CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2026 matches found

UbuntuCve•added 2026/05/08 3:16 p.m.•10 views

CVE-2026-43358

In the Linux kernel, the following vulnerability has been resolved: btrfs: add missing RCU unlock in error path in tryreleasesubpageextentbuffer Call rcureadlock before exiting the loop in tryreleasesubpageextentbuffer because there is a rcureadunlock call past the loop. This has been detected by...

5.5CVSS5.8AI score0.00121EPSS

Exploits0References5

Debian CVE•added 2026/05/08 2:22 p.m.•8 views

CVE-2026-43451

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.5CVSS5.7AI score0.00123EPSS

Exploits0

Cvelist•added 2026/05/08 2:21 p.m.•29 views

CVE-2026-43419 ceph: fix memory leaks in ceph_mdsc_build_path()

In the Linux kernel, the following vulnerability has been resolved: ceph: fix memory leaks in cephmdscbuildpath Add putname calls to error code paths that did not free the "path" pointer obtained by getname. If ownership of this pointer is not passed to the caller via pathinfo.path, the function...

0.00122EPSS

Exploits0References5

CVE•added 2026/05/08 2:21 p.m.•14 views

CVE-2026-43397

Technical details about CVE-2026-43397 are not publicly provided in the supplied documents. Monitor for updates from vendors and security advisories.

5.5CVSS5.8AI score0.00122EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/08 2:21 p.m.•33 views

CVE-2026-43372 net: dsa: microchip: Fix error path in PTP IRQ setup

In the Linux kernel, the following vulnerability has been resolved: net: dsa: microchip: Fix error path in PTP IRQ setup If requestthreadedirq fails during the PTP message IRQ setup, the newly created IRQ mapping is never disposed. Indeed, the kszptpirqsetup's error path only frees the mappings...

0.00122EPSS

Exploits0References5

ATTACKERKB•added 2026/05/08 2:21 p.m.•5 views

CVE-2026-43372

5.5CVSS5.8AI score0.00122EPSS

Exploits0References6Affected Software1

CVE•added 2026/05/08 2:21 p.m.•15 views

CVE-2026-43372

CVE-2026-43372 resolves a leak in the Linux kernel Microchip DSA driver during PTP IRQ setup. If request_threaded_irq() fails, the error path previously only freed mappings that had succeeded; now the kernel disposes the newly created IRQ mapping to prevent resource exhaustion. Affected component...

5.5CVSS5.8AI score0.00122EPSS

Exploits0References5Affected Software1

Debian CVE•added 2026/05/08 2:21 p.m.•6 views

CVE-2026-43358

5.5CVSS5.7AI score0.00121EPSS

Exploits0

Cvelist•added 2026/05/08 2:21 p.m.•27 views

CVE-2026-43358 btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer()

0.00121EPSS

Exploits0References3

CVE•added 2026/05/08 2:21 p.m.•17 views

CVE-2026-43358

CVE-2026-43358 affects the Linux kernel's btrfs filesystem. The vulnerability is a missing RCU unlock in the error path of try_release_subpage_extent_buffer(), where rcu_read_lock() should be held before exiting the loop because an rcu_read_unlock() occurs past the loop. The issue was identified ...

5.5CVSS5.8AI score0.00121EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/05/08 2:21 p.m.•8 views

CVE-2026-43355

In the Linux kernel, the following vulnerability has been resolved: iio: light: bh1780: fix PM runtime leak on error path Move pmruntimeputautosuspend before the error check to ensure the PM runtime reference count is always decremented after pmruntimegetsync, regardless of whether the read...

5.5CVSS5.7AI score0.00123EPSS

Exploits0

NVD•added 2026/05/08 2:16 p.m.•7 views

CVE-2026-43332

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermalzonedeviceregisterwithtrips fails after registering a thermal zone device, it needs to wait for the tz-removal completion like thermalzonedeviceunregister, ...

7.8CVSS0.00129EPSS

Exploits0References5

NVD•added 2026/05/08 2:16 p.m.•8 views

CVE-2026-43328

In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectput&dbsdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...

7.8CVSS0.00129EPSS

Exploits0References8

NVD•added 2026/05/08 2:16 p.m.•15 views

CVE-2026-43317

In the Linux kernel, the following vulnerability has been resolved: most: core: fix leak on early registration failure A recent commit fixed a resource leak on early registration failures but for some reason left out the first error path which still leaks the resources associated with the...

5.5CVSS0.00122EPSS

Exploits0References4

NVD•added 2026/05/08 2:16 p.m.•5 views

CVE-2025-71299

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing The recent refactoring of where runtime PM is enabled done in commit f1eb4e792bb1 "spi: spi-cadence-quadspi: Enable pm runtime earlier to avoid imbalance"...

5.5CVSS0.00121EPSS

Exploits0References3

UbuntuCve•added 2026/05/08 2:16 p.m.•5 views

CVE-2026-43317

5.5CVSS5.7AI score0.00122EPSS

Exploits0References6

UbuntuCve•added 2026/05/08 2:16 p.m.•6 views

CVE-2026-43332

7.8CVSS5.7AI score0.00129EPSS

Exploits0References7