Lucene search
K

375 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.3 views

CVE-2026-23339

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: free skb on ncitransceive early error paths ncitransceive takes ownership of the skb passed by the caller, but the -EPROTO, -EINVAL, and -EBUSY error paths return without freeing it. Due to issues clearing NCIDATAEXCHAN...

5.7AI score0.00123EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/03/25 10:27 a.m.11 views

CVE-2026-23339

CVE-2026-23339 is resolved in the Linux kernel through fixes around NFC/NCI skb handling (nci_transceive error paths releasing skb) as cited by multiple OSV entries and kernel patches. Connected advisories show Root: Debian/Ubuntu/Mageia patches for rootio-linux, with multiple fixed versions (e.g...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2026/03/19 12:30 a.m.4 views

SUSE CVE-2025-71268

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent If we fail to allocate a path or join a transaction, we return from cowfilerangeinline without freeing the reserved qgroup data, resulting in a leak. Fi...

5.5CVSS5.6AI score0.00114EPSS
Exploits0References16
NVD
NVD
added 2026/03/18 6:16 p.m.2 views

CVE-2025-71268

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent If we fail to allocate a path or join a transaction, we return from cowfilerangeinline without freeing the reserved qgroup data, resulting in a leak. Fi...

5.5CVSS0.00114EPSS
Exploits0References5
OSV
OSV
added 2026/03/18 6:16 p.m.6 views

UBUNTU-CVE-2025-71268

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent If we fail to allocate a path or join a transaction, we return from cowfilerangeinline without freeing the reserved qgroup data, resulting in a leak. Fi...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References17
Cvelist
Cvelist
added 2026/03/18 5:40 p.m.17 views

CVE-2025-71268 btrfs: fix reservation leak in some error paths when inserting inline extent

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix reservation leak in some error paths when inserting inline extent If we fail to allocate a path or join a transaction, we return from cowfilerangeinline without freeing the reserved qgroup data, resulting in a leak. Fi...

0.00114EPSS
Exploits0References5
CVE
CVE
added 2026/03/18 5:40 p.m.18 views

CVE-2025-71268

The CVE-2025-71268 issue is a Linux kernel vulnerability in btrfs where a reservation leak can occur on some error paths when inserting an inline extent. The root cause is that __cow_file_range_inline() may exit without freeing reserved qgroup data if allocation of a path or join of a transaction...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/11 6:53 p.m.0 views

CVE-2026-31888 Shopware has user enumeration via distinct error codes on Store API login endpoint

Shopware is an open commerce platform. Prior to 6.7.8.1 and 6.6.10.15, the Store API login endpoint POST /store-api/account/login returns different error codes depending on whether the submitted email address belongs to a registered customer CHECKOUTCUSTOMERAUTHBADCREDENTIALS or is unknown...

5.3CVSS5.8AI score0.00218EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/02/25 2:10 a.m.3 views

kernel: drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies

A flaw was found in the kernel subsystem handling of the DRM scheduler. Under certain error conditions, the function drmschedjobadddependency consumes a fence reference and then later erroneously attempts to free it again double free. This may lead to memory corruption and, in some configurations...

5.7AI score0.00183EPSS
Exploits0References5
CVE
CVE
added 2026/02/24 12:57 a.m.28 views

CVE-2026-25796

CVE-2026-25796 affects ImageMagick: the ReadSTEGANOImage() function (coders/stegano.c) fails to free the watermark object on three early-return paths, causing a definite memory leak (~13.5 KB per invocation) that can be exploited for denial of service. The issue is mitigated by patches in version...

7.5CVSS5.5AI score0.00376EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/02/21 12:29 p.m.5 views

ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths

...

6.5CVSS5.9AI score0.00118EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/02/18 8:28 p.m.5 views

CVE-2025-12343

A flaw was found in FFmpeg’s TensorFlow backend within the libavfilter/dnnbackendtf.c source file. The issue occurs in the dnnexecutemodeltf function, where a task object is freed multiple times in certain error-handling paths. This redundant memory deallocation can lead to a double-free conditio...

5.5CVSS7AI score0.00149EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/18 8:28 p.m.3 views

CVE-2025-12343

A flaw was found in FFmpeg’s TensorFlow backend within the libavfilter/dnnbackendtf.c source file. The issue occurs in the dnnexecutemodeltf function, where a task object is freed multiple times in certain error-handling paths. This redundant memory deallocation can lead to a double-free conditio...

5.5CVSS6.9AI score0.00149EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/02/18 2:53 p.m.7 views

CVE-2026-23220

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix infinite loop caused by nextsmb2rcvhdroff reset in error paths The problem occurs when a signed request fails smb2 signature verification check. In processrequest, if checksignreq returns an error, setsmb2rspstatuswork...

5.5CVSS5.1AI score0.00118EPSS
Exploits0
CVE
CVE
added 2026/02/18 2:53 p.m.26 views

CVE-2026-23220

CVE-2026-23220 – Linux kernel ksmbd infinite loop fix : In ksmbd, when a signed SMB2 request fails verification, __process_request() triggers an error path that calls set_smb2_rsp_status() and resets next_smb2_rcv_hdr_off to zero. This loses the pointer to the next command in the chain, so is_cha...

5.5CVSS5.2AI score0.00118EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/02/14 3:14 p.m.34 views

CVE-2026-23132

CVE-2026-23132 : Linux kernel vulnerability in the dw-dp bridge (drm/bridge: synopsys: dw-dp) resolved. The issue concerned error handling in dw_dp_bind(), with three problems: (1) Missing return after drm_bridge_attach() failure, causing continued execution; (2) Resource leak where drm_dp_aux_un...

5.5CVSS5.5AI score0.00116EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/11 5:48 p.m.3 views

kernel: drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies

A flaw was found in the kernel subsystem handling of the DRM scheduler. Under certain error conditions, the function drmschedjobadddependency consumes a fence reference and then later erroneously attempts to free it again double free. This may lead to memory corruption and, in some configurations...

5.7AI score0.00183EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.4 views

SUSE CVE-2026-23091

In the Linux kernel, the following vulnerability has been resolved: intelth: fix device leak on output open Make sure to drop the reference taken when looking up the th device during output device open on errors and on close. Note that a recent commit fixed the leak in a couple of open error path...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References19
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.4 views

CVE-2026-23079

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: Fix resource leaks on errors in lineinfochangednotify On error handling paths, lineinfochangednotify doesn't free the allocated resources which results leaks. Fix it...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23091

In the Linux kernel, the following vulnerability has been resolved: intelth: fix device leak on output open Make sure to drop the reference taken when looking up the th device during output device open on errors and on close. Note that a recent commit fixed the leak in a couple of open error path...

5.2AI score0.00123EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder