Lucene search
K

29 matches found

EUVD
EUVD
added 2026/05/28 9:40 a.m.14 views

EUVD-2026-32828

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix dma-buf attachment leak in xegemprimeimport When xedmabufinitobj fails, the attachment from dmabufdynamicattach is not detached. Add dmabufdetach before returning the error. Note: we cannot use goto outerr here becaus...

5.8AI score0.00138EPSS
Exploits0References4
CVE
CVE
added 2026/05/28 9:36 a.m.26 views

CVE-2026-46176

The CVE-2026-46176 issue affects the Linux kernel RDMA mlx5 path (mlx5_ib_dev_res_srq_init): when ib_create_srq() fails for s1, the error path can end up with freed s0 and ERR_PTR s1 assigned to devr->s0/devr->s1, leading to use-after-free/double-free risk in subsequent access. The fix adds...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References12Affected Software1
EUVD
EUVD
added 2026/05/06 12:30 p.m.6 views

EUVD-2026-27682

In the Linux kernel, the following vulnerability has been resolved: iouring/zcrx: fix userref race between scrub and refill paths The iozcrxputniovuref function uses a non-atomic check-then-decrement pattern atomicread followed by separate atomicdec to manipulate userrefs. This is serialized...

5.8AI score0.00088EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.3 views

PT-2026-27659

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix race in devmap on PREEMPT RT On PREEMPT RT kernels, the per-CPU xdp dev bulk queue bq can be accessed concurrently by multiple preemptible tasks on the same CPU. The original code assumes bq enqueue and dev flush run...

5.7AI score0.0009EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/02/25 10:16 p.m.4 views

CVE-2026-26986

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, railwindowfree dereferences a freed xfAppWindow pointer during HashTableFree cleanup because xfrailwindowcommon calls freeappWindow on title allocation failure without first removing the entry from the...

7.5CVSS5.9AI score0.00476EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.8 views

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-39841)

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

7.8CVSS6.5AI score0.00167EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/02/05 12:25 a.m.5 views

SUSE CVE-2026-23056

In the Linux kernel, the following vulnerability has been resolved: uacce: implement mremap in uaccevmops to return -EPERM The current uaccevmops does not support the mremap operation of vmoperationsstruct. Implement .mremap to return -EPERM to remind users. The reason we need to explicitly disab...

6.3CVSS5.2AI score0.00177EPSS
Exploits0References19
CVE
CVE
added 2026/02/04 4:7 p.m.15 views

CVE-2026-23056

The CVE concerns the Linux kernel uacce driver: the vm_operations_struct.mremap operation is not implemented, and the fix disables mremap by implementing .mremap to return -EPERM. Without this, the default mremap could replay a vma’s vm_private_data (q) to a new vma, causing two munmap triggers t...

5.2AI score0.00177EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.6 views

TencentOS Server 4: libwebp (TSSA-2024:0939)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0939 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.8CVSS7.4AI score0.99735EPSS
Exploits9References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13006

Malicious code in bioql PyPI...

7.1AI score0.00175EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34596

Malicious code in bioql PyPI...

7.8CVSS6.1AI score0.00263EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/09/19 11:24 p.m.10 views

SUSE CVE-2025-39841

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

5.5CVSS6.8AI score0.00167EPSS
Exploits0References24
OSV
OSV
added 2025/09/19 4:15 p.m.1 views

DEBIAN-CVE-2025-39841

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

7.8CVSS6.5AI score0.00167EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-38475

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smc: Fix various oops due to inetsock type confusion. syzbot reported weird splats 01 in...

5.5CVSS6.2AI score0.00135EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/08/12 4:2 p.m.3 views

CVE-2025-38500

In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collectmd xfrm interface collectmd property on xfrm interfaces can only be set on device creation, thus xfrmichangelink should fail when called on such interfaces. The check to...

7.8CVSS6.2AI score0.0014EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-2327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing...

7.8CVSS6.2AI score0.00263EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-46979

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iio: core: fix ioctl handlers removal Currently ioctl handlers are removed twice. For the...

5.5CVSS4.9AI score0.00222EPSS
Exploits0References2
NVD
NVD
added 2025/07/25 3:15 p.m.9 views

CVE-2025-38421

In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmf: Use device managed allocations If setting up smart PC fails for any reason then this can lead to a double free when unloading amd-pmf. This is because dev-buf was freed but never set to NULL and is again...

7.8CVSS0.00155EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2025/07/04 8:16 a.m.12 views

CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS6.6AI score0.00494EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/04 8:16 a.m.6 views

CVE-2025-5351

A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys into serialized formats. During error handling, a memory structure is freed but not cleared, leading to a potential double free issue if an additiona...

6.5CVSS6.2AI score0.00494EPSS
Exploits0References3
Rows per page
Query Builder