7 views

CVE-2026-46285

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

5.3AI score0.00177EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/06/08 3:41 p.m.11 views

EUVD-2026-35150

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

5.4AI score0.00177EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/08 3:41 p.m.34 views

CVE-2026-46285 mtd: docg3: fix use-after-free in docg3_release()

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

0.00177EPSS
Exploits0References8
Rows per page
Query Builder