CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

CNNVD•added 2026/05/08 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There are security vulnerabilities in the Linux kernel. These vulnerabilities arise from errors in the snbeppci2phymapinit function during Intel uncore performance...

5.5CVSS5.8AI score0.00017EPSS

Exploits0References2

AstraLinux•added 2026/01/13 2:1 p.m.•3 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fixed an issue where uninit-value was accessed in squashfsgetparent. Syzkaller reported a bug titled “KMSAN: uninit-value in squashfsgetparent”. This issue arises when openbyhandleat is called with a file handle...

5.3AI score0.00063EPSS

Exploits0References3

OSV•added 2025/10/28 12:15 p.m.•0 views

UBUNTU-CVE-2025-40049

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

5.7AI score0.00063EPSS

Exploits0References38

Tenable Nessus•added 2025/10/07 12:0 a.m.•2 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-384214)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-384214 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to...

5.5CVSS6.3AI score0.00015EPSS

Exploits0References3

Positive Technologies•added 2024/12/16 12:0 a.m.•4 views

PT-2025-9958

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue was related to the ASoC: soc-pcm component, where the soc pcm ret function was used in the .prepare callback, ignoring...

5.5CVSS7.1AI score0.00032EPSS

Exploits0

Cvelist•added 2024/11/09 10:14 a.m.•33 views

CVE-2024-50218 ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow

In the Linux kernel, the following vulnerability has been resolved: ocfs2: pass u64 to ocfs2truncateinline maybe overflow Syzbot reported a kernel BUG in ocfs2truncateinline. There are two reasons for this: first, the parameter value passed is greater than ocfs2maxinlinedatawithxattr, second, the...

0.00017EPSS

Exploits0References8

Cvelist•added 2024/11/08 5:54 a.m.•21 views

CVE-2024-50195 posix-clock: Fix missing timespec64 check in pc_clock_settime()

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

0.00014EPSS

Exploits0References8

Debian CVE•added 2024/10/21 11:53 a.m.•9 views

CVE-2024-47692

In the Linux kernel, the following vulnerability has been resolved: nfsd: return -EINVAL when namelen is 0 When we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may result in namelen being 0, which will cause memdupuser to return ZEROSIZEPTR. When we access the name.data that has been...

6.5CVSS6AI score0.00112EPSS

Exploits0

RedhatCVE•added 2024/07/31 9:12 a.m.•19 views

CVE-2024-41027

In the Linux kernel, the following vulnerability has been resolved: Fix userfaultfdapi to return EINVAL as expected Currently if we request a feature that is not set in the Kernel config we fail silently and return all the available features. However, the man page indicates we should return an...

8.8AI score0.00012EPSS

Exploits0References4

NVD•added 2024/07/29 3:15 p.m.•16 views

CVE-2024-41027

3.3CVSS0.00012EPSS

Exploits0References6

CVE•added 2024/07/29 2:31 p.m.•105 views

CVE-2024-41027

CVE-2024-41027 affects the Linux kernel userfaultfd API. The issue arises when a feature not enabled in kernel config is requested: instead of returning an error, the kernel silently lists all features, potentially triggering a warning (as seen in zap_pte_range mortgage path). The fix is to have ...

3.3CVSS6.4AI score0.00012EPSS

Exploits0References6Affected Software1

OSV•added 2024/07/29 2:31 p.m.•12 views

CVE-2024-41027 Fix userfaultfd_api to return EINVAL as expected

3.3CVSS5.7AI score0.00012EPSS

Exploits0References9

Cvelist•added 2024/07/29 2:31 p.m.•21 views

CVE-2024-41027 Fix userfaultfd_api to return EINVAL as expected

0.00012EPSS

Exploits0References5

Vulnrichment•added 2024/07/29 2:31 p.m.•15 views

CVE-2024-41027 Fix userfaultfd_api to return EINVAL as expected

6.6AI score0.00012EPSS

Exploits0References5

RedhatCVE•added 2024/06/20 5:58 p.m.•27 views

CVE-2024-38549

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists and the kernel will panic if a userspace application attempts to...

4.4CVSS7AI score0.00015EPSS

Exploits0References4

OSV•added 2024/06/19 2:15 p.m.•2 views

DEBIAN-CVE-2024-38549

5.5CVSS5.7AI score0.00015EPSS

Exploits0References1

NVD•added 2024/06/19 2:15 p.m.•11 views

CVE-2024-38549

5.5CVSS0.00015EPSS

Exploits0References10

Cvelist•added 2024/06/19 1:35 p.m.•15 views

CVE-2024-38549 drm/mediatek: Add 0 size check to mtk_drm_gem_obj