CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2026 matches found

Vulnrichment•added 2026/02/18 2:53 p.m.•3 views

CVE-2025-71232 scsi: qla2xxx: Free sp in error path to fix system crash

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Free sp in error path to fix system crash System crash seen during load/unload test in a loop, 61110.449331 qla2xxx 0000:27:00.0-0042:0: Disabled MSI-X. 61110.467494...

5.3AI score0.00118EPSS

Exploits0References8

Debian CVE•added 2026/02/18 2:53 p.m.•5 views

CVE-2025-71232

5.5CVSS5.2AI score0.00118EPSS

Exploits0

NVD•added 2026/02/14 4:15 p.m.•5 views

CVE-2026-23137

In the Linux kernel, the following vulnerability has been resolved: of: unittest: Fix memory leak in unittestdataadd In unittestdataadd, if ofresolvephandles fails, the allocated unittestdata is not freed, leading to a memory leak. Fix this by using scope-based cleanup helper freekfree for...

5.5CVSS0.00107EPSS

Exploits0References2

ATTACKERKB•added 2026/02/14 4:1 p.m.•2 views

CVE-2026-23162

In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliarydeviceinit, auxdev-dev.release xenvmreleasedev is responsible for the kfreenvm. When there is failure with auxiliarydeviceadd, driver will call...

5.1AI score0.00113EPSS

Exploits0References3Affected Software1

EUVD•added 2026/02/14 3:36 p.m.•4 views

EUVD-2026-5892

In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4xattrinodeupdateref The error branch for ext4xattrinodeupdateref forget to release the refcount for iloc.bh. Find this when review code...

5.2AI score0.00123EPSS

Exploits0References7

ATTACKERKB•added 2026/02/14 3:9 p.m.•2 views

CVE-2026-23117

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

5.1AI score0.001EPSS

Exploits0References3Affected Software1

RedHat Linux•added 2026/02/11 9:28 p.m.•1 views

kernel: drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies

A flaw was found in the kernel subsystem handling of the DRM scheduler. Under certain error conditions, the function drmschedjobadddependency consumes a fence reference and then later erroneously attempts to free it again double free. This may lead to memory corruption and, in some configurations...

5.7AI score0.00166EPSS

Exploits0References5

UbuntuCve•added 2026/02/04 5:16 p.m.•3 views

CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.8AI score0.00129EPSS

Exploits0References12

OSV•added 2026/02/04 5:16 p.m.•3 views

UBUNTU-CVE-2026-23091

In the Linux kernel, the following vulnerability has been resolved: intelth: fix device leak on output open Make sure to drop the reference taken when looking up the th device during output device open on errors and on close. Note that a recent commit fixed the leak in a couple of open error path...

5.5CVSS5.8AI score0.00123EPSS

Exploits0References34

OSV•added 2026/02/04 5:16 p.m.•2 views

UBUNTU-CVE-2026-23065

In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: Fix memory leak in wbrfrecord The tmp buffer is allocated using kcalloc but is not freed if acpievaluatedsm fails. This causes a memory leak in the error path. Fix this by explicitly freeing the tmp buffer in th...

5.5CVSS5.9AI score0.00121EPSS

Exploits0References14

OSV•added 2026/02/04 5:16 p.m.•2 views

UBUNTU-CVE-2026-23068

7.8CVSS5.8AI score0.00129EPSS

Exploits0References15

NVD•added 2026/02/04 4:16 p.m.•6 views

CVE-2026-23041

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer crash in bnxtptpenable during error cleanup When bnxtinitone fails during initialization e.g., bnxtinitintmode returns -ENODEV, the error path calls bnxtfreehwrmresources which destroys the DMA pool and...

0.00145EPSS

Exploits0References2

UbuntuCve•added 2026/02/04 4:16 p.m.•2 views

CVE-2026-23041

5.7AI score0.00145EPSS

Exploits0References4

ATTACKERKB•added 2026/02/04 4:8 p.m.•2 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.3AI score0.00096EPSS

Exploits0References7Affected Software1

OSV•added 2026/02/04 4:8 p.m.•5 views

CVE-2026-23087 scsi: xen: scsiback: Fix potential memory leak in scsiback_remove()

In the Linux kernel, the following vulnerability has been resolved: scsi: xen: scsiback: Fix potential memory leak in scsibackremove Memory allocated for struct vscsiblkinfo in scsibackprobe is not freed in scsibackremove leading to potential memory leaks on remove, as well as in the scsibackprob...

5.5CVSS5.2AI score0.00123EPSS

Exploits0References10

EUVD•added 2026/02/04 4:7 p.m.•5 views

EUVD-2026-5476

5.3AI score0.00129EPSS

Exploits0References4

CVE•added 2026/02/04 4:7 p.m.•19 views

CVE-2026-23068

CVE-2026-23068 (Linux kernel) : The spi-sprd-adi driver could double-free the spi_controller on probe failure due to using spi_alloc_host() with devm_spi_register_controller(), then falling through to spi_controller_put() when a restart handler registration failed. The fix switches to devm_spi_al...

7.8CVSS5.3AI score0.00129EPSS

Exploits0References5Affected Software1