Lucene search
+L

95 matches found

UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.14 views

CVE-2026-43445

In the Linux kernel, the following vulnerability has been resolved: e1000/e1000e: Fix leak in DMA error cleanup If an error is encountered while mapping TX buffers, the driver should unmap any buffers already mapped for that skb. Because count is incremented after a successful mapping, it will...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References10
OSV
OSV
added 2026/05/08 3:16 p.m.21 views

UBUNTU-CVE-2026-43445

In the Linux kernel, the following vulnerability has been resolved: e1000/e1000e: Fix leak in DMA error cleanup If an error is encountered while mapping TX buffers, the driver should unmap any buffers already mapped for that skb. Because count is incremented after a successful mapping, it will...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:22 p.m.6 views

CVE-2026-43445

In the Linux kernel, the following vulnerability has been resolved: e1000/e1000e: Fix leak in DMA error cleanup If an error is encountered while mapping TX buffers, the driver should unmap any buffers already mapped for that skb. Because count is incremented after a successful mapping, it will...

5.8AI score0.00123EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/05/08 2:22 p.m.25 views

CVE-2026-43445

CVE-2026-43445 is a Linux kernel vulnerability in the e1000/e1000e drivers (and potentially igbvf) where a DMA mapping error cleanup leak could occur. The root cause was an off-by-one condition in the dma_error path: count was decremented before the loop, so if any TX buffer mappings succeeded be...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/05/08 2:22 p.m.39 views

CVE-2026-43445 e1000/e1000e: Fix leak in DMA error cleanup

In the Linux kernel, the following vulnerability has been resolved: e1000/e1000e: Fix leak in DMA error cleanup If an error is encountered while mapping TX buffers, the driver should unmap any buffers already mapped for that skb. Because count is incremented after a successful mapping, it will...

0.00123EPSS
Exploits0References8
CVE
CVE
added 2026/05/08 2:21 p.m.19 views

CVE-2026-43395

In the Linux kernel, the vulnerability CVE-2026-43395 affects the drm/xe/sync subsystem. During xe_sync_entry_parse(), references (syncobj, fence, chain fence, or user fence) can be allocated before a later failure path is reached, leaving partially initialized state and leaking refs. The fix rou...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.12 views

PT-2026-39106

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the e1000 and e1000e drivers during DMA Direct Memory Access error cleanup. When an error occurs while mapping TX buffers, the driver fails to correctly unmap all...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References20
NVD
NVD
added 2026/05/06 12:16 p.m.13 views

CVE-2026-43192

In the Linux kernel, the following vulnerability has been resolved: dm mpath: Add missing dmputdevice when failing to get scsi dh name When commit fd81bc5cca8f "scsi: devicehandler: Return error pointer in scsidhattachedhandlername" added code to fail parsing the path if scsidhattachedhandlername...

5.5CVSS0.00112EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Destroying vGIC structures during failed vCPU creation If the function kvmarchvcpucreate fails to share the vCPU page with the hypervisor, we propagate the error back to the ioctl, but leave the vGIC vCPU structures...

7.8CVSS6.4AI score0.00244EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38225)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38225 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Cleanup after an...

5.5CVSS5.4AI score0.00137EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/15 4:11 a.m.5 views

CVE-2025-68791

A reference count leak flaw was found in the Linux kernel's FUSE filesystem when using iouring for argument copies. The copyfinish function is not called in error paths, causing page reference counts to leak. This can lead to memory being pinned indefinitely and potential resource exhaustion...

3.3CVSS5.5AI score0.00155EPSS
Exploits0References4
NVD
NVD
added 2026/01/13 4:16 p.m.9 views

CVE-2025-68791

In the Linux kernel, the following vulnerability has been resolved: fuse: missing copyfinish in fuse-over-io-uring argument copies Fix a possible reference count leak of payload pages during fuse argument copies. Joanne: simplified error cleanup...

0.00155EPSS
Exploits0References2
OSV
OSV
added 2026/01/13 4:16 p.m.4 views

UBUNTU-CVE-2025-68791

In the Linux kernel, the following vulnerability has been resolved: fuse: missing copyfinish in fuse-over-io-uring argument copies Fix a possible reference count leak of payload pages during fuse argument copies. Joanne: simplified error cleanup...

5.7AI score0.00155EPSS
Exploits0References11
OSV
OSV
added 2026/01/13 3:29 p.m.10 views

CVE-2025-68791 fuse: missing copy_finish in fuse-over-io-uring argument copies

In the Linux kernel, the following vulnerability has been resolved: fuse: missing copyfinish in fuse-over-io-uring argument copies Fix a possible reference count leak of payload pages during fuse argument copies. Joanne: simplified error cleanup...

6.3AI score0.00155EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/08 10:4 p.m.21 views

CVE-2025-62408 c-ares has a Use After Free vulnerability when connection is cleaned up after error

c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...

5.9CVSS0.00396EPSS
Exploits0References2
CVE
CVE
added 2025/12/08 10:4 p.m.43 views

CVE-2025-62408

CVE-2025-62408 affects the c-ares asynchronous DNS resolver. Versions 1.32.3–1.34.5 terminate a query after maximum attempts when read_answer() or process_answer() are used, causing a Denial of Service. The issue is fixed in version 1.34.6. Remediation: upgrade to 1.34.6 (or later).

5.9CVSS6.4AI score0.00396EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989276)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989276 advisory. In the Linux kernel, the following vulnerability has been resolved: watchqueue: Fix NULL dereference in error cleanup In watchqueuesetsize, the error cleanup code...

5.5CVSS6.5AI score0.00245EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/30 12:31 p.m.3 views

EUVD-2025-36983

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: frndis: Refactor bind path to use free After an bind/unbind cycle, the rndis-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

6AI score0.00183EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987600)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987600 advisory. In the Linux kernel, the following vulnerability has been resolved: watchqueue: Fix NULL dereference in error cleanup In watchqueuesetsize, the error cleanup code...

5.5CVSS6.5AI score0.00245EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/21 12:0 a.m.13 views

PT-2026-2523

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to fuse argument copies when using fuse-over-io-uring. Specifically, a missing copy finish function can lead to a reference count leak of payloa...

7.8CVSS6.7AI score0.00788EPSS
Exploits2References275
Rows per page
Query Builder