Lucene search
K

98 matches found

RedHat Linux
RedHat Linux
added 6 days ago5 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS6.1AI score0.00451EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.10 views

CVE-2025-47404

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

7.8CVSS5.7AI score0.00066EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/20 1:3 p.m.11 views

kernel: scsi: qla2xxx: Fix improper freeing of purex item

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper freeing of purex item In qla2xxxprocesspurlsiocb, an item is allocated via qla27xxcopymultiplepkt, which internally calls qla24xxallocpurexitem. The qla24xxallocpurexitem function may return a...

5.9AI score0.00171EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mailbox: mchp-ipc-sbi: A bug that led to out-of-bounds access was fixed in the mchpipcgetclusteraggrirq function. The clustercfg array is dynamically allocated to hold per-CPU configuration structures. Its size is determined by t...

8.4CVSS5.6AI score0.00131EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: alloctag: The ability to dynamically allocate percpu counters for module tags. When a module is unloaded, it checks whether any of its tags are still in use. If so, it keeps the memory containing the module’s allocation tags aliv...

7.8CVSS5.2AI score0.00157EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Firmware: armscpi: Fixed string overflow in the SCPI genpd driver. Without the bounds checks for scpipd-name, a buffer overflow could occur when copying the SCPI device name from the corresponding device tree node. This occurs...

7.8CVSS6.4AI score0.0026EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/04/27 6:20 p.m.8 views

kernel: scsi: qla2xxx: Fix improper freeing of purex item

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper freeing of purex item In qla2xxxprocesspurlsiocb, an item is allocated via qla27xxcopymultiplepkt, which internally calls qla24xxallocpurexitem. The qla24xxallocpurexitem function may return a...

5.6AI score0.00171EPSS
Exploits0References5
NVD
NVD
added 2026/04/23 12:17 p.m.6 views

CVE-2026-31531

In the Linux kernel, the following vulnerability has been resolved: ipv4: nexthop: allocate skb dynamically in rtmgetnexthop When querying a nexthop object via RTMGETNEXTHOP, the kernel currently allocates a fixed-size skb using NLMSGGOODSIZE. While sufficient for single nexthops and small...

5.5CVSS0.00164EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/23 11:12 a.m.14 views

CVE-2026-31531

In the Linux kernel, the following vulnerability has been resolved: ipv4: nexthop: allocate skb dynamically in rtmgetnexthop When querying a nexthop object via RTMGETNEXTHOP, the kernel currently allocates a fixed-size skb using NLMSGGOODSIZE. While sufficient for single nexthops and small...

5.6AI score0.00164EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-31531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv4: nexthop: allocate skb dynamically in rtmgetnexthop When querying a nexthop object via RTMGETNEXTHOP, the kernel currently allocates a fixed-size skb using...

5.5CVSS6AI score0.00164EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/21 1:8 p.m.9 views

kernel: scsi: qla2xxx: Fix improper freeing of purex item

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper freeing of purex item In qla2xxxprocesspurlsiocb, an item is allocated via qla27xxcopymultiplepkt, which internally calls qla24xxallocpurexitem. The qla24xxallocpurexitem function may return a...

5.6AI score0.00171EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/20 9:31 a.m.5 views

kernel: scsi: qla2xxx: Fix improper freeing of purex item

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper freeing of purex item In qla2xxxprocesspurlsiocb, an item is allocated via qla27xxcopymultiplepkt, which internally calls qla24xxallocpurexitem. The qla24xxallocpurexitem function may return a...

5.8AI score0.00171EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.6 views

CVE-2026-23090

In the Linux kernel, the following vulnerability has been resolved: slimbus: core: fix device reference leak on report present Slimbus devices can be allocated dynamically upon reception of report-present messages. Make sure to drop the reference taken when looking up already registered devices...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References25
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: regulator: max20086: fix invalid memory access The issue arises from calls to ofregulatormatch, where an array of struct ofregulatormatch is used as the argument for the matches parameter. In these calls, devmofregulatorputmatche...

7.1CVSS6.3AI score0.00167EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/15 2:26 a.m.5 views

CVE-2025-68773

In the Linux kernel, the following vulnerability has been resolved: spi: fsl-cpm: Check length parity before switching to 16 bit mode Commit fc96ec826bce "spi: fsl-cpm: Use 16 bit mode for large transfers with even size" failed to make sure that the size is really even before switching to 16 bit...

6AI score0.00173EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2026/01/13 12:0 a.m.34 views

Unbreakable Enterprise kernel security update

5.15.0-316.196.4.1 - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38788585 CVE-2025-40280 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38788587 CVE-2025-40271 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38788594...

7.8CVSS7.2AI score0.00519EPSS
Exploits4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-6160

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where Slimbus devices, allocated dynamically upon receiving report-present messages, may experience a device reference leak. This occurs because a...

5.5CVSS6.3AI score0.00123EPSS
Exploits0
NVD
NVD
added 2025/12/24 1:16 p.m.10 views

CVE-2025-68741

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper freeing of purex item In qla2xxxprocesspurlsiocb, an item is allocated via qla27xxcopymultiplepkt, which internally calls qla24xxallocpurexitem. The qla24xxallocpurexitem function may return a...

0.00171EPSS
Exploits0References5
CVE
CVE
added 2025/12/24 12:23 p.m.12 views

CVE-2023-54055

CVE-2023-54055 (Linux kernel RDMA/irdma PBLE memory leak) : The vulnerability concerns PBLE object memory not being freed on module removal. PBLEs and their Segment Descriptors can be allocated during scale-up and remain until function deinitialization. Root cause: PBLE objects are not freed due ...

6.1AI score0.00206EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 12:9 p.m.4 views

CVE-2025-68741 scsi: qla2xxx: Fix improper freeing of purex item

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper freeing of purex item In qla2xxxprocesspurlsiocb, an item is allocated via qla27xxcopymultiplepkt, which internally calls qla24xxallocpurexitem. The qla24xxallocpurexitem function may return a...

6.3AI score0.00171EPSS
Exploits0References8
Rows per page
Query Builder